WO2016161717A1 - Data processing method and terminal - Google Patents

Data processing method and terminal Download PDF

Info

Publication number
WO2016161717A1
WO2016161717A1 PCT/CN2015/084834 CN2015084834W WO2016161717A1 WO 2016161717 A1 WO2016161717 A1 WO 2016161717A1 CN 2015084834 W CN2015084834 W CN 2015084834W WO 2016161717 A1 WO2016161717 A1 WO 2016161717A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
differentiated
communication information
encryption
differential
Prior art date
Application number
PCT/CN2015/084834
Other languages
French (fr)
Chinese (zh)
Inventor
魏明业
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016161717A1 publication Critical patent/WO2016161717A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption

Definitions

  • This document relates to data communication technology, especially a method and terminal for implementing data processing.
  • the general encryption of the communication information realized by the current encryption method is performed.
  • the communication information is obtained through general decryption; after receiving the universal encrypted communication information, the receiving end adopts the universal Decryption implements decryption.
  • the communication information is encrypted by means of universal encryption, and the communication information is decrypted when the universally encrypted communication information is copied to any terminal capable of general decryption.
  • any decryptable terminal can be decrypted, which seriously affects the security protection of privacy. Therefore, there is a need for a way to handle user privacy more securely.
  • the embodiments of the present invention provide a method and a terminal for implementing data processing, which can truly meet the requirements for security protection of a terminal for privacy.
  • An embodiment of the present invention provides a method for implementing data processing, including:
  • the terminal performs differential encryption on the obtained communication information by using the differentiated identifier
  • Differentiated decryption is performed when communication information is displayed.
  • the differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
  • the terminal unique identifier is: a mobile device international identity code IMEI or a physical address MAC address;
  • the terminal unique identifier is: an international mobile subscriber identity IMSI number of the SIM card.
  • the method further includes: saving the communication information that completes the differential encryption in a secure storage space of the terminal.
  • the secure storage control is unmountable as a readable and writable storage space.
  • the performing the differentiated encryption specifically includes:
  • the transmitting end After the transmitting end performs general encryption on the input communication information, the transmitting end performs differential encryption.
  • the performing the differentiated encryption specifically includes:
  • the receiving end performs differential encryption on the receiving end of the received universally encrypted communication information.
  • the performing the differentiated encryption specifically includes:
  • the receiving end After the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, the receiving end performs differential encryption on the decrypted communication information.
  • the method further includes:
  • the decryption information used for decrypting the differential encryption of the transmitting end when receiving the communication information differentiated and encrypted by the transmitting end, to perform differentially encrypted communication on the transmitting end according to the decrypted information encrypted by the decrypting transmitting end.
  • Information decryption when receiving the communication information differentiated and encrypted by the transmitting end, to perform differentially encrypted communication on the transmitting end according to the decrypted information encrypted by the decrypting transmitting end.
  • the method further includes deleting the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
  • the method further includes: after the receiving end decrypts the communication information that is differentially encrypted by the transmitting end, deleting the decryption information used to decrypt the differential encryption of the transmitting end.
  • the method further includes: before performing differential decryption:
  • the differential decryption matching instruction is preset, and when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the differential information is allowed to be decrypted when the communication information is displayed; when the input differential decryption matching instruction is preset When the differential decryption matching instruction is different, the differential decryption is performed when the communication information is rejected.
  • the application further provides a terminal for implementing data processing, including a differentiated encryption unit and a decryption display unit; wherein
  • a differentiated encryption unit configured to perform differential encryption on the obtained communication information by using a differentiated identifier
  • the decryption display unit performs differential decryption when displaying communication information.
  • the differentiated encryption unit is specifically configured to encrypt, by using the differentiated identifier of the terminal as the encryption parameter, the obtained communication information;
  • the differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
  • the differentiated encryption unit is specifically configured to: use the IMEI or MAC address of the terminal, or the IMSI number of the SIM card loaded by the terminal as the differentiated identifier for the obtained communication information, and encrypt the differential identifier as an encryption parameter. .
  • the terminal further includes an information storage unit, configured to save the differentiated encrypted communication information completed by the differentiated decryption unit in a secure storage space.
  • the differentiated encryption unit is specifically configured to:
  • the sender After the input communication information is generally encrypted, the sender is differentiated and encrypted.
  • the differentiated encryption unit is specifically configured to:
  • the received universally encrypted communication information is differentially encrypted at the receiving end.
  • the differentiated encryption unit is specifically configured to:
  • the decrypted communication information After decrypting the communication information differentiated and encrypted by the transmitting end, the decrypted communication information is differentially encrypted at the receiving end.
  • the terminal when the terminal is a receiving end, the terminal further includes a receiving unit,
  • the terminal further includes a first deleting unit
  • the universally encrypted communication information is deleted after the differential encryption of the universally encrypted communication information is completed.
  • the terminal when the terminal is a receiving end, the terminal further includes a second deleting unit, configured to delete the used to decrypt the sending end after the differentiated encryption unit decrypts the differentially encrypted communication information of the sending end. Differentiate encrypted decryption information.
  • the terminal further includes a setting unit, configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is refused to be displayed.
  • a setting unit configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is refused to be displayed.
  • a computer readable storage medium storing program instructions that, when executed, implement the methods described above.
  • the terminal uses the differentiated identifier to perform differential encryption, and only displays through differential decryption, thereby implementing privacy protection of the communication information; in addition, storing the differentiated encrypted communication information in the secure storage space of the terminal.
  • the security of communication information is further improved.
  • FIG. 1 is a flow chart of a method for implementing data processing according to the present invention
  • FIG. 2 is a structural block diagram of a terminal for implementing data processing according to the present invention.
  • FIG. 3 is a flow chart of a method according to a first embodiment of the present invention.
  • FIG. 4 is a flow chart of a method according to a second embodiment of the present invention.
  • Figure 5 is a block diagram showing the structure of a system according to a second embodiment of the present invention.
  • FIG. 6 is a flow chart of a method according to a third embodiment of the present invention.
  • Figure 7 is a flowchart of a method according to a fourth embodiment of the present invention.
  • Figure 8 is a block diagram showing the structure of a system according to a fourth embodiment of the present invention.
  • FIG. 1 is a flowchart of a method for implementing data processing according to an embodiment of the present invention. As shown in FIG. 1 , the method includes:
  • Step 100 The terminal performs differential encryption on the obtained communication information by using a differentiated identifier.
  • the differentiated encryption is performed by using the differentiated identifier of the terminal as the encryption parameter for encryption;
  • the differentiated identifier can be a unique identifier of the terminal or a unique identifier of a Subscriber Identity Module (SIM) card loaded by the terminal.
  • SIM Subscriber Identity Module
  • the terminal unique identifier is: a mobile device international identity code (IMEI) or a physical address (MAC) address;
  • IMEI mobile device international identity code
  • MAC physical address
  • the terminal unique identifier is: an International Mobile Subscriber Identity (IMSI) number of the SIM card.
  • IMSI International Mobile Subscriber Identity
  • the method of the embodiment of the present invention further includes: saving the communication information that completes the differential encryption in a secure storage space of the terminal. among them,
  • the secure storage space is unmountable as a readable and writable storage space.
  • the Qualcomm chip itself has a Secure File System (SFS) area, which is a portion of the inaccessible memory that is partitioned from the Embedded File System (EFS) area.
  • FSS Secure File System
  • EFS Embedded File System
  • umount unmount file system
  • the dual system terminal has two independent memory spaces, and one of the memory spaces is selected as the secure storage space.
  • the secure storage space is used to store communication information for differential encryption, which ensures the security of differentiated encrypted communication information.
  • the differential encryption of the obtained communication information in step 100 includes:
  • the transmitting end performs general encryption on the input communication information, and then performs differential authentication on the transmitting end.
  • Universal encryption is performed by using an encryption method shared by a plurality of terminals, and each of the terminals has the decryption information of the universal encryption.
  • performing differentiated encryption includes:
  • the receiving end performs differential encryption on the receiving end of the received universal encrypted communication information.
  • the terminal can simultaneously perform differential encryption of the communication information as the transmitting end and the receiving end, or can perform differential encryption only as the transmitting end or the receiving end.
  • the method of the embodiment of the present invention further includes: deleting the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
  • the transmitting end performs differential encryption
  • the receiving end still uses only the general encryption method for encryption.
  • Solution 2 When the terminal is the transmitting end, the transmitting end directly performs differential authentication and encryption on the input communication information.
  • the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, and performs differential authentication and encryption on the decrypted communication information.
  • the solution 2 includes:
  • the receiving end When receiving the communication information differentiated and encrypted by the transmitting end, the receiving end receives the decryption information for decrypting the differential encryption of the transmitting end, and decrypts the communication information differentiated and encrypted by the transmitting end according to the decrypted information encrypted by the decrypting transmitting end.
  • the method further includes: deleting the decrypting information used to decrypt the differential encryption of the transmitting end.
  • the terminal after the universally encrypted communication information or the decryption information used for decrypting the differential encryption of the sender is deleted, whether it is the sender or the receiver, only the terminal is uniquely saved.
  • the identifier or the unique identifier of the SIM card of the customer identification module loaded by the terminal is used as the encryption parameter to encrypt the encrypted information.
  • the terminal that conforms to the unique identifier can only adopt the unique identifier as the encryption parameter. Decrypting the information to decrypt the communication information. Therefore, the privacy of the communication information is guaranteed.
  • step 101 when the communication information is displayed, differential decryption is performed.
  • the method of the embodiment of the present invention further includes:
  • Presetting the differential decryption matching instruction when the input differentiated decryption matching instruction is the same as the pre-set differential decryption matching instruction, allowing differential information decryption when displaying the communication information;
  • the differential decryption is performed when the communication information is refused to be displayed.
  • differential decryption matching instruction is similarly set to the unlocking instruction of the terminal, and the terminal is differentiated and decrypted and matched with the matching command to ensure the privacy of the terminal communication information.
  • FIG. 2 is a structural block diagram of a terminal for implementing data processing according to an embodiment of the present invention. As shown in FIG. 2, the method includes: a differentiated encryption unit and a decryption display unit;
  • the differentiated encryption unit is configured to perform differential encryption on the obtained communication information by using the differentiated identifier
  • the decryption display unit is set to display the communication information and perform differential decryption.
  • the differentiated encryption unit is configured to encrypt the obtained communication information by using the differentiated identifier of the terminal as an encryption parameter;
  • the differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
  • the differentiated encryption unit is configured to use the IMEI or MAC address of the terminal or the IMSI number of the SIM card loaded by the terminal as the differentiated identifier for the obtained communication information, and encrypt the differential identifier as an encryption parameter. .
  • the terminal of the embodiment of the present invention may further include an information storage unit configured to save the differentiated encrypted communication information completed by the differentiated decryption unit in a secure storage space.
  • the differentiated encryption unit is set to,
  • the sender After the input communication information is generally encrypted, the sender is differentiated and encrypted.
  • the differentiated encryption unit is set to,
  • the received universally encrypted communication information is differentially encrypted at the receiving end.
  • the terminal may further include a first deleting unit, configured to delete the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
  • a first deleting unit configured to delete the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
  • the differentiated encryption unit is set to,
  • the terminal When the terminal is a receiving end, the terminal further includes a receiving unit,
  • the terminal in the embodiment of the present invention may further include a second deleting unit, configured to delete the differential information used for decrypting the sending end after the differentiated encryption unit decrypts the communication information differentiated and encrypted by the sending end. Encrypted decryption information.
  • the terminal of the embodiment of the present invention may further include a setting unit configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is refused to be displayed.
  • a setting unit configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information
  • the terminal sets the differential decryption matching instruction in advance, when the terminal views the signal of the communication information, the terminal first performs verification of the differential decryption matching instruction (for example, password) when inputting
  • the differentiated decryption matching instruction is the same as the pre-set differential decryption matching instruction, and allows differential decryption when the communication information is displayed; when the input differentiated decryption matching instruction is different from the preset differential decryption matching instruction, the display is rejected Differentiate decryption when communicating information.
  • the unit at the transmitting end and the unit at the receiving end may be integrated into the same terminal to form a terminal that performs differential encryption on both the transmitted communication information and the received communication information.
  • FIG. 3 is a flowchart of a method according to a first embodiment of the present invention. As shown in FIG. 3, the method includes:
  • Step 300 The terminal acquires communication information input by the user, and performs general encryption on the communication information to obtain universally encrypted communication information.
  • all terminals with universal decryption function can decrypt the universally encrypted communication information.
  • Step 301 Perform differential encryption on the universally encrypted communication information.
  • the unique identifier of the terminal or the unique identifier of the SIM card loaded by the terminal is used as an encryption parameter for encryption, that is, only a terminal with the same unique identifier can be set. The decryption process.
  • the unique identification information is generally encoded and decoded, that is, the plain text display is not used.
  • Step 302 After the differential encryption is completed, the terminal deletes the universally encrypted communication information; that is, only the differentially encrypted communication information is saved on the terminal at this time, and the other terminal cannot obtain the decrypted unique identifier, and therefore cannot decrypt.
  • the communication information is guaranteed to be secure.
  • Step 303 The differentially encrypted communication information is saved in a secure storage space of the terminal.
  • the secure storage space is a storage space that cannot be mounted as a readable and writable storage.
  • the Qualcomm chip itself has an SFS area, which is a portion of the inaccessible memory that is partitioned from the Encrypting File System (EFS) area.
  • EFS Encrypting File System
  • a mobile phone with a security domain divides a small area on the memory area as an unmount file system (umount) area. The area cannot be mounted, that is, it cannot be mounted as readable and writable. In dual systems, there are two separate memory spaces, and the secure storage space will occupy dedicated memory.
  • Step 304 When displaying the communication information, the terminal performs differential decryption and display by using the decryption information corresponding to the differentiated encryption; that is, decryption is performed by using the decrypted information including the differentiated decryption with the same unique identifier.
  • the terminals of steps 300-304 serve as the sender to perform privacy protection of the communication information.
  • This embodiment describes a process of differential encryption and decryption of communication information from the receiving end.
  • FIG. 4 is a flowchart of a method according to a second embodiment of the present invention. As shown in FIG. 4, the method includes:
  • Step 400 The receiving end receives the communication information from the transmitting end and uses universal encryption.
  • the receiving end is a terminal that does not use differential encryption to process the communication information
  • the communication information may be decrypted and displayed in accordance with the general encryption processing procedure.
  • Step 401 The receiving end performs differential encryption on the receiving end for the received universal encrypted communication information.
  • Step 402 After completing the differential encryption, deleting the received universal encrypted communication information.
  • Step 403 Save the differentiated and encrypted communication information in a secure storage space of the terminal.
  • Step 404 When displaying the communication information, the terminal performs differential decryption and display by using the decryption information corresponding to the differentiated encryption.
  • FIG. 5 is a structural block diagram of a system according to a second embodiment of the present invention. As shown in FIG. 5, after the transmitting end encrypts the input communication information, the transmitting end performs differential encryption processing on the transmitting end, and differentiates encryption at the transmitting end.
  • the processing flow refers to the description of Embodiment 1.
  • the receiving end performs differential encryption on the receiving end according to steps 400-404 to ensure the privacy of the communication information.
  • FIG. 6 is a flowchart of a method according to a third embodiment of the present invention. As shown in FIG. 6, the method includes:
  • Step 600 Acquire communication information, and add a random number to the header or the tail of the communication information for general encryption.
  • different random numbers can be used each time to ensure the security of the communication information during transmission.
  • the decrypted public key of the universal encryption is carried in the sending process.
  • Step 601 The transmitting end performs differential encryption on the universally encrypted communication information, and the encryption algorithm encrypts the unique identifier sent by the encryption algorithm as a parameter; for example, the IMEI number or the MEID number is used as a parameter for encryption, and the encrypted file is added to the message file after encryption.
  • the information is decrypted and used as identification during the decryption process. It should be noted that, for the decryption process, it is completely corresponding to the encryption process, and the encryption parameter is encrypted by the unique identifier, and the decryption information is decrypted in the decryption information for the terminal that allows the decryption to be decrypted by the unique identifier. For differential decryption.
  • Step 602 After decrypting and decrypting the information, the communication information is obtained and displayed.
  • FIG. 7 is a flowchart of a method according to a fourth embodiment of the present invention. As shown in FIG. 7, the method includes:
  • Step 700 The receiving end receives the differentiated encrypted communication information from the transmitting end and the decryption information used to decrypt the differential encryption of the sending end.
  • Step 701 Decrypt the differentially encrypted communication information according to the decryption information. Since the decryption information is based on the decryption information generated by the sender and the encrypted unique identifier, the decryption may be implemented. For other terminal decryption information, because it is not available The unique identifier sent, unable to generate decryption information that can decrypt the differentiated encrypted communication information.
  • Step 702 After decrypting the communication information of the differential encryption of the transmitting end, deleting the parsing information, performing differential encryption on the decrypted communication information; that is, using the IMEI number or MAC address of the receiving end, and the IMSI number of the SIM card as the encryption.
  • the parameters are differentially encrypted at the receiving end.
  • Step 703 When displaying the communication information, the receiving end performs differential decryption and display by using the decryption information corresponding to the differentiated encryption.
  • the transmitting end directly performs differential encryption on the input communication information, and performs related processing of differentiated encryption; the receiving end follows steps 700-703.
  • the communication information differentiated and encrypted by the sender sent by the sender is differentiated and decrypted by the sender according to the decryption information sent by the sender, and the decryption information is deleted after the sender differentiates and decrypts, and the receiver differentiates and decrypts the receiver.
  • the communication information is differentially encrypted at the receiving end to ensure the privacy of the communication information.
  • all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
  • the devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
  • the device/function module/functional unit in the above embodiment When the device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium.
  • the above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk, etc.
  • the terminal uses the differentiated identifier to perform differential encryption, and the display is performed only through differential decryption, thereby realizing the privacy protection of the communication information; in addition, the differential encryption is implemented.
  • the communication information is stored in the secure storage space of the terminal, which further improves the security of the communication information.

Abstract

A data processing method and terminal. The method comprises: performing differentiated encryption, via differentiated identifiers, by a terminal, on obtained communication information; when the communication information is displayed, performing differentiated decryption. The terminal employs differentiated identifiers to perform differentiated encryption, and the information is displayed only after differentiated decryption; in this way, the present invention enables privacy protection of communication information.

Description

一种实现数据处理的方法及终端Method and terminal for realizing data processing 技术领域Technical field
本文涉及数据通信技术,尤指一种实现数据处理的方法及终端。This document relates to data communication technology, especially a method and terminal for implementing data processing.
背景技术Background technique
随着无线通信应用技术的不断发展,用户对个人隐私的保护要求越来越高,为了保护用户的个人隐私,一般对涉及隐私的信息进行数据处理;其中,应用于用户沟通的通信应用的隐私尤为关注,例如即时通信应用中涉及个人隐私的通信信息。With the continuous development of wireless communication application technology, users have higher and higher protection requirements for personal privacy. In order to protect the privacy of users, data processing related to privacy is generally performed; among them, the privacy of communication applications applied to user communication Of particular interest are communication information related to personal privacy in instant messaging applications.
以即时通信为例,采用目前的加密方法实现的通信信息的通用加密,通用加密的通信信息在发送端存储后,通过通用解密获得通信信息;接收端接收到通用加密的通信信息后,采用通用解密实现解密。采用通用加密的方式进行通信信息的加密,将通用加密的通信信息复制到任何可进行通用解密的终端上时,均可实现通信信息的解密。这样的加密虽在一定程度上满足了隐私保护的要求,但任何可解密终端都可以进行解密,严重影响了对隐私的安全保护。因此,需要一种方法可以对用户隐私进行更为安全的处理。Taking instant communication as an example, the general encryption of the communication information realized by the current encryption method is performed. After the general encrypted communication information is stored at the transmitting end, the communication information is obtained through general decryption; after receiving the universal encrypted communication information, the receiving end adopts the universal Decryption implements decryption. The communication information is encrypted by means of universal encryption, and the communication information is decrypted when the universally encrypted communication information is copied to any terminal capable of general decryption. Although such encryption satisfies the requirements of privacy protection to a certain extent, any decryptable terminal can be decrypted, which seriously affects the security protection of privacy. Therefore, there is a need for a way to handle user privacy more securely.
发明内容Summary of the invention
本发明实施例提供一种实现数据处理的方法及终端,能够确实满足终端对隐私进行安全保护的要求。The embodiments of the present invention provide a method and a terminal for implementing data processing, which can truly meet the requirements for security protection of a terminal for privacy.
本发明实施例提供了一种实现数据处理的方法,包括:An embodiment of the present invention provides a method for implementing data processing, including:
终端通过差异化标识对获得的通信信息进行差异化加密;The terminal performs differential encryption on the obtained communication information by using the differentiated identifier;
显示通信信息时,进行差异化解密。Differentiated decryption is performed when communication information is displayed.
可选地,进行差异化加密为以终端的差异化标识作为加密参数进行加密;Optionally, performing differential encryption to encrypt the differentiated identifier of the terminal as an encryption parameter;
所述差异化标识为终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识。The differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
可选地,当所述差异化标识为终端的唯一标识时,所述终端唯一标识为:移动设备国际身份码IMEI或物理地址MAC地址; Optionally, when the differentiated identifier is a unique identifier of the terminal, the terminal unique identifier is: a mobile device international identity code IMEI or a physical address MAC address;
当所述差异化标识为终端所负载的客户识别模块SIM卡的唯一标识时,所述终端唯一标识为:SIM卡的国际移动用户识别码IMSI号。When the differentiated identifier is a unique identifier of the subscriber identity module SIM card loaded by the terminal, the terminal unique identifier is: an international mobile subscriber identity IMSI number of the SIM card.
可选地,该方法还包括:将所述完成差异化加密的通信信息保存在终端的安全存储空间。Optionally, the method further includes: saving the communication information that completes the differential encryption in a secure storage space of the terminal.
可选地,安全存储控制为无法挂载为可读可写的存储空间。Optionally, the secure storage control is unmountable as a readable and writable storage space.
可选地,当所述终端为发送端时,Optionally, when the terminal is a sending end,
所述进行差异化加密具体包括:The performing the differentiated encryption specifically includes:
所述发送端对输入的通信信息进行通用加密后,进行发送端差异化加密。After the transmitting end performs general encryption on the input communication information, the transmitting end performs differential encryption.
可选地,当所述终端为接收端时,所述进行差异化加密具体包括:Optionally, when the terminal is a receiving end, the performing the differentiated encryption specifically includes:
所述接收端对接收的通用加密的通信信息进行接收端差异化加密。The receiving end performs differential encryption on the receiving end of the received universally encrypted communication information.
可选地,当所述终端为接收端时,所述进行差异化加密具体包括:Optionally, when the terminal is a receiving end, the performing the differentiated encryption specifically includes:
所述接收端对发送端差异化加密的通信信息进行解密后,对解密后的通信信息进行接收端差异化加密。After the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, the receiving end performs differential encryption on the decrypted communication information.
可选地,在所述接收端对发送端差异化加密的通信信息进行解密前,该方法还包括:Optionally, before the receiving end decrypts the differentially encrypted communication information of the sending end, the method further includes:
所述接收端在接收发送端差异化加密的通信信息时,接收用于解密发送端差异化加密的解密信息,以根据所述解密发送端差异化加密的解密信息对发送端差异化加密的通信信息解密。Receiving, by the receiving end, the decryption information used for decrypting the differential encryption of the transmitting end, when receiving the communication information differentiated and encrypted by the transmitting end, to perform differentially encrypted communication on the transmitting end according to the decrypted information encrypted by the decrypting transmitting end. Information decryption.
可选地,该方法还包括:在完成对所述通用加密的通信信息的差异化加密后,删除所述通用加密的通信信息。Optionally, the method further includes deleting the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
可选地,该方法还包括:在所述接收端对发送端差异化加密的通信信息进行解密后,删除所述用于解密发送端差异化加密的解密信息。Optionally, the method further includes: after the receiving end decrypts the communication information that is differentially encrypted by the transmitting end, deleting the decryption information used to decrypt the differential encryption of the transmitting end.
可选地,在进行差异化解密之前该方法还包括:Optionally, the method further includes: before performing differential decryption:
预先设置差异化解密匹配指令,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。 The differential decryption matching instruction is preset, and when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the differential information is allowed to be decrypted when the communication information is displayed; when the input differential decryption matching instruction is preset When the differential decryption matching instruction is different, the differential decryption is performed when the communication information is rejected.
另一方面,本申请还提供一种实现数据处理的终端,包括差异化加密单元及解密显示单元;其中,In another aspect, the application further provides a terminal for implementing data processing, including a differentiated encryption unit and a decryption display unit; wherein
差异化加密单元,用于通过差异化标识对获得的通信信息进行差异化加密;a differentiated encryption unit, configured to perform differential encryption on the obtained communication information by using a differentiated identifier;
解密显示单元,用于显示通信信息时,进行差异化解密。The decryption display unit performs differential decryption when displaying communication information.
可选地,差异化加密单元具体用于,对获得的通信信息,以终端的差异化标识作为加密参数进行加密;Optionally, the differentiated encryption unit is specifically configured to encrypt, by using the differentiated identifier of the terminal as the encryption parameter, the obtained communication information;
所述差异化标识为终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识。The differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
可选地,差异化加密单元具体用于,对获得的通信信息,以终端的IMEI或MAC地址、或终端所负载的SIM卡的IMSI号作为差异化标识,以差异化标识作为加密参数进行加密。Optionally, the differentiated encryption unit is specifically configured to: use the IMEI or MAC address of the terminal, or the IMSI number of the SIM card loaded by the terminal as the differentiated identifier for the obtained communication information, and encrypt the differential identifier as an encryption parameter. .
可选地,该终端还包括信息存储单元,用于将差异化解密单元完成的所述差异化加密的通信信息保存在安全存储空间。Optionally, the terminal further includes an information storage unit, configured to save the differentiated encrypted communication information completed by the differentiated decryption unit in a secure storage space.
可选地,当所述终端为发送端时,所述差异化加密单元具体用于,Optionally, when the terminal is a sending end, the differentiated encryption unit is specifically configured to:
对输入的通信信息进行通用加密后,再进行发送端差异化加密。After the input communication information is generally encrypted, the sender is differentiated and encrypted.
可选地,当所述终端为接收端时,所述差异化加密单元具体用于,Optionally, when the terminal is a receiving end, the differentiated encryption unit is specifically configured to:
对接收的通用加密的通信信息进行接收端差异化加密。The received universally encrypted communication information is differentially encrypted at the receiving end.
可选地,当所述终端为接收端时,所述差异化加密单元具体用于,Optionally, when the terminal is a receiving end, the differentiated encryption unit is specifically configured to:
对发送端差异化加密的通信信息进行解密后,对解密后的通信信息进行接收端差异化加密。After decrypting the communication information differentiated and encrypted by the transmitting end, the decrypted communication information is differentially encrypted at the receiving end.
可选地,当所述终端为接收端时,该终端还包括接收单元,Optionally, when the terminal is a receiving end, the terminal further includes a receiving unit,
用于接收发送端发送的差异化加密的通信信息的同时,接收用于解密发送端差异化加密的解密信息,以使差异化加密单元根据所述解密发送端差异化加密的解密信息,对发送差异化加密的通信信息解密。And receiving, for receiving the differentially encrypted communication information sent by the sending end, receiving the decryption information for decrypting the differential encryption of the transmitting end, so that the differentiated encryption unit sends the decrypted information that is differentially encrypted according to the decrypting transmitting end. Differentiated encrypted communication information is decrypted.
可选地,当所述终端还包括第一删除单元,用于在完成对所述通用加密的通信信息的差异化加密后,删除所述通用加密的通信信息。 Optionally, when the terminal further includes a first deleting unit, the universally encrypted communication information is deleted after the differential encryption of the universally encrypted communication information is completed.
可选地,当所述端为接收端时,该终端还包括第二删除单元,用于在差异化加密单元对发送端差异化加密的通信信息进行解密后,删除所述用于解密发送端差异化加密的解密信息。Optionally, when the terminal is a receiving end, the terminal further includes a second deleting unit, configured to delete the used to decrypt the sending end after the differentiated encryption unit decrypts the differentially encrypted communication information of the sending end. Differentiate encrypted decryption information.
可选地,该终端还包括设置单元,用于预先设置差异化解密匹配指令,在进行差异化解密之前,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。Optionally, the terminal further includes a setting unit, configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is refused to be displayed.
一种计算机可读存储介质,存储有程序指令,当该程序指令被执行时可实现上面所述的方法。A computer readable storage medium storing program instructions that, when executed, implement the methods described above.
本发明实施例通过终端采用差异化标识进行差异化加密,只有通过差异化解密才进行显示,实现了通信信息的隐私安全保护;另外,将差异化加密的通信信息保存在终端的安全存储空间,进一步提高了通信信息的安全。In the embodiment of the present invention, the terminal uses the differentiated identifier to perform differential encryption, and only displays through differential decryption, thereby implementing privacy protection of the communication information; in addition, storing the differentiated encrypted communication information in the secure storage space of the terminal. The security of communication information is further improved.
附图说明DRAWINGS
此处所说明的附图用来提供对本发明的进一步理解,构成本申请的一部分,本发明的示意性实施例及其说明用于解释本发明,并不构成对本发明的不当限定。在附图中:The drawings described herein are intended to provide a further understanding of the invention, and are intended to be a part of the invention. In the drawing:
图1为本发明实现数据处理的方法的流程图;1 is a flow chart of a method for implementing data processing according to the present invention;
图2为本发明实现数据处理的终端的结构框图;2 is a structural block diagram of a terminal for implementing data processing according to the present invention;
图3为本发明第一实施例的方法流程图;3 is a flow chart of a method according to a first embodiment of the present invention;
图4为本发明第二实施例的方法流程图;4 is a flow chart of a method according to a second embodiment of the present invention;
图5为本发明第二实施例的系统的结构框图;Figure 5 is a block diagram showing the structure of a system according to a second embodiment of the present invention;
图6为本发明第三实施例的方法流程图;6 is a flow chart of a method according to a third embodiment of the present invention;
图7为本发明第四实施例的方法流程图;Figure 7 is a flowchart of a method according to a fourth embodiment of the present invention;
图8为本发明第四实施例的系统的结构框图。 Figure 8 is a block diagram showing the structure of a system according to a fourth embodiment of the present invention.
具体实施方式detailed description
为使本发明的目的、技术方案和优点更加清楚明白,下文中将结合附图对本发明的实施例进行详细说明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。The embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
图1为本发明实施例实现数据处理的方法的流程图,如图1所示,包括:FIG. 1 is a flowchart of a method for implementing data processing according to an embodiment of the present invention. As shown in FIG. 1 , the method includes:
步骤100、终端通过差异化标识对获得的通信信息进行差异化加密;Step 100: The terminal performs differential encryption on the obtained communication information by using a differentiated identifier.
仅本终端具有差异化加密的解密信息,本步骤中,进行差异化加密为以终端的差异化标识作为加密参数进行加密;Only the terminal has differentially decrypted decryption information. In this step, the differentiated encryption is performed by using the differentiated identifier of the terminal as the encryption parameter for encryption;
差异化标识可以为终端的唯一标识或终端所负载的客户识别模块(SIM)卡的唯一标识。The differentiated identifier can be a unique identifier of the terminal or a unique identifier of a Subscriber Identity Module (SIM) card loaded by the terminal.
可选的,当差异化标识为终端的唯一标识时,所述终端唯一标识为:移动设备国际身份码(IMEI)或物理地址(MAC)地址;Optionally, when the differentiated identifier is a unique identifier of the terminal, the terminal unique identifier is: a mobile device international identity code (IMEI) or a physical address (MAC) address;
当差异化标识为终端所负载的客户识别模块SIM卡的唯一标识时,所述终端唯一标识为:SIM卡的国际移动用户识别码(IMSI)号。When the differentiated identifier is a unique identifier of the subscriber identity module SIM card loaded by the terminal, the terminal unique identifier is: an International Mobile Subscriber Identity (IMSI) number of the SIM card.
本发明实施例的方法还包括:将所述完成差异化加密的通信信息保存在终端的安全存储空间。其中,The method of the embodiment of the present invention further includes: saving the communication information that completes the differential encryption in a secure storage space of the terminal. among them,
安全存储空间为无法挂载为可读可写的存储空间。例如,高通芯片本身就有安全文件系统(SFS)区域,是从嵌入文件系统(EFS)区域划分出的一部分不可访问内存。若终端为该系统终端,则通过在终端内存区域上划分出一小段区域作为解挂文件系统(umount)区域,作为终端的安全域,终端的安全域无法进行mount操作,即无法挂载为可读可写。双系统终端有两个独立的内存空间,选择其中一个内存空间作为安全存储空间。安全存储空间用于存储进行差异化加密的通信信息,保证了差异化加密的通信信息的安全。The secure storage space is unmountable as a readable and writable storage space. For example, the Qualcomm chip itself has a Secure File System (SFS) area, which is a portion of the inaccessible memory that is partitioned from the Embedded File System (EFS) area. If the terminal is the terminal of the system, a small area is defined in the memory area of the terminal as the unmount file system (umount) area. As the security domain of the terminal, the security domain of the terminal cannot be mounted, that is, it cannot be mounted. Read and write. The dual system terminal has two independent memory spaces, and one of the memory spaces is selected as the secure storage space. The secure storage space is used to store communication information for differential encryption, which ensures the security of differentiated encrypted communication information.
步骤100中的对获得的通信信息进行差异化加密包括:The differential encryption of the obtained communication information in step 100 includes:
方案1、当终端为发送端时,发送端对输入的通信信息进行通用加密后,再进行发送端差异化加密。通用加密是采用多个终端共用的加密方式进行加密,多个终端均具有该通用加密的解密信息。 Solution 1. When the terminal is the transmitting end, the transmitting end performs general encryption on the input communication information, and then performs differential authentication on the transmitting end. Universal encryption is performed by using an encryption method shared by a plurality of terminals, and each of the terminals has the decryption information of the universal encryption.
当终端为接收端时,进行差异化加密包括: When the terminal is the receiving end, performing differentiated encryption includes:
接收端对接收的通用加密的通信信息进行接收端差异化加密。The receiving end performs differential encryption on the receiving end of the received universal encrypted communication information.
需要说明的是,终端可以同时作为发送端和接收端,进行通信信息的差异化加密,也可以只作为发送端或接收端,进行差异化加密。It should be noted that the terminal can simultaneously perform differential encryption of the communication information as the transmitting end and the receiving end, or can perform differential encryption only as the transmitting end or the receiving end.
采用方案1时,本发明实施例方法还包括:在完成对所述通用加密的通信信息的差异化加密后,删除通用加密的通信信息。When the solution 1 is adopted, the method of the embodiment of the present invention further includes: deleting the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
需要说明的是,在实际应用终端,存在发送端进行了差异化加密,接收端仍仅采用通用加密的方式进行加密。It should be noted that, in the actual application terminal, the transmitting end performs differential encryption, and the receiving end still uses only the general encryption method for encryption.
方案2、当终端为发送端时,发送端对输入的通信信息直接进行发送端差异化加密。Solution 2: When the terminal is the transmitting end, the transmitting end directly performs differential authentication and encryption on the input communication information.
当终端为接收端时,接收端对发送端差异化加密的通信信息进行解密后,对解密后的通信信息进行接收端差异化加密。When the terminal is the receiving end, the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, and performs differential authentication and encryption on the decrypted communication information.
可选地,方案2在接收端对发送端差异化加密的通信信息进行解密前,还包括:Optionally, before the decryption of the communication information that is differentiated and encrypted by the sending end, the solution 2 includes:
接收端在接收发送端差异化加密的通信信息时,接收用于解密发送端差异化加密的解密信息,以根据解密发送端差异化加密的解密信息对发送端差异化加密的通信信息解密。When receiving the communication information differentiated and encrypted by the transmitting end, the receiving end receives the decryption information for decrypting the differential encryption of the transmitting end, and decrypts the communication information differentiated and encrypted by the transmitting end according to the decrypted information encrypted by the decrypting transmitting end.
在接收端对发送端差异化加密的通信信息进行解密后,还包括:删除用于解密发送端差异化加密的解密信息。After the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, the method further includes: deleting the decrypting information used to decrypt the differential encryption of the transmitting end.
需要说明的是,在方案1和方案2中对通用加密的通信信息或用于解密发送端差异化加密的解密信息进行删除后,无论是发送端还是接收端,最终只保存了以终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识作为加密参数进行加密的差异化加密信息,即通信信息进行差异化加密后,只能通过符合唯一标识的终端采用以唯一标识作为加密参数的解密信息实现通信信息的解密。因此,保证了通信信息的隐私安全。It should be noted that, in the scheme 1 and the scheme 2, after the universally encrypted communication information or the decryption information used for decrypting the differential encryption of the sender is deleted, whether it is the sender or the receiver, only the terminal is uniquely saved. The identifier or the unique identifier of the SIM card of the customer identification module loaded by the terminal is used as the encryption parameter to encrypt the encrypted information. After the communication information is differentiated and encrypted, the terminal that conforms to the unique identifier can only adopt the unique identifier as the encryption parameter. Decrypting the information to decrypt the communication information. Therefore, the privacy of the communication information is guaranteed.
步骤101、显示通信信息时,进行差异化解密。In step 101, when the communication information is displayed, differential decryption is performed.
在进行差异化解密之前,本发明实施例方法还包括:Before performing the differential decryption, the method of the embodiment of the present invention further includes:
预先设置差异化解密匹配指令,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当 输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。Presetting the differential decryption matching instruction, when the input differentiated decryption matching instruction is the same as the pre-set differential decryption matching instruction, allowing differential information decryption when displaying the communication information; When the input differentiated decryption matching command is different from the previously set differentiated decryption matching command, the differential decryption is performed when the communication information is refused to be displayed.
需要说明的是,预先设置差异化解密匹配指令类似与终端的解锁指令,通过对终端进行差异化解密匹配指令匹配认证,保证了终端通信信息的隐私安全。It should be noted that the differential decryption matching instruction is similarly set to the unlocking instruction of the terminal, and the terminal is differentiated and decrypted and matched with the matching command to ensure the privacy of the terminal communication information.
图2为本发明实施例实现数据处理的终端的结构框图,如图2所示,包括:差异化加密单元及解密显示单元;其中,2 is a structural block diagram of a terminal for implementing data processing according to an embodiment of the present invention. As shown in FIG. 2, the method includes: a differentiated encryption unit and a decryption display unit;
差异化加密单元,设置为通过差异化标识对获得的通信信息进行差异化加密;The differentiated encryption unit is configured to perform differential encryption on the obtained communication information by using the differentiated identifier;
解密显示单元,设置为显示通信信息时,进行差异化解密。The decryption display unit is set to display the communication information and perform differential decryption.
差异化加密单元是设置为,对获得的通信信息,以终端的差异化标识作为加密参数进行加密;The differentiated encryption unit is configured to encrypt the obtained communication information by using the differentiated identifier of the terminal as an encryption parameter;
差异化标识为终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识。The differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
可选的,差异化加密单元是设置为,对获得的通信信息,以终端的IMEI或MAC地址、或终端所负载的SIM卡的IMSI号作为差异化标识,以差异化标识作为加密参数进行加密。Optionally, the differentiated encryption unit is configured to use the IMEI or MAC address of the terminal or the IMSI number of the SIM card loaded by the terminal as the differentiated identifier for the obtained communication information, and encrypt the differential identifier as an encryption parameter. .
本发明实施例的终端还可包括信息存储单元,设置为将差异化解密单元完成的所述差异化加密的通信信息保存在安全存储空间。The terminal of the embodiment of the present invention may further include an information storage unit configured to save the differentiated encrypted communication information completed by the differentiated decryption unit in a secure storage space.
当终端为发送端时,差异化加密单元是设置为,When the terminal is the sender, the differentiated encryption unit is set to,
对输入的通信信息进行通用加密后,再进行发送端差异化加密。After the input communication information is generally encrypted, the sender is differentiated and encrypted.
当终端为接收端时,所述差异化加密单元是设置为,When the terminal is the receiving end, the differentiated encryption unit is set to,
对接收的通用加密的通信信息进行接收端差异化加密。The received universally encrypted communication information is differentially encrypted at the receiving end.
可选地,终端还可以包括第一删除单元,设置为在完成对所述通用加密的通信信息的差异化加密后,删除所述通用加密的通信信息。Optionally, the terminal may further include a first deleting unit, configured to delete the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
当终端为接收端时,差异化加密单元是设置为,When the terminal is the receiving end, the differentiated encryption unit is set to,
对发送端差异化加密的通信信息进行解密后,对解密后的通信信息进行 接收端差异化加密。After decrypting the communication information differentiated and encrypted by the sender, performing the decrypted communication information Receiver differentiated encryption.
当终端为接收端时,该终端还包括接收单元,When the terminal is a receiving end, the terminal further includes a receiving unit,
设置为接收发送端发送的差异化加密的通信信息的同时,接收用于解密发送端差异化加密的解密信息,以使差异化加密单元根据所述解密发送端差异化加密的解密信息,对发送差异化加密的通信信息解密。Set to receive the differentially encrypted communication information sent by the transmitting end, and receive the decryption information used to decrypt the differential encryption of the transmitting end, so that the differentiated encryption unit sends the decrypted information encrypted according to the decrypted transmitting end to the decrypted information. Differentiated encrypted communication information is decrypted.
当端为接收端时,本发明实施例终端还可包括第二删除单元,设置为在差异化加密单元对发送端差异化加密的通信信息进行解密后,删除所述用于解密发送端差异化加密的解密信息。When the terminal is the receiving end, the terminal in the embodiment of the present invention may further include a second deleting unit, configured to delete the differential information used for decrypting the sending end after the differentiated encryption unit decrypts the communication information differentiated and encrypted by the sending end. Encrypted decryption information.
本发明实施例终端还可包括设置单元,设置为预先设置差异化解密匹配指令,在进行差异化解密之前,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。The terminal of the embodiment of the present invention may further include a setting unit configured to preset a differential decryption matching instruction, and before the differential decryption is performed, when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the display is allowed to be displayed. Differentiated decryption is performed when the communication information is different; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is refused to be displayed.
例如、在查看通信信息,进行差异化之前,如果终端预先设置差异化解密匹配指令,则终端查看通信信息的信号时,终端首先会进行差异化解密匹配指令(例如、密码)的验证,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。For example, before the communication information is viewed and differentiated, if the terminal sets the differential decryption matching instruction in advance, when the terminal views the signal of the communication information, the terminal first performs verification of the differential decryption matching instruction (for example, password) when inputting The differentiated decryption matching instruction is the same as the pre-set differential decryption matching instruction, and allows differential decryption when the communication information is displayed; when the input differentiated decryption matching instruction is different from the preset differential decryption matching instruction, the display is rejected Differentiate decryption when communicating information.
需要说明的是,本发明实施例发送端的单元和接收端的单元可以集成在同一个终端中,形成一个对发送的通信信息和接收的通信信息都进行差异化加密的终端。It should be noted that, in the embodiment of the present invention, the unit at the transmitting end and the unit at the receiving end may be integrated into the same terminal to form a terminal that performs differential encryption on both the transmitted communication information and the received communication information.
以下通过具体实施例对本发明方法进行清楚详细的说明,实施例仅用于陈述本发明,并不用于限制本发明方法的保护范围。The method of the present invention is described in detail below by way of specific examples, which are merely used to illustrate the invention and are not intended to limit the scope of the method of the invention.
实施例1Example 1
图3为本发明第一实施例的方法流程图,如图3所示,包括:FIG. 3 is a flowchart of a method according to a first embodiment of the present invention. As shown in FIG. 3, the method includes:
步骤300、终端获取用户输入的通信信息,将通信信息进行通用加密,获得通用加密的通信信息。 Step 300: The terminal acquires communication information input by the user, and performs general encryption on the communication information to obtain universally encrypted communication information.
这里,所有具备通用解密功能的终端都可以对通用加密的通信信息进行解密。Here, all terminals with universal decryption function can decrypt the universally encrypted communication information.
步骤301、对通用加密的通信信息进行差异化加密;可选地,以终端的唯一标识或终端所负载的SIM卡的唯一标识作为加密参数进行加密,即设置只有唯一标识相同的终端才可以进行解密过程。Step 301: Perform differential encryption on the universally encrypted communication information. Optionally, the unique identifier of the terminal or the unique identifier of the SIM card loaded by the terminal is used as an encryption parameter for encryption, that is, only a terminal with the same unique identifier can be set. The decryption process.
需要说明的是,包含有唯一标识信息在实际应用中,一般会进行相应的编码译码,即不采用明文显示。It should be noted that, in the actual application, the unique identification information is generally encoded and decoded, that is, the plain text display is not used.
步骤302、完成差异化加密后,终端删除通用加密的通信信息;即,此时在终端上只保存有差异化加密的通信信息,其他终端因为无法获得解密的唯一标识,因此,无法进行解密,保证了通信信息的安全。Step 302: After the differential encryption is completed, the terminal deletes the universally encrypted communication information; that is, only the differentially encrypted communication information is saved on the terminal at this time, and the other terminal cannot obtain the decrypted unique identifier, and therefore cannot decrypt. The communication information is guaranteed to be secure.
步骤303、将差异化加密后的通信信息保存在终端的安全存储空间;可选的,安全存储空间为无法挂载为可读可写的存储空间。例如,高通芯片本身就有SFS区域,是从加密文件系统(EFS)区域划分出的一部分不可访问内存。含有安全域的手机,则通过在内存区域上划分出一小段区域作为解挂文件系统(umount)区域,该区域无法进行mount操作,即无法挂载为可读可写。在双系统则会有两个独立的内存空间,安全存储空间会占有专门的内存。Step 303: The differentially encrypted communication information is saved in a secure storage space of the terminal. Optionally, the secure storage space is a storage space that cannot be mounted as a readable and writable storage. For example, the Qualcomm chip itself has an SFS area, which is a portion of the inaccessible memory that is partitioned from the Encrypting File System (EFS) area. A mobile phone with a security domain divides a small area on the memory area as an unmount file system (umount) area. The area cannot be mounted, that is, it cannot be mounted as readable and writable. In dual systems, there are two separate memory spaces, and the secure storage space will occupy dedicated memory.
步骤304、显示通信信息时,终端通过与差异化加密相应的解密信息进行差异化解密并显示;即采用包含有与差异化相同唯一标识的差异化解密的解密信息进行解密。Step 304: When displaying the communication information, the terminal performs differential decryption and display by using the decryption information corresponding to the differentiated encryption; that is, decryption is performed by using the decrypted information including the differentiated decryption with the same unique identifier.
步骤300~304的终端作为发送端进行通信信息的隐私安全保护。The terminals of steps 300-304 serve as the sender to perform privacy protection of the communication information.
实施例2Example 2
本实施例从接收端对通信信息的差异化加密及解密过程进行说明。This embodiment describes a process of differential encryption and decryption of communication information from the receiving end.
图4为本发明第二实施例的方法流程图,如图4所示,包括:4 is a flowchart of a method according to a second embodiment of the present invention. As shown in FIG. 4, the method includes:
步骤400、接收端接收来自发送端的采用通用加密的通信信息。Step 400: The receiving end receives the communication information from the transmitting end and uses universal encryption.
需要说明的是,如果接收端是未采用差异化加密对通信信息进行处理的终端,则按照通用加密的处理过程进行通信信息进行解密及显示处理即可。It should be noted that if the receiving end is a terminal that does not use differential encryption to process the communication information, the communication information may be decrypted and displayed in accordance with the general encryption processing procedure.
步骤401、接收端对接收的通用加密的通信信息进行接收端差异化加密。 Step 401: The receiving end performs differential encryption on the receiving end for the received universal encrypted communication information.
步骤402、完成差异化加密后,删除接收到的通用加密的通信信息。Step 402: After completing the differential encryption, deleting the received universal encrypted communication information.
步骤403、将差异化加密后的通信信息保存在终端的安全存储空间。Step 403: Save the differentiated and encrypted communication information in a secure storage space of the terminal.
步骤404、显示通信信息时,终端通过与差异化加密相应的解密信息进行差异化解密并显示。Step 404: When displaying the communication information, the terminal performs differential decryption and display by using the decryption information corresponding to the differentiated encryption.
图5为本发明第二实施例的系统的结构框图,如图5所示,发送端将输入的通信信息进行通信加密后,在发送端自身进行差异化加密的处理,在发送端的差异化加密处理流程参照实施例1的描述;接收端按照步骤400~404进行接收端差异化加密,保证了通信信息的隐私安全。FIG. 5 is a structural block diagram of a system according to a second embodiment of the present invention. As shown in FIG. 5, after the transmitting end encrypts the input communication information, the transmitting end performs differential encryption processing on the transmitting end, and differentiates encryption at the transmitting end. The processing flow refers to the description of Embodiment 1. The receiving end performs differential encryption on the receiving end according to steps 400-404 to ensure the privacy of the communication information.
实施例3Example 3
图6为本发明第三实施例的方法流程图,如图6所示,包括:FIG. 6 is a flowchart of a method according to a third embodiment of the present invention. As shown in FIG. 6, the method includes:
步骤600、获取通信信息,在通信信息的头部或尾部加上随机数进行通用加密。这里,每次可以采用不同的随机数,以保证通信信息在传输过程中的安全。另外,通用加密通信信息发送给接收端时,发送过程中携带通用加密的解密公钥。Step 600: Acquire communication information, and add a random number to the header or the tail of the communication information for general encryption. Here, different random numbers can be used each time to ensure the security of the communication information during transmission. In addition, when the universal encrypted communication information is sent to the receiving end, the decrypted public key of the universal encryption is carried in the sending process.
步骤601、发送端对通用加密的通信信息进行差异化加密,加密过程中加密算法中以发送的唯一标识作为参数进行加密;例如IMEI号或MEID号作为参数进行加密,加密后在消息文件中加入解密信息,作为解密过程中识别使用。需要说明的是,对于解密过程,其与加密过程是完全相对应的,以唯一标识进行加密参数进行加密,必然会在解密信息中为允许解密的终端提供以该唯一标识进行解密的解密信息,以进行差异化解密。Step 601: The transmitting end performs differential encryption on the universally encrypted communication information, and the encryption algorithm encrypts the unique identifier sent by the encryption algorithm as a parameter; for example, the IMEI number or the MEID number is used as a parameter for encryption, and the encrypted file is added to the message file after encryption. The information is decrypted and used as identification during the decryption process. It should be noted that, for the decryption process, it is completely corresponding to the encryption process, and the encryption parameter is encrypted by the unique identifier, and the decryption information is decrypted in the decryption information for the terminal that allows the decryption to be decrypted by the unique identifier. For differential decryption.
步骤602、通过解密信息进行差异化解密后,获得通信信息并显示。Step 602: After decrypting and decrypting the information, the communication information is obtained and displayed.
实施例4Example 4
图7为本发明第四实施例的方法流程图,如图7所示,包括:FIG. 7 is a flowchart of a method according to a fourth embodiment of the present invention. As shown in FIG. 7, the method includes:
步骤700、接收端接收来自发送端的差异化加密的通信信息及用于解密发送端差异化加密的解密信息;Step 700: The receiving end receives the differentiated encrypted communication information from the transmitting end and the decryption information used to decrypt the differential encryption of the sending end.
步骤701、根据解密信息对差异化加密的通信信息进行解密;由于该解密信息根据是在发送端差异化加密时,以发送端差异化加密的唯一标识生成的解密信息,因此可以实现解密。对于其他终端的解密信息,由于无法获得 发送的唯一标识,无法生成可以解密该差异化加密的通信信息的解密信息。Step 701: Decrypt the differentially encrypted communication information according to the decryption information. Since the decryption information is based on the decryption information generated by the sender and the encrypted unique identifier, the decryption may be implemented. For other terminal decryption information, because it is not available The unique identifier sent, unable to generate decryption information that can decrypt the differentiated encrypted communication information.
步骤702、完成发送端差异化加密的通信信息的解密后,删除该解析信息,对解密后的通信信息进行接收端差异化加密;即采用接收端的IMEI号或MAC地址、SIM卡IMSI号作为加密参数进行接收端差异化加密。Step 702: After decrypting the communication information of the differential encryption of the transmitting end, deleting the parsing information, performing differential encryption on the decrypted communication information; that is, using the IMEI number or MAC address of the receiving end, and the IMSI number of the SIM card as the encryption. The parameters are differentially encrypted at the receiving end.
步骤703、显示通信信息时,接收端通过与差异化加密相应的解密信息进行差异化解密并显示。Step 703: When displaying the communication information, the receiving end performs differential decryption and display by using the decryption information corresponding to the differentiated encryption.
图8为本发明第四实施例的系统的结构框图,如图8所示,发送端将输入的通信信息直接进行差异化加密,并进行差异化加密的相关处理;接收端按照步骤700~703,对发送端发送的发送端差异化加密的通信信息根据发送端发送差异化加密的解密信息进行发送端差异化解密,完成发送端差异化解密后删除解密信息,接收对发送端差异化解密后的通信信息进行接收端差异化加密,保证了通信信息的隐私安全。8 is a structural block diagram of a system according to a fourth embodiment of the present invention. As shown in FIG. 8, the transmitting end directly performs differential encryption on the input communication information, and performs related processing of differentiated encryption; the receiving end follows steps 700-703. The communication information differentiated and encrypted by the sender sent by the sender is differentiated and decrypted by the sender according to the decryption information sent by the sender, and the decryption information is deleted after the sender differentiates and decrypts, and the receiver differentiates and decrypts the receiver. The communication information is differentially encrypted at the receiving end to ensure the privacy of the communication information.
本领域普通技术人员可以理解上述实施例的全部或部分步骤可以使用计算机程序流程来实现,所述计算机程序可以存储于一计算机可读存储介质中,所述计算机程序在相应的硬件平台上(如系统、设备、装置、器件等)执行,在执行时,包括方法实施例的步骤之一或其组合。One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.
可选地,上述实施例的全部或部分步骤也可以使用集成电路来实现,这些步骤可以被分别制作成一个个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。上述实施例中的装置/功能模块/功能单元可以采用通用的计算装置来实现,它们可以集中在单个的计算装置上,也可以分布在多个计算装置所组成的网络上。Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve. The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
上述实施例中的装置/功能模块/功能单元以软件功能模块的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。上述提到的计算机可读取存储介质可以是只读存储器,磁盘或光盘等When the device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk, etc.
工业实用性Industrial applicability
本发明实施例通过终端采用差异化标识进行差异化加密,只有通过差异化解密才进行显示,实现了通信信息的隐私安全保护;另外,将差异化加密 的通信信息保存在终端的安全存储空间,进一步提高了通信信息的安全。 In the embodiment of the present invention, the terminal uses the differentiated identifier to perform differential encryption, and the display is performed only through differential decryption, thereby realizing the privacy protection of the communication information; in addition, the differential encryption is implemented. The communication information is stored in the secure storage space of the terminal, which further improves the security of the communication information.

Claims (24)

  1. 一种实现数据处理的方法,其中包括:A method of implementing data processing, including:
    终端通过差异化标识对获得的通信信息进行差异化加密;The terminal performs differential encryption on the obtained communication information by using the differentiated identifier;
    所述终端显示所述通信信息时,进行差异化解密。When the terminal displays the communication information, differential decryption is performed.
  2. 根据权利要求1所述的方法,其中,所述进行差异化加密为以终端的差异化标识作为加密参数进行加密;The method according to claim 1, wherein the performing differential encryption is performed by encrypting the differentiated identifier of the terminal as an encryption parameter;
    所述差异化标识为终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识。The differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
  3. 根据权利要求2所述的方法,其中,The method of claim 2, wherein
    当所述差异化标识为终端的唯一标识时,所述终端唯一标识为:移动设备国际身份码IMEI或物理地址MAC地址;When the differentiated identifier is a unique identifier of the terminal, the terminal unique identifier is: a mobile device international identity code IMEI or a physical address MAC address;
    当所述差异化标识为终端所负载的客户识别模块SIM卡的唯一标识时,所述终端唯一标识为:SIM卡的国际移动用户识别码IMSI号。When the differentiated identifier is a unique identifier of the subscriber identity module SIM card loaded by the terminal, the terminal unique identifier is: an international mobile subscriber identity IMSI number of the SIM card.
  4. 根据权利要求1所述的方法,该方法还包括:将所述完成差异化加密的通信信息保存在终端的安全存储空间。The method of claim 1, further comprising: saving the communication information that completes the differential encryption in a secure storage space of the terminal.
  5. 根据权利要求4所述的方法,其中,所述安全存储控制为无法挂载为可读可写的存储空间。The method of claim 4, wherein the secure storage control is unmountable as a readable and writable storage space.
  6. 根据权利要求1所述的方法,其中,当所述终端为发送端时,The method of claim 1, wherein when the terminal is a transmitting end,
    所述进行差异化加密包括:The performing differential encryption includes:
    所述发送端对输入的通信信息进行通用加密后,进行发送端差异化加密。After the transmitting end performs general encryption on the input communication information, the transmitting end performs differential encryption.
  7. 根据权利要求1所述的方法,其中,当所述终端为接收端时,所述进行差异化加密包括:The method according to claim 1, wherein when the terminal is a receiving end, the performing differential encryption comprises:
    所述接收端对接收的通用加密的通信信息进行接收端差异化加密。The receiving end performs differential encryption on the receiving end of the received universally encrypted communication information.
  8. 根据权利要求1所述的方法,其中,当所述终端为接收端时,所述进行差异化加密包括:The method according to claim 1, wherein when the terminal is a receiving end, the performing differential encryption comprises:
    所述接收端对发送端差异化加密的通信信息进行解密后,对解密后的通 信信息进行接收端差异化加密。After the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, the decrypted communication The information is differentially encrypted at the receiving end.
  9. 根据权利要求8所述的方法,其中,在所述接收端对发送端差异化加密的通信信息进行解密前,该方法还包括:The method according to claim 8, wherein before the receiving end decrypts the communication information differentiated and encrypted by the transmitting end, the method further comprises:
    所述接收端在接收发送端差异化加密的通信信息时,接收用于解密发送端差异化加密的解密信息,以根据所述解密信息对发送端差异化加密的通信信息解密。The receiving end receives the decryption information for decrypting the differential encryption of the transmitting end when receiving the communication information differentiated and encrypted by the transmitting end, so as to decrypt the communication information differentiated and encrypted by the transmitting end according to the decrypted information.
  10. 根据权利要求6或7所述的方法,该方法还包括:在完成对所述通用加密的通信信息的差异化加密后,删除所述通用加密的通信信息。The method according to claim 6 or 7, further comprising deleting the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information.
  11. 根据权利要求9所述的方法,该方法还包括:在所述接收端对发送端差异化加密的通信信息进行解密后,删除所述用于解密发送端差异化加密的解密信息。The method according to claim 9, further comprising: after decrypting the communication information differentiated and encrypted by the transmitting end, deleting the decryption information for decrypting the differential encryption of the transmitting end.
  12. 根据权利要求1~5任一项所述的方法,其中,在进行差异化解密之前该方法还包括:The method according to any one of claims 1 to 5, wherein the method further comprises: before performing differential decryption:
    预先设置差异化解密匹配指令,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。The differential decryption matching instruction is preset, and when the input differentiated decryption matching instruction is the same as the preset differential decryption matching instruction, the differential information is allowed to be decrypted when the communication information is displayed; when the input differential decryption matching instruction is preset When the differential decryption matching instruction is different, the differential decryption is performed when the communication information is rejected.
  13. 一种实现数据处理的终端,包括差异化加密单元及解密显示单元;其中,A terminal for implementing data processing, comprising a differentiated encryption unit and a decryption display unit; wherein
    差异化加密单元,设置为通过差异化标识对获得的通信信息进行差异化加密;The differentiated encryption unit is configured to perform differential encryption on the obtained communication information by using the differentiated identifier;
    解密显示单元,设置为显示通信信息时,进行差异化解密。The decryption display unit is set to display the communication information and perform differential decryption.
  14. 根据权利要求13所述的终端,其中,所述差异化加密单元是设置为,对获得的通信信息,以终端的差异化标识作为加密参数进行加密;The terminal according to claim 13, wherein the differentiated encryption unit is configured to encrypt the obtained communication information with the differentiated identifier of the terminal as an encryption parameter;
    所述差异化标识为终端的唯一标识或终端所负载的客户识别模块SIM卡的唯一标识。The differentiated identifier is a unique identifier of the terminal or a unique identifier of the SIM card of the customer identification module carried by the terminal.
  15. 根据权利要求14所述的终端,其中,所述差异化加密单元是设置为,对获得的通信信息,以终端的IMEI或MAC地址、或终端所负载的SIM卡的 IMSI号作为差异化标识,以差异化标识作为加密参数进行加密。The terminal according to claim 14, wherein the differentiated encryption unit is configured to set the communication information to the IMEI or MAC address of the terminal, or the SIM card loaded by the terminal. The IMSI number is used as the differentiated identifier, and the differentiated identifier is used as the encryption parameter for encryption.
  16. 根据权利要求13所述的终端,其中,该终端还包括信息存储单元,设置为将差异化解密单元完成的所述差异化加密的通信信息保存在安全存储空间。The terminal according to claim 13, wherein the terminal further comprises an information storage unit arranged to store the differentiated encrypted communication information completed by the differentiated decryption unit in a secure storage space.
  17. 根据权利要求13所述的终端,其中,当所述终端为发送端时,所述差异化加密单元是设置为,The terminal according to claim 13, wherein when the terminal is a transmitting end, the differentiated encryption unit is set to
    对输入的通信信息进行通用加密后,再进行发送端差异化加密。After the input communication information is generally encrypted, the sender is differentiated and encrypted.
  18. 根据权利要求13所述的终端,其中,当所述终端为接收端时,所述差异化加密单元是设置为,The terminal according to claim 13, wherein when the terminal is a receiving end, the differentiated encryption unit is set to
    对接收的通用加密的通信信息进行接收端差异化加密。The received universally encrypted communication information is differentially encrypted at the receiving end.
  19. 根据权利要求13所述的终端,其中,当所述终端为接收端时,所述差异化加密单元是设置为,The terminal according to claim 13, wherein when the terminal is a receiving end, the differentiated encryption unit is set to
    对发送端差异化加密的通信信息进行解密后,对解密后的通信信息进行接收端差异化加密。After decrypting the communication information differentiated and encrypted by the transmitting end, the decrypted communication information is differentially encrypted at the receiving end.
  20. 根据权利要求19所述的终端,其中,当所述终端为接收端时,该终端还包括接收单元,The terminal according to claim 19, wherein when the terminal is a receiving end, the terminal further includes a receiving unit,
    设置为接收发送端发送的差异化加密的通信信息的同时,接收用于解密发送端差异化加密的解密信息,以使差异化加密单元根据所述解密信息,对发送差异化加密的通信信息解密。And receiving, when receiving the differentially encrypted communication information sent by the transmitting end, receiving decryption information for decrypting the differential encryption of the transmitting end, so that the differentiated encryption unit decrypts the communication information for transmitting the differentiated encryption according to the decrypted information. .
  21. 根据权利要求17或18所述的终端,其中,当所述终端还包括第一删除单元,设置为在完成对所述通用加密的通信信息的差异化加密后,删除所述通用加密的通信信息。The terminal according to claim 17 or 18, wherein when the terminal further includes a first deleting unit, the setting is to delete the universally encrypted communication information after completing the differential encryption of the universally encrypted communication information. .
  22. 根据权利要求20所述的终端,其中,当所述端为接收端时,该终端还包括第二删除单元,设置为在差异化加密单元对发送端差异化加密的通信信息进行解密后,删除所述用于解密发送端差异化加密的解密信息。The terminal according to claim 20, wherein when the end is a receiving end, the terminal further includes a second deleting unit, configured to delete after the differentiated encryption unit decrypts the communication information differentiated and encrypted by the transmitting end. The decryption information used to decrypt the differential encryption of the sender.
  23. 根据权利要求13~16任一项所述的终端,其中,该终端还包括设置单元,设置为预先设置差异化解密匹配指令,在进行差异化解密之前,当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令相同时,允许显 示通信信息时进行差异化解密;当输入的差异化解密匹配指令与预先设置的差异化解密匹配指令不同时,拒绝显示通信信息时进行差异化解密。The terminal according to any one of claims 13 to 16, wherein the terminal further comprises a setting unit configured to preset a differential decryption matching instruction, and before inputting the differential decryption matching instruction and the prior When the set differential decryption match instruction is the same, it is allowed to display Differentiated decryption is performed when the communication information is displayed; when the input differentiated decryption matching instruction is different from the previously set differentiated decryption matching instruction, the differential decryption is performed when the communication information is rejected.
  24. 一种计算机可读存储介质,存储有程序指令,当该程序指令被执行时可实现权利要求1-12任一项所述的方法。 A computer readable storage medium storing program instructions that, when executed, implement the method of any of claims 1-12.
PCT/CN2015/084834 2015-04-09 2015-07-22 Data processing method and terminal WO2016161717A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510165713.8 2015-04-09
CN201510165713.8A CN106162622A (en) 2015-04-09 2015-04-09 A kind of method realizing data process and terminal

Publications (1)

Publication Number Publication Date
WO2016161717A1 true WO2016161717A1 (en) 2016-10-13

Family

ID=57071783

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/084834 WO2016161717A1 (en) 2015-04-09 2015-07-22 Data processing method and terminal

Country Status (2)

Country Link
CN (1) CN106162622A (en)
WO (1) WO2016161717A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040030906A1 (en) * 2002-06-20 2004-02-12 International Business Machines Corporation System and method for SMS authentication
CN101394280A (en) * 2008-10-30 2009-03-25 深圳华为通信技术有限公司 Mobile terminal and data service message protecting method
CN102045343A (en) * 2010-10-29 2011-05-04 深圳市爱贝信息技术有限公司 DC (Digital Certificate) based communication encrypting safety method, server and system
CN102075615A (en) * 2009-11-19 2011-05-25 中国移动通信集团北京有限公司 Method for sending and receiving short messages and subscriber identity module (SIM)

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1285227C (en) * 2003-11-05 2006-11-15 大唐微电子技术有限公司 Short message security method and SIM card for implementing short message security
CN101115020A (en) * 2006-07-25 2008-01-30 腾讯科技(深圳)有限公司 Secret mail protecting method and mail system
CN102158871B (en) * 2010-02-12 2016-04-13 中兴通讯股份有限公司 A kind of communication means, system, control station and terminal adapting to terminal differentiation
CN102036194B (en) * 2010-12-09 2014-09-10 中兴通讯股份有限公司 Method and system for encrypting MMS
CN103916834A (en) * 2014-04-25 2014-07-09 长沙市梦马软件有限公司 Short message encryption method and system allowing user to have exclusive secret key
CN104244237B (en) * 2014-09-12 2019-03-22 宇龙计算机通信科技(深圳)有限公司 Data sending, receiving method and reception send terminal and data transmitter-receiver set

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040030906A1 (en) * 2002-06-20 2004-02-12 International Business Machines Corporation System and method for SMS authentication
CN101394280A (en) * 2008-10-30 2009-03-25 深圳华为通信技术有限公司 Mobile terminal and data service message protecting method
CN102075615A (en) * 2009-11-19 2011-05-25 中国移动通信集团北京有限公司 Method for sending and receiving short messages and subscriber identity module (SIM)
CN102045343A (en) * 2010-10-29 2011-05-04 深圳市爱贝信息技术有限公司 DC (Digital Certificate) based communication encrypting safety method, server and system

Also Published As

Publication number Publication date
CN106162622A (en) 2016-11-23

Similar Documents

Publication Publication Date Title
US9485096B2 (en) Encryption / decryption of data with non-persistent, non-shared passkey
CN103747443B (en) One kind is based on cellphone subscriber's identification card Multi-security domain device and its method for authenticating
CN110192381B (en) Key transmission method and device
CN103533539B (en) Virtual SIM card parameter management method and device
WO2018040758A1 (en) Authentication method, authentication apparatus and authentication system
CN106452770B (en) Data encryption method, data decryption method, device and system
CN102761870B (en) Terminal authentication and service authentication method, system and terminal
CN110169102B (en) Privacy protection method and device
CN104244245B (en) A kind of wireless access authentication method, wireless routing device and wireless terminal
WO2016161583A1 (en) Gprs system key enhancement method, sgsn device, ue, hlr/hss and gprs system
WO2019056957A1 (en) Data processing and identity authentication methods and systems, and terminal
CA2929173A1 (en) Key configuration method, system, and apparatus
WO2013182154A1 (en) Method, system and terminal for encrypting/decrypting application program on communication terminal
US20150304321A1 (en) An image management system and an image management method based on fingerprint authentication
US10097524B2 (en) Network configuration method, and related apparatus and system
CN103152731A (en) 3G accessed IMSI (international mobile subscriber identity) privacy protection method
CN107454590A (en) A kind of data ciphering method, decryption method and wireless router
CN106375990A (en) Encryption and decryption system and encryption and decryption method for private data of mobile phone
JP2017516343A (en) Address book protection method, apparatus and communication system
KR101358375B1 (en) Prevention security system and method for smishing
EP3282639B1 (en) Method for operating server and client, server, and client apparatus
CN104243153A (en) Method for spotting equipment user, and user equipment
JP6349712B2 (en) Mobile device setting method
CN117041956A (en) Communication authentication method, device, computer equipment and storage medium
KR101745482B1 (en) Communication method and apparatus in smart-home system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15888272

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15888272

Country of ref document: EP

Kind code of ref document: A1