WO2014173214A1 - Dispositif de conversion et système d'affichage - Google Patents

Dispositif de conversion et système d'affichage Download PDF

Info

Publication number
WO2014173214A1
WO2014173214A1 PCT/CN2014/073860 CN2014073860W WO2014173214A1 WO 2014173214 A1 WO2014173214 A1 WO 2014173214A1 CN 2014073860 W CN2014073860 W CN 2014073860W WO 2014173214 A1 WO2014173214 A1 WO 2014173214A1
Authority
WO
WIPO (PCT)
Prior art keywords
module
information
data
encrypted
transmission
Prior art date
Application number
PCT/CN2014/073860
Other languages
English (en)
Chinese (zh)
Inventor
李东声
Original Assignee
天地融科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 天地融科技股份有限公司 filed Critical 天地融科技股份有限公司
Publication of WO2014173214A1 publication Critical patent/WO2014173214A1/fr

Links

Classifications

    • GPHYSICS
    • G09EDUCATION; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
    • G09CCIPHERING OR DECIPHERING APPARATUS FOR CRYPTOGRAPHIC OR OTHER PURPOSES INVOLVING THE NEED FOR SECRECY
    • G09C5/00Ciphering apparatus or methods not provided for in the preceding groups, e.g. involving the concealment or deformation of graphic data such as designs, written or printed messages
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/12Details relating to cryptographic hardware or logic circuitry
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Definitions

  • the present invention relates to the field of electronic technologies, and in particular, to a conversion device and a display system. Background technique
  • the existing glasses that can receive and display data are generally what kind of data is transmitted by the terminal to the glasses, and the data is directly displayed. Due to the transparency of the data transmission, it is easy to cause the data related to privacy to be transmitted. The security of the data transmission cannot be guaranteed, which may easily lead to security risks such as privacy leakage.
  • the object of the present invention is to at least solve one of the above technical drawbacks.
  • a first aspect of the present invention provides a conversion apparatus, including: a first transmission module, a first security module, and a second transmission module; the first transmission module is configured to establish a communication connection, and after receiving the communication connection, receive the first Encrypting information; the first security module is configured to: after the first transmission module receives the first encryption information, decrypt the first encrypted information to obtain first decryption information, and use the first decryption information Performing encryption to obtain first encrypted data, and transmitting the first encrypted data to the second transmission module for outgoing; or the first security module after receiving the first encrypted information by the first transmission module Sending the first encrypted information to the second transmission module for outgoing.
  • the first security module is further configured to: after decrypting the first encrypted information to obtain the first decrypted information, determining whether the first decrypted information is information in a preset format, where, if it is a preset format And performing one of the following operations: encrypting the first decryption information to obtain first encrypted data, and sending the first encrypted data to a second transmission module for outgoing; and using the first encrypted information Sending to the second transmission module for outgoing.
  • the second transmission module is further configured to receive the second encrypted data, and send the second encrypted data to the first security module, where the first security module performs after receiving the second encrypted data.
  • One of the following operations decrypting the second encrypted data, obtaining second decrypted information, encrypting the second decrypted information, obtaining second encrypted information, and transmitting the second encrypted information to the The first transmission module performs outgoing: sending the second encrypted data to the first transmission module for outgoing.
  • the first security module is further configured to sign at least the first encrypted data to obtain a first signature number. And sending the first signature data to the second transmission module for outgoing; or the first security module is further configured to: sign the first encrypted information to obtain the first signature data, and Sending the first signature data to the second transmission module for outgoing; or the first security module is further configured to sign at least the first decryption information, obtain first signature data, and The first signature data is sent to the second transmission module for outgoing.
  • the second transmission module of the converting device is further configured to receive the second signature data when the second encrypted data is received, and send the second signature data to the first security module;
  • the security module After receiving the second encrypted data and the second signature data, the security module performs one of the following operations: performing verification on the second signature data, and after verifying that the second signature data is passed, Decrypting the second encrypted data to obtain the second decrypted information, and encrypting the second decrypted information to obtain the second encrypted information, and sending the second encrypted information to the first transmission Executing the second signature data, and after verifying that the second signature data is passed, sending the second encrypted data to the first transmission module for outgoing; Decrypting the data to obtain the second decryption information, and after obtaining the second decryption information, verifying the second signature data, and verifying the After the second signature data is passed, the second decryption information is encrypted to obtain the second encrypted information, and the second encrypted information is sent to the first transmission module for outgoing; for the second encrypted data Decrypting, obtaining
  • the first transmission module performs data transmission by using one of the following modes: audio transmission mode, USB transmission mode, serial port transmission mode, NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, optical transmission mode, WIFI transmission mode, and GPRS Transmission mode, 3G transmission mode and GSM transmission mode;
  • the second transmission module performs data transmission by one of the following modes: audio transmission mode, USB transmission mode, serial port transmission mode, NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, Optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode and GSM transmission mode.
  • a second aspect of the present invention provides a display system including glasses and the above-described conversion device.
  • the glasses include a lens body, a display module disposed on the lens body, a second security module, and a communication module. Establishing a communication connection with the second transmission module of the conversion device, and after establishing the communication connection, receiving the first encrypted data or the first encrypted information; the second security module is used in the communication module After receiving the first encrypted data or the first encrypted information, decrypting the first encrypted data or the first encrypted information to obtain the first decrypted information; And after the obtaining the first decryption information, sending a display instruction to the display module; the display module is configured to receive the display instruction, and display according to the display instruction and the first decryption information.
  • the second security module is further configured to receive an input instruction, generate information to be output according to the input instruction, and encrypt the to-be-output information to obtain the second encrypted data; After the second security module obtains the second encrypted data, the second encrypted data is sent out.
  • the communication module further receives the first signature data when receiving the first encrypted data or the first encrypted information
  • the second security module is configured to receive the first After signing the data, performing one of the following operations: verifying the first signature data, and after verifying that the first signature data is passed, decrypting the first encrypted data or the first encrypted information, Obtaining the first decryption information; decrypting the first encrypted data or the first encrypted information, obtaining the first decrypted information, and after obtaining the first decrypted information, the first signature
  • the data is verified, and after verifying that the first signature data is passed, a display instruction is sent to the display module.
  • the second security module is further configured to: after the information to be output is generated, at least the information to be output is signed to obtain the second signature data; or the second security module is further configured to use at least the second The encrypted data is signed to obtain the second signature data.
  • the communication module is further configured to: after the second security module obtains the second signature data, send the second signature data.
  • a button is further disposed on the lens body, and the second security module receives an input instruction through the button.
  • the communication module performs data transmission with the second transmission module by using one of the following modes: an audio transmission mode, a USB transmission mode, a serial port transmission mode, an NFC transmission mode, a Bluetooth transmission mode, an infrared transmission mode, and an optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode and GSM transmission mode.
  • the display system further includes: a terminal; the terminal establishes a communication connection with the first transmission module of the conversion device, and after the communication connection is established, sends the first encrypted information to the first transmission module.
  • the terminal further receives the second encrypted information or the second encrypted data transmitted by the first transmission module.
  • a third aspect of the present invention provides a conversion apparatus, including: a first transmission module, a first security module, and a second transmission module; the first transmission module is configured to establish a communication connection, and after receiving the communication connection, receive the first The first security module is configured to decrypt the first encrypted information to obtain first decryption information, and convert the first decrypted information into The first conversion information of the preset format is encrypted to obtain the first encrypted conversion data, and the first encrypted conversion data is sent to the second transmission module for outgoing.
  • the first security module is further configured to: after decrypting the first encrypted information to obtain the first decrypted information, determining whether the first decrypted information is information in a preset format, where, if not Formatting the information, converting the first decryption information into the first conversion information of the preset format.
  • the second transmission module is further configured to receive the second encrypted data, and send the second encrypted data to the first security module, where the first security module performs after receiving the second encrypted data.
  • the first transmission module performs outgoing: sending the second encrypted data to the first transmission module for outgoing.
  • the first security module further signs at least the first encrypted conversion data, obtains first signature data, and sends the first signature data to the second transmission module for outgoing; or The first security module further signs the first conversion information, obtains the first signature data, and sends the first signature data to the second transmission module for outgoing.
  • the second transmission module of the converting device is further configured to receive the second signature data when the second encrypted data is received, and send the second signature data to the first security module;
  • the first security module performs one of the following operations: verifying the second signature data, and after verifying that the second signature data is passed Decrypting the second encrypted data to obtain second decrypted information, and encrypting the second decrypted information to obtain the second encrypted information, and sending the second encrypted information to the first transmission Executing the second signature data, and after verifying that the second signature data is passed, sending the second encrypted data to the first transmission module for outgoing; or Decoding the second encrypted data to obtain the second decrypted information, and after obtaining the second decrypted information, verifying the second signature data, verifying After the second signature data is passed, the second decryption information is encrypted to obtain the second encrypted information, and the second encrypted information is sent to the first transmission module for outgoing; or Decrypting the second encrypted data to obtain the second decrypted
  • the first transmission module performs data transmission by using one of the following modes: audio transmission mode, USB transmission mode, serial port transmission mode, NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, optical transmission mode, WIFI transmission mode, and GPRS Transmission mode, 3G transmission mode and GSM transmission mode;
  • the second transmission module performs data transmission by one of the following modes: audio transmission mode, USB transmission mode, serial port transmission mode, NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, Optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode and GSM transmission mode.
  • a fourth aspect of the present invention provides a display system including glasses and the above-described conversion device.
  • the glasses include a lens body, a display module disposed on the lens body, a second security module, and a communication module. Establishing a communication connection with the second transmission module of the conversion device, and after establishing the communication connection, receiving the first addition
  • the second security module is configured to decrypt the first encrypted conversion data after the communication module receives the first encrypted conversion data, to obtain the first conversion information;
  • the second security module is further configured to send a display instruction to the display module after obtaining the first conversion information; the display module is configured to receive the display instruction, and display according to the display instruction and the first conversion information .
  • the second security module is further configured to receive an input instruction, generate information to be output according to the input instruction, and encrypt the to-be-output information to obtain the second encrypted data; After the second security module obtains the second encrypted data, the second encrypted data is sent out.
  • the communication module further receives the first signature data when receiving the first encrypted conversion data
  • the second security module is configured to perform the following operations after the communication module receives the first signature data.
  • the second security module is further configured to: after the information to be output is generated, at least the information to be output is signed to obtain the second signature data; or the second security module is further configured to use at least the second The encrypted data is signed to obtain the second signature data.
  • the communication module is further configured to: after the second security module obtains the second signature data, send the second signature data.
  • a button is further disposed on the lens body, and the second security module receives an input instruction through the button.
  • the communication module performs data transmission with the second transmission module by using one of the following modes: an audio transmission mode, a USB transmission mode, a serial port transmission mode, an NFC transmission mode, a Bluetooth transmission mode, an infrared transmission mode, and an optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode and GSM transmission mode.
  • the display system further includes: a terminal; the terminal establishes a communication connection with the first transmission module of the conversion device, and after establishing the communication connection, transmits the first encrypted information to the first transmission module.
  • the terminal further receives the second encrypted information or the second encrypted data transmitted by the first transmission module.
  • the present invention provides a conversion device and a display system, which are ensured the security of the data transmission because the data is encrypted during the transmission process;
  • the glasses of the present invention locally decrypt the encrypted data sent by the conversion device through the second security module, further ensuring the security of data transmission, and maximally preventing remote attacks by hackers, thereby eliminating the use of other decryption devices for decryption.
  • the information output by the glasses is encrypted by the second security module of the glasses and then sent out through the communication module. To ensure the safety of the data output by the glasses;
  • the glasses verify the signature
  • the data sent by the glasses can also be signed
  • the conversion device performs verification, thereby ensuring the authenticity of the identity of both the conversion device and the glasses, and further improving the data transmission.
  • Security since the data transmitted by the conversion device can be signed, the glasses verify the signature, the data sent by the glasses can also be signed, and the conversion device performs verification, thereby ensuring the authenticity of the identity of both the conversion device and the glasses, and further improving the data transmission.
  • Security DRAWINGS
  • FIG. 1 is a block diagram showing the structure of a display system according to Embodiment 1 of the present invention. detailed description
  • connection In the description of the present invention, it should be noted that the terms “installation”, “connected”, and “connected” are to be understood broadly, and may be fixed or detachable, for example, unless otherwise explicitly defined and defined. Connected, or connected integrally; can be mechanical or electrical; can be directly connected, or indirectly connected through an intermediate medium, can be the internal communication of the two components.
  • Connected, or connected integrally can be mechanical or electrical; can be directly connected, or indirectly connected through an intermediate medium, can be the internal communication of the two components.
  • the specific meaning of the above terms in the present invention can be understood in a specific case by those skilled in the art.
  • Example 1 1 is a schematic structural diagram of a display system according to Embodiment 1 of the present invention.
  • the display system includes: a conversion device 10, and glasses 20; in addition, the display system of the present invention may further include: a terminal 30, and the terminal 30 may For any of the following devices: MP3, smartphone, tablet, laptop, PC, USB stick or remote server.
  • the conversion device 10 of the present invention can also be used as a separate device, and different interfaces are provided.
  • the conversion device 10 includes an interface such as an IC card slot, an SD card slot or a card reader, and can read an IC card and an SD card.
  • An encrypted file stored in a device such as a card that is connected through an interface.
  • the conversion device 10 may include: a first transmission module 101, a first security module 102, and a second transmission module 103; wherein: the first transmission module 101 can establish a communication connection by:
  • Wired transmission mode audio transmission mode, USB transmission mode or serial port transmission mode
  • Wireless transmission mode NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode or GSM transmission mode.
  • the wireless transmission method can reduce the setting of the interface, reduce the volume of the conversion device 10, and is more convenient to use and carry.
  • the second transmission module 103 can establish a communication connection by:
  • Wired transmission mode audio transmission mode, USB transmission mode or serial port transmission mode
  • Wireless transmission mode NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode or GSM transmission mode.
  • the wireless transmission method can reduce the setting of the interface, reduce the volume of the conversion device 10, and is more convenient to use and carry.
  • the glasses 20 include: a lens body; a display module 201, a second security module 202, and a communication module 203 may be disposed on the lens body; of course, the display module 201 may be separately disposed at the frame or may be disposed on the surface of the lens. The latter user can directly view the displayed content while wearing the glasses 20, which is convenient for the user to use. Of course, the display module 201 can also be directly formed into a lens, which makes the process simple and practical.
  • the second security module 202 and the communication module 203 can be separately disposed at the frame or inside the frame, and the latter can reduce the volume of the glasses 20 for convenient carrying and use.
  • the communication module 203 can establish a communication connection by:
  • Wired transmission mode audio transmission mode, USB transmission mode or serial port transmission mode
  • Wireless transmission mode NFC transmission mode, Bluetooth transmission mode, infrared transmission mode, optical transmission mode, WIFI transmission mode, GPRS transmission mode, 3G transmission mode or GSM transmission mode.
  • the wireless transmission method can reduce the setting of the interface, reduce the volume of the glasses 20, and is more convenient to use and carry.
  • the first transmission module 101 of the conversion device 10 establishes a communication connection with the terminal 30 through the matched transmission mode, so that the information transmitted by the terminal 30 can be received; the second transmission module 103 of the conversion device 10 and the communication module 203 of the glasses 20 pass the matched transmission.
  • the communication connection is established in such a manner that the information transmitted by the processed terminal 30 can be transmitted to the glasses 20.
  • the terminal 30 is configured to generate first information, and encrypt the first information to obtain the first encrypted information.
  • the terminal 30 sends the first encrypted information to the first of the conversion device 10.
  • a transmission module 101 In this embodiment, the terminal 30 encrypts the first information, so that the information sent by the terminal 30 is ciphertext information. Therefore, after the first encryption information is received by the conversion device 10, the following processing is performed:
  • the first transmission module 101 is configured to establish a communication connection, and after the communication connection is established, receive the first encryption information. Specifically, after establishing a communication connection with the first transmission module 101, the terminal 30 sends the ciphertext of the information to the first transmission. Module 101 is for subsequent processing.
  • the first security module 102 is configured to: after the first transmission module 101 receives the first encrypted information, decrypt the first encrypted information to obtain the first decrypted information, and encrypt the first decrypted information to obtain the first encrypted data, and An encrypted data is sent to the second transmission module for outgoing.
  • the data is encrypted during the transmission process, which ensures the security of the data transmission.
  • the first security module 102 determines whether the first decrypted information is information in a preset format, and if the information is in a preset format, the first decrypted information is obtained. Encryption is performed to obtain the first encrypted data, and the first encrypted data is sent to the second transmission module 103 for outgoing.
  • the first security module 102 directly follows the first decrypted information and the glasses after decrypting the first encrypted information.
  • the 20 matched encryption/decryption algorithm performs encryption to obtain the first encrypted data, and sends the first encrypted data to the second transmission module 103 for outgoing to the glasses 20.
  • the preset format supported by the glasses 20 of the present invention may be the codec format with the highest encoding and decoding efficiency, for example: the preset format of the document supported by the glasses 20 is: TXT format; the preset of the picture supported by the glasses 20 The format is: ESC format, etc.
  • the preset format can also support the codec format with the highest codec efficiency of different types (for example, audio format, video format), which are not enumerated here.
  • the preset format uses the codec format with the highest codec efficiency to improve the speed of data processing by the eyepiece 20.
  • the first security module 102 directly determines that the first decryption information is the preset format information supported by the glasses 20, The first encrypted information is sent out to the glasses 20 through the second transmission module 103. Therefore, in order to match the conversion device 10, when the conversion device 10 transmits the first encrypted data or the first encrypted information to the second transmission module 103 for outgoing, the communication module 203 of the glasses 20 is used for the conversion device The second transmission module 103 establishes a communication connection, and after the communication connection is established, receives the first encrypted data or the first encrypted information.
  • the second security module 202 is configured to: after the communication module 203 receives the first encrypted data or the first encrypted information, Decrypting the first encrypted data or the first encrypted information, and obtaining first decrypting information obtained by the converting device 10 by decrypting the first encrypted information or the first encrypted information;
  • the second security module 202 is further configured to send a display instruction to the display module 201 after obtaining the first decryption information
  • the display module 201 receives the display instruction and displays according to the display instruction and the first decryption information.
  • the glasses 20 of the present invention locally decrypt the encrypted data sent by the conversion device 10 through the second security module 202, further ensuring the security of data transmission, and maximally preventing remote attacks by hackers, thereby eliminating the adoption.
  • the second security module 202 of the glasses 20 is further configured to receive an input instruction, generate information to be output according to the input instruction, and encrypt the information to be output to obtain second encrypted data; 203 is further configured to send the second encrypted data after the second security module 202 obtains the second encrypted data. It can be seen that the information output by the glasses 20 is encrypted by the second security module 202 of the glasses 20 and then transmitted through the communication module 203, so that the security of the data output by the glasses 20 can be ensured.
  • the second transmission module 103 of the conversion device 10 further receives the second encrypted data, and sends the second encrypted data to the first security module 102.
  • the first security module 102 After receiving the second encrypted data, the first security module 102, if the terminal 30, the data encryption and decryption algorithm is different from the glasses 20, the first security module 102 decrypts the second encrypted data, obtains the second decrypted information, and encrypts the second decrypted information to obtain the second encrypted information, and The second encrypted information is sent to the first transmission module 101 for outgoing; because the ciphertext of the data is transmitted between the terminal 30 and the conversion device 10, the conversion device 10 encrypts the second decrypted information to obtain the second encrypted information, and the second The encrypted information is sent to the first transmission module 101 for outgoing, and the terminal 30 receives the second encrypted information or the second encrypted data transmitted by the first transmission module 101.
  • the algorithm for encrypting the second decrypted information should match the decryption algorithm of the terminal 30.
  • the conversion module 10 can directly transmit the second encrypted data transmitted by the received glasses 20 to the terminal 30.
  • the security of the data transmission output by the glasses 20 can be ensured.
  • the conversion device 10 further The transmitted data can be signed, and the glasses 20 can also verify the signature of the conversion device 10.
  • the authentication can be performed by one of the following methods:
  • the first security module 102 of the conversion device 10 signs at least the first encrypted data or the first encrypted information, obtains the first signature data, and sends the first signature data to the second transmission module 103 for outgoing;
  • the communication module 203 of the glasses 20 further receives the first signature data when receiving the first encrypted data or the first encrypted information.
  • the second security module 202 is configured to: after the communication module 203 receives the first signature data, the first signature data. Performing verification, and after verifying that the first signature data is passed, decrypting the first encrypted data or the first encrypted information to obtain the first decrypted information.
  • the verification process is reduced, the data processing speed is improved, and the encrypted data is decrypted only after the verification signature is passed. Otherwise, if the verification signature fails, the encryption is not performed. The data is decrypted to ensure the security of the data.
  • the first security module 102 of the conversion device 10 signs at least the first decryption information, obtains the first signature data, and sends the first signature data to the second transmission module 103 for outgoing;
  • the communication module 203 of the glasses 20 further receives the first signature data when receiving the first encrypted data or the first encrypted information.
  • the second security module 202 is configured to: after the communication module 203 receives the first signature data, the first encrypted data. Or the first encrypted information is decrypted, the first decrypted information is obtained, and after the first decrypted information is obtained, the first signature data is verified, and after the first signature data is verified, the display instruction is sent to the display module.
  • the decrypted information is obtained by decrypting the encrypted data, and the first signature data is verified according to the decrypted information, thereby improving the correctness of the verification, and even if the encrypted data and the signature are simultaneously tampered with, the verification can be performed, thereby ensuring the security of the data transmission.
  • the authenticity of the identity of the sex and conversion device 10. In order to further improve the security of the data transmission and ensure the authenticity of the identity of the glasses 20, the glasses 20 can also sign the transmitted data, and the conversion device 10 can also verify the signature of the conversion device 20, which can be performed by one of the following methods. Authentication:
  • the second security module 202 of the glasses 20 may, after generating the information to be output, at least the output information is signed to obtain the second signature data; the communication module 203 is further configured to: after the second security module 202 obtains the second signature data, , the second signature data is sent out;
  • the second transmission module 103 of the conversion device 10 further receives the second signature data when receiving the second encrypted data, and transmits the second signature data to the first security module 102; the first security module 102 receives the first After encrypting the data and the second signature data, decrypting the second encrypted data to obtain the second decrypted information, and after obtaining the second decrypted information, performing one of the following operations: The first security module 102 verifies the second signature data, and after verifying that the second signature data is passed, encrypts the second decryption information to obtain the second encrypted information, and sends the second encrypted information to the first transmission module. Send; or
  • the first security module 102 verifies the second signature data, and after verifying that the second signature data is passed, sends the second encrypted data to the first transmission module for outgoing;
  • the first security module 102 of the conversion device 10 determines the difference between the encryption and decryption algorithms adopted by the terminal 30 and the glasses 20 after verifying that the second signature data is passed. Alternatively, the first security module 102 may send the second encrypted information or the second encrypted data to the first transmission module 101 for outgoing transmission for transmission to the terminal 30.
  • the glasses 20 directly sign the output information, thereby improving the security of the signature data itself, and even if the second encrypted data and the second signature data are simultaneously falsified, they can be verified at the conversion device 10, thereby ensuring the security of data transmission.
  • the conversion device 10 obtains the second decrypted information by decrypting the second encrypted data to verify the second signature data, thereby improving the correctness of the verification, and even if the ciphertext and the signature are simultaneously tampered with, the verification can be performed, thereby ensuring the security of the data transmission. And the authenticity of the identity of the glasses 20.
  • the second security module 202 of the glasses 20 can sign at least the second encrypted data to obtain the second signature data.
  • the communication module 203 is further configured to: after the second security module 202 obtains the second signature data, the second signature Data is sent out;
  • the second transmission module 103 of the conversion device 10 further receives the second signature data when receiving the second encrypted data, and transmits the second signature data to the first security module 102; the first security module 102 receives the first After the second encrypted data and the second signed data are verified, the second signed data is verified, and after verifying that the second signed data is passed, one of the following operations may be performed:
  • the first security module 102 decrypts the second encrypted data, obtains the second decrypted information, and encrypts the second decrypted information to obtain the second encrypted information, and sends the second encrypted information to the first transmitting module for outgoing Or the first security module 102 sends the second encrypted data to the first transmission module for outgoing.
  • the first security module 102 of the conversion device 10 Since the terminal 30 and the conversion device 10 transmit the ciphertext of the data, the first security module 102 of the conversion device 10 is different or identical according to the encryption and decryption algorithm adopted by the terminal 30 and the glasses 20, and the first security module 102 can The second encrypted information or the second encrypted data is sent to the first transmission module 101 for outgoing transmission for transmission to the terminal 30.
  • the glasses 20 directly sign the second encrypted data to reduce the processing link and improve the data processing speed.
  • the conversion device 10 directly verifies the second signature data according to the second encrypted data, thereby reducing the verification link.
  • the data processing speed is high, and the second encrypted data is decrypted only after the verification signature is passed. Otherwise, if the verification signature fails, the second encrypted data is not decrypted to ensure security.
  • the button 20 can also be provided with a button.
  • the second security module 202 receives an input command through the button.
  • the display module 201 displays the content as "whether to confirm the display information", and the user can press the button to send a confirmation command to inform the glasses 20 and/or the conversion device 10 to display.
  • the speaker 20 can also be provided with a speaker.
  • the speaker can perform sound according to the information obtained by the second security module 202 to ensure normal use of the user.
  • the functions performed by the various modules in the present invention can be integrated on one chip.
  • the communication module 203 and the second security module 202 of the glasses 20 are integrated on one chip, and the modules are integrated on one chip, thereby saving space. The volume of the glasses 20 is reduced.
  • the functions performed by the second security module 202 can also be split into several sub-modules to perform related functions, such as: encryption and decryption sub-module, signature sub-module, and the processing speed can be improved by this method;
  • the second security module 202 can be a security chip; the first transmission module 101, the first security module 102, and the second transmission module 103 of the conversion device are integrated on one chip, and each module is integrated on one chip, thereby saving space and reducing Similarly, the function performed by the first security module 102 can be split into several sub-modules to perform related functions, such as: encryption and decryption sub-module, signature sub-module, in this way, the processing speed can be improved.
  • the object of the present invention is achieved as long as the effects described in the present invention are achieved, and regardless of the module allocation method employed by the conversion device 10 and the glasses 20, it is within the scope of the present invention.
  • Example 2 Example 2
  • This embodiment is an improvement on the basis of the first embodiment.
  • the structure of the display system is the same as that of the first embodiment, and is not described here.
  • the difference between this embodiment and the first embodiment is only:
  • the encrypted information is transmitted to the glasses 20 after the conversion device 10 decrypts and processes it.
  • the first transmission module 101 sends the received first encrypted information to the first security module 102, and the first security module 102 decrypts the first encrypted information to obtain the first decrypted information, and converts the first decrypted information into a preset.
  • the first conversion information of the format is obtained by encrypting the first conversion information to obtain the first encrypted conversion data, and transmitting the first encrypted conversion data to the second transmission module 103 for outgoing.
  • the data is encrypted by the conversion device during the transmission process, which ensures the security of the data transmission.
  • the first security module 102 determines whether the first decrypted information is information in a preset format, and if not the information in the preset format, the first decrypted information. Converting to the first conversion information in the preset format, encrypting the first conversion information to obtain the first encrypted conversion data, and adding the first addition
  • the secret conversion data is sent to the second transmission module 103 for outgoing.
  • the conversion device 10 converts the original text of the first encrypted information that is not sent in the preset format by the terminal 30, and converts the information into the preset format for matching with the glasses 20 supporting the preset format, so that the glasses can be This information is displayed correctly.
  • the preset format supported by the glasses 20 of the present invention may be the codec format with the highest coding and decoding efficiency, for example: the preset format of the document supported by the glasses 20 is: TXT format; the preset of the picture supported by the glasses 20 The format is: ESC format, etc.
  • the preset format can also support the codec format with the highest codec efficiency of different types (for example, audio format, video format), which are not enumerated here.
  • the preset format adopts the most efficient codec format for encoding and decoding, which can improve the speed of data processing of glasses 20.
  • the communication module 203 of the glasses 20 is used for the second transmission module 103 of the conversion device. Establishing a communication connection, and after establishing the communication connection, receiving the first encrypted conversion data;
  • the second security module 202 is configured to decrypt the first encrypted conversion data after the communication module 203 receives the first encrypted conversion data, to obtain first conversion information;
  • the second security module 202 is further configured to send a display instruction to the display module 201 after obtaining the first conversion information
  • the display module 201 receives the display instruction and displays according to the display instruction and the first conversion information.
  • the glasses 20 of the present invention locally decrypt the encrypted data sent by the conversion device 10 through the second security module 202, further ensuring the security of data transmission, and maximally preventing remote attacks by hackers, thereby eliminating the adoption.
  • the encryption and decryption algorithm used by the conversion device 10 should be the same as the encryption and decryption algorithm used by the glasses 20.
  • the encryption and decryption algorithm used by the terminal 30 can be the same as or different from the encryption and decryption algorithm used by the glasses 20.
  • the second security module 202 of the glasses 20 is further configured to receive an input instruction, generate information to be output according to the input instruction, and encrypt the information to be output to obtain second encrypted data; 203 is further configured to send the second encrypted data after the second security module 202 obtains the second encrypted data. It can be seen that the information output by the glasses 20 is encrypted by the second security module 202 of the glasses 20 and then transmitted through the communication module 203, so that the security of the data output by the glasses 20 can be ensured.
  • the second transmission module 103 of the conversion device 10 further receives the second encrypted data, and sends the second encrypted data to the first security module 102.
  • the first security module 102 The second encrypted data is decrypted to obtain the second decrypted information. Since the ciphertext of the data is transmitted between the terminal 30 and the converting device 10, the converting device 10 further encrypts the second decrypted information to obtain the second encrypted information, and Two encrypted information is sent to the first
  • the transmission module 101 performs the outgoing, and the terminal 30 receives the second encrypted information transmitted by the first transmission module 101.
  • the algorithm for encrypting the second decrypted information should match the decryption algorithm of the terminal 30, and the encryption and decryption algorithm used by the terminal 30 can be different from the glasses 20.
  • the encryption and decryption algorithm adopted by the glasses 20 is the same as the encryption and decryption algorithm used by the terminal 30, the conversion module 10 can directly transmit the second encrypted data sent by the received glasses 20 to the terminal 30.
  • the security of the data transmission output by the glasses 20 can be ensured.
  • the conversion device 10 can also sign the transmitted data, and the glasses 20 can also verify the signature of the conversion device 10, which can be one of the following ways. Authenticate:
  • the first security module 102 may further sign the first encrypted conversion data, obtain the first signature data, and send the first signature data to the second transmission module 103 for outgoing;
  • the communication module 203 of the glasses 20 receives the first signature data when receiving the first encrypted conversion data.
  • the second security module 202 is configured to verify the first signature data after the communication module 203 receives the first signature data, and After verifying that the first signature data is passed, the first encrypted conversion data is decrypted to obtain first conversion information.
  • the verification process is reduced, the data processing speed is improved, and the encrypted data is decrypted only after the verification signature is passed. Otherwise, if the verification signature fails, the encryption is not performed. The data is decrypted to ensure the security of the data.
  • the first security module 102 may also sign the first conversion information, obtain the first signature data, and send the first signature data to the second transmission module 103 for outgoing;
  • the communication module 203 of the glasses 20 receives the first signature data when receiving the first encrypted conversion data.
  • the second security module 202 is configured to decrypt the first encrypted conversion data after the communication module 203 receives the first signature data. Obtaining the first conversion information, and after obtaining the first conversion information, verifying the first signature data, and after verifying that the first signature data passes, transmitting the display instruction to the display module.
  • the decrypted information is obtained by decrypting the encrypted data, and the first signature data is verified according to the decrypted information, thereby improving the correctness of the verification, and even if the encrypted data and the signature are simultaneously tampered with, the verification can be performed, thereby ensuring the security of the data transmission.
  • the authenticity of the identity of the sex and conversion device 10. In order to further improve the security of the data transmission and ensure the authenticity of the identity of the glasses 20, the glasses 20 can also sign the transmitted data, and the conversion device 10 can also verify the signature of the conversion device 20, which can be performed by one of the following methods.
  • the second security module 202 of the glasses 20 may, after generating the information to be output, at least the output information is signed to obtain the second signature data; the communication module 203 is further configured to: after the second security module 202 obtains the second signature data, , the second signature data is sent out;
  • the second transmission module 103 of the conversion device 10 further receives the second signature data when receiving the second encrypted data, and transmits the second signature data to the first security module 102; the first security module 102 receives the first After encrypting the data and the second signature data, decrypting the second encrypted data to obtain the second decrypted information, and after obtaining the second decrypted information, performing one of the following operations:
  • the first security module 102 verifies the second signature data, and after verifying that the second signature data is passed, encrypts the second decryption information to obtain the second encrypted information, and sends the second encrypted information to the first transmission module. Send; or
  • the first security module 102 verifies the second signature data, and after verifying that the second signature data is passed, sends the second encrypted data to the first transmission module for outgoing;
  • the first security module 102 of the conversion device 10 determines the difference between the encryption and decryption algorithms adopted by the terminal 30 and the glasses 20 after verifying that the second signature data is passed. Alternatively, the first security module 102 may send the second encrypted information or the second encrypted data to the first transmission module 101 for outgoing transmission for transmission to the terminal 30.
  • the glasses 20 directly sign the output information, thereby improving the security of the signature data itself, and even if the second encrypted data and the second signature data are simultaneously falsified, they can be verified at the conversion device 10, thereby ensuring the security of data transmission.
  • the conversion device 10 obtains the second decrypted information by decrypting the second encrypted data to verify the second signature data, thereby improving the correctness of the verification, and even if the ciphertext and the signature are simultaneously tampered with, the verification can be performed, thereby ensuring the security of the data transmission. And the authenticity of the identity of the glasses 20.
  • the second security module 202 of the glasses 20 can sign at least the second encrypted data to obtain the second signature data.
  • the communication module 203 is further configured to: after the second security module 202 obtains the second signature data, the second signature Data is sent out;
  • the second transmission module 103 of the conversion device 10 further receives the second signature data when receiving the second encrypted data, and transmits the second signature data to the first security module 102; the first security module 102 receives the first After the second encrypted data and the second signed data are verified, the second signed data is verified, and after verifying that the second signed data is passed, one of the following operations may be performed:
  • the first security module 102 decrypts the second encrypted data, obtains the second decrypted information, and encrypts the second decrypted information to obtain the second encrypted information, and sends the second encrypted information to the first transmitting module for outgoing ; or The first security module 102 sends the second encrypted data to the first transmission module for outgoing.
  • the first security module 102 of the conversion device 10 Since the terminal 30 and the conversion device 10 transmit the ciphertext of the data, the first security module 102 of the conversion device 10 is different or identical according to the encryption and decryption algorithm adopted by the terminal 30 and the glasses 20, and the first security module 102 can The second encrypted information or the second encrypted data is sent to the first transmission module 101 for outgoing transmission for transmission to the terminal 30.
  • the glasses 20 directly sign the second encrypted data, reduce the processing link, and improve the data processing speed.
  • the conversion device 10 directly verifies the second signature data according to the second encrypted data, reduces the verification link, improves the data processing speed, and The second encrypted data is decrypted only after the verification signature is passed. Otherwise, if the verification signature fails, the second encrypted data is not decrypted to ensure security.
  • the button 20 can also be provided with a button, which is the same as the embodiment 1, and will not be described again.
  • the speaker 20 can also be provided with a speaker, which is also the same as the first embodiment, and will not be described again.
  • the functions performed by the various modules in the present invention can be integrated on one chip.
  • the communication module 203 and the second security module 202 of the glasses 20 are integrated on one chip, and the modules are integrated on one chip, thereby saving space.
  • the size of the glasses 20 can be reduced.
  • the functions performed by the second security module 202 can also be split into several modules to perform related functions, such as: encryption and decryption sub-module, signature sub-module, in this way, the processing speed can be improved;
  • the security module 202 can be a security chip; the first transmission module 101, the first security module 102, and the second transmission module 103 of the conversion device are integrated on one chip, and each module is integrated on one chip, thereby saving space and reducing conversion.
  • the volume of the device 10 similarly, the function performed by the first security module 102 can be split into several sub-modules to perform related functions, such as: an encryption and decryption sub-module, a signature sub-module, and the processing speed can be improved in this way.
  • the object of the present invention is achieved as long as the effects described in the present invention are achieved, and regardless of the module allocation method employed by the conversion device 10 and the glasses 20, it is within the scope of the present invention. Any process or method description in the flowcharts or otherwise described herein may be understood to represent a module, segment or portion of code that includes one or more executable instructions for implementing the steps of a particular logical function or process.
  • portions of the invention may be implemented in hardware, software, firmware or a combination thereof.
  • multiple steps or methods may be implemented in software or firmware stored in a memory and executed by a suitable instruction execution system.
  • a suitable instruction execution system For example, if implemented in hardware, as in another embodiment, it can be used in the art.
  • each functional unit in each embodiment of the present invention may be integrated into one processing module, or each unit may exist physically separately, or two or more units may be integrated into one module.
  • the above integrated modules can be implemented in the form of hardware or in the form of software functional modules.
  • the integrated modules, if implemented in the form of software functional modules and sold or used as separate products, may also be stored in a computer readable storage medium.
  • the above-mentioned storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
  • the description of the terms “one embodiment”, “some embodiments”, “example”, “specific example”, or “some examples” and the like means a specific feature described in connection with the embodiment or example.
  • a structure, material or feature is included in at least one embodiment or example of the invention.
  • the schematic representation of the above terms does not necessarily mean the same embodiment or example.
  • the particular features, structures, materials, or characteristics described may be combined in a suitable manner in any one or more embodiments or examples.

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

La présente invention porte sur un dispositif de conversion et un système d'affichage. Le dispositif de conversion comprend un premier module de transmission , un premier module de sécurité et un second module de transmission. Le premier module de transmission est utilisé pour établir une connexion de communication et recevoir des premières informations chiffrées après avoir établi la connexion de communication ; et le premier module de sécurité est utilisé pour, après que le premier module de transmission reçoit les premières informations chiffrées, déchiffrer les premières informations chiffrées pour obtenir des premières informations déchiffrées, chiffrer les premières informations déchiffrées pour obtenir des premières données chiffrées, et envoyer les premières données chiffrées au second module de transmission pour les émettre vers l'extérieur ; ou bien le premier module de sécurité envoie, après que le premier module de transmission reçoit les premières informations chiffrées, les premières informations chiffrées au second module d'émission pour les émettre vers l'extérieur.
PCT/CN2014/073860 2013-04-27 2014-03-21 Dispositif de conversion et système d'affichage WO2014173214A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310153246.8 2013-04-27
CN201310153246.8A CN103248486B (zh) 2013-04-27 2013-04-27 转换装置和显示系统

Publications (1)

Publication Number Publication Date
WO2014173214A1 true WO2014173214A1 (fr) 2014-10-30

Family

ID=48927722

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/073860 WO2014173214A1 (fr) 2013-04-27 2014-03-21 Dispositif de conversion et système d'affichage

Country Status (2)

Country Link
CN (1) CN103248486B (fr)
WO (1) WO2014173214A1 (fr)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103281181B (zh) * 2013-04-27 2016-09-14 天地融科技股份有限公司 转换装置和显示系统
CN103248486B (zh) * 2013-04-27 2016-12-28 天地融科技股份有限公司 转换装置和显示系统

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101819334A (zh) * 2010-04-01 2010-09-01 夏翔 多功能电子眼镜
CN102256246A (zh) * 2011-07-05 2011-11-23 上海市安全生产科学研究所 移动通信的数据传输加密方法
US20110314284A1 (en) * 2010-06-21 2011-12-22 Che-Yang Chou Method for securing transmission data and security system for implementing the same
CN102916948A (zh) * 2012-09-29 2013-02-06 深圳市易联盛世科技有限公司 数据安全处理方法、装置及终端
CN103248486A (zh) * 2013-04-27 2013-08-14 天地融科技股份有限公司 转换装置和显示系统

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005111693A1 (fr) * 2004-05-17 2005-11-24 Olympus Corporation Dispositif de lunettes de visualisation d’image
US20070052672A1 (en) * 2005-09-08 2007-03-08 Swisscom Mobile Ag Communication device, system and method
CN100452075C (zh) * 2006-01-27 2009-01-14 北京飞天诚信科技有限公司 软件保护装置数据传输过程的安全控制方法及其设备
CN201048442Y (zh) * 2007-03-08 2008-04-16 刘美鸿 一种无线数字传输的眼镜电视系统
GB2449631B (en) * 2007-05-21 2012-02-15 Doo Technologies Fze Method and system for processing of images
CN102968585A (zh) * 2011-08-31 2013-03-13 北京中电华大电子设计有限责任公司 一种带usb host和安全认证及加密功能的适配器

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101819334A (zh) * 2010-04-01 2010-09-01 夏翔 多功能电子眼镜
US20110314284A1 (en) * 2010-06-21 2011-12-22 Che-Yang Chou Method for securing transmission data and security system for implementing the same
CN102256246A (zh) * 2011-07-05 2011-11-23 上海市安全生产科学研究所 移动通信的数据传输加密方法
CN102916948A (zh) * 2012-09-29 2013-02-06 深圳市易联盛世科技有限公司 数据安全处理方法、装置及终端
CN103248486A (zh) * 2013-04-27 2013-08-14 天地融科技股份有限公司 转换装置和显示系统

Also Published As

Publication number Publication date
CN103248486A (zh) 2013-08-14
CN103248486B (zh) 2016-12-28

Similar Documents

Publication Publication Date Title
WO2014173199A1 (fr) Dispositif de conversion et système d'affichage
US10182255B2 (en) Method, terminal, and system for communication pairing of a digital television terminal and a mobile terminal
US10615982B2 (en) Method and device for providing a key for internet of things (IoT) communication
TWI655875B (zh) Method for establishing wireless communication connection, communication master device, communication slave device, server and system
WO2014161438A1 (fr) Jeton de mot de passe dynamique, et procédé et système de transmission de données pour le jeton de mot de passe dynamique
WO2014180296A1 (fr) Procédé, dispositif de configuration et dispositif sans fil permettant d'établir une connexion entre des dispositifs
US10404475B2 (en) Method and system for establishing a secure communication tunnel
WO2007003078A1 (fr) Méthode d’implémentation de codage et dispositif pour celle-ci
WO2017063517A1 (fr) Procédé et dispositif d'établissement d'une communication en champ proche
WO2014173288A1 (fr) Dispositif de cryptage/décryptage et procédé et système de traitement d'informations
US20130251149A1 (en) Method and system for wireless transmission of content
WO2014173223A1 (fr) Dispositif de sécurité et système d'affichage
WO2014173215A1 (fr) Dispositif de conversion et système d'affichage
WO2014173222A1 (fr) Dispositif de sécurité et système d'affichage
CN103985042A (zh) 一种基于nfc手机及ic卡的数字信息加解密方法
WO2014173214A1 (fr) Dispositif de conversion et système d'affichage
TWI748458B (zh) 支付結果的獲取方法、裝置、支付設備和收銀設備
WO2014173216A1 (fr) Dispositif de conversion et système d'affichage
WO2014173213A1 (fr) Dispositif de conversion et système d'affichage
US20150269574A1 (en) Password key, security authentication system and security authentication method
WO2017076249A1 (fr) Procédé de jumelage, appareil de jumelage, terminal intelligent et carte à puce
WO2015000332A1 (fr) Procédé de transmission de données de signature et jeton de signature électronique
WO2015032248A1 (fr) Jeton, procédé de génération de mot de passe dynamique, et procédé et système d'authentification de mot de passe dynamique
TW201408108A (zh) 連線建立方法及其相關連線管理系統、可攜式裝置及其電腦程式產品
CN115550919A (zh) 设备配对认证方法、装置、发送方设备及接收方设备

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14788628

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14788628

Country of ref document: EP

Kind code of ref document: A1