WO2017020389A1 - Encrypted conversation communication establishment failure processing method and user terminal - Google Patents

Encrypted conversation communication establishment failure processing method and user terminal Download PDF

Info

Publication number
WO2017020389A1
WO2017020389A1 PCT/CN2015/088507 CN2015088507W WO2017020389A1 WO 2017020389 A1 WO2017020389 A1 WO 2017020389A1 CN 2015088507 W CN2015088507 W CN 2015088507W WO 2017020389 A1 WO2017020389 A1 WO 2017020389A1
Authority
WO
WIPO (PCT)
Prior art keywords
user terminal
communication
communication service
secret
clear
Prior art date
Application number
PCT/CN2015/088507
Other languages
French (fr)
Chinese (zh)
Inventor
李小辉
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 宇龙计算机通信科技(深圳)有限公司 filed Critical 宇龙计算机通信科技(深圳)有限公司
Publication of WO2017020389A1 publication Critical patent/WO2017020389A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to a method for processing a secret communication establishment failure and a user terminal.
  • secret communication The method of encrypting communication on a call
  • clear communication the communication method of not encrypting a call
  • the user generally selects the secret communication during the call.
  • secret communication is generally established on the basis of a clear communication channel. Therefore, after the voice communication channel is successfully established, the two parties will establish a secret communication, and the two parties can perform the secret communication only after the establishment of the secret communication is successful.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication, comprising:
  • the first user terminal When the establishment of the secret communication fails, the first user terminal sends a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear response in response to the communication service type conversion request.
  • Telephone communication service ;
  • a user terminal including:
  • a secret communication establishing unit configured to establish a secret communication with the second user terminal on a pre-assigned communication channel
  • a sending unit configured to: when the secret communication establishment fails, send a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear message in response to the communication service type conversion request Communication service;
  • a receiving unit configured to receive a notification message sent by the network side device that has converted the secret communication service into a clear communication service
  • a communication unit configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit.
  • the first user terminal and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel; when the establishment of the secret communication fails, the communication service type conversion request is sent to the network side device, And causing the network side device to convert the secret communication service into the clear communication service in response to the communication service type conversion request; and when receiving the notification message sent by the network side device and converting the secret communication service into the clear communication service, according to the notification message
  • the notification message communicates with the second user terminal in clear communication over the pre-assigned communication channel.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention
  • FIG. 2 is a schematic flowchart of another processing method for failing to establish a secret communication according to an embodiment of the present invention
  • FIG. 3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention.
  • FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly. The details are described below separately.
  • FIG. 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention.
  • the method shown in FIG. 1 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices (MID), personal digital assistants (PDAs).
  • User terminals such as media players, smart TVs, smart watches, smart glasses, and smart bracelets.
  • the processing method for the establishment of the secret communication failure may include the following steps:
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
  • the first user terminal and the second user terminal may both include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, and a smart TV.
  • a smart phone such as an Android phone, an iOS phone, etc.
  • a tablet computer such as an Apple MacBook Air, etc.
  • a palmtop computer such as an Apple MacBook Air, etc.
  • a mobile Internet device such as an Android phone, an iOS phone, etc.
  • the user terminal of the smart watch, the smart glasses, the smart bracelet, and the like, and the user terminal can perform a voice or video call with other user terminals, which is not limited in the embodiment of the present invention.
  • the pre-assigned communication channel represents a communication channel allocated by the network side device to the first user terminal and the second user terminal for performing clear communication.
  • the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel.
  • a physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device;
  • a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal.
  • the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
  • the first user terminal after the network side device allocates a communication channel for performing clear communication between the first user terminal and the second user terminal, if the user needs to encrypt the call, the first user terminal will Establishing a secret communication with the second user terminal on a pre-assigned communication channel.
  • the manner in which the first user terminal and the second user terminal establish the secret communication on the pre-assigned communication channel mainly includes the following steps:
  • Step 11) The first user terminal sends a request for establishing a secret communication with the second user terminal to the network side device on the pre-assigned communication channel, so that the network side device responds to the request to the first user terminal and the second The user terminal sends a pairing key;
  • Step 12 The first user terminal and the second user terminal establish a secret communication connection by using the pairing key.
  • the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the first user terminal and the second user terminal need to establish a secret communication, the first user terminal first sends a communication request to the network side device, and after the network side device receives the communication request sent by the first user terminal, A communication channel for communication is allocated between the first user terminal and the second user terminal. After the communication channel allocation is completed, the first user terminal sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the first user terminal and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the first user terminal and the second user terminal.
  • the normal communication service ie, the clear communication service
  • the second user terminal may perform the steps performed by the first user terminal, and details are not described herein again.
  • the secret communication connection can be established through the pairing key. If the secret communication connection is successfully established, the first user terminal and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
  • the key negotiation failure may be because at least one user terminal between the first user terminal and the second user terminal does not support the secret communication function, and therefore, the first user terminal sends a secret communication establishment request to the network side device.
  • the network side device detects that there is a user terminal that does not support the secret communication function, the network user device does not assign a key to the first user terminal and the second user terminal; or the current network transmission may be delayed, resulting in the first A user terminal failed to send a request in time or failed to receive the assigned pairing key in time.
  • the reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
  • the first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Minghua communication.
  • the network side device when the network side device responds to the communication service type conversion request and converts the secret communication service into the clear communication service, the network side device sends a notification message to the first user terminal, where The notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service.
  • clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 2 is a schematic flowchart of another method for processing a secret communication establishment failure according to an embodiment of the present invention.
  • the method shown in FIG. 2 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices, personal digital assistants, media players, smart TVs, smart watches, smart glasses, User terminals such as smart bracelets.
  • the processing method for the establishment of the secret communication failure may include the following steps:
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
  • the first user terminal When the secret communication establishment fails, the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into a clear communication service.
  • the first user terminal may output the prompt information.
  • the prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service.
  • the prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
  • the first user terminal outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
  • step S203 The first user terminal determines whether a confirmation operation for inputting the prompt information is received within a preset time period. If yes, step S204 is performed; if no, step S206 is performed.
  • the user when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information by using specific voice information or text information or gestures, and instruct the first user terminal to reject the communication service type conversion request, and Ending the current communication connection established with the second user terminal, releasing the currently allocated communication channel resource; and if the current call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information to indicate the The first user terminal sends a communication service type conversion request to the network side device.
  • the preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
  • the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirmation”, “yes” or a number representing the confirmation to indicate that the first user terminal needs to convert the current secret communication service into
  • the voice communication service may be used to indicate that the first user terminal needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the first user terminal.
  • the first user terminal is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Communicate clearly and end this process.
  • the network user device after the network side device converts the secret communication service into the clear communication service in response to the communication service type conversion request, the network user device sends a notification to the first user terminal, where the notification is used to indicate the first A user terminal has converted the secret communication service into a clear communication service.
  • the first user terminal when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the first user terminal may perform the following steps:
  • Step 21 detecting whether the currently collected voice signal includes private information
  • Step 22) If yes, the private information is extracted from the voice signal, and the extracted voice signal is sent to the second user terminal through the pre-assigned communication channel.
  • the private information may be extracted from the voice signal. Only the voice signal after the private information is extracted is sent to the second user terminal through the pre-assigned communication channel.
  • the second user terminal may extract the private information in the voice signal and send it to the first user terminal, which is not described herein again.
  • the first user terminal detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is The information is not limited to the embodiment of the present invention.
  • the first user terminal detects that the voice signal input by the user includes “My account is ABC and the password is 123456”, the first user terminal detects “account” and “password”. Keyword, then the first user terminal will use the account, as well as the number, character or English information after the password as private information, before sending the voice signal, and then extract the voice signal from the voice signal.
  • the voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
  • the first user terminal may further perform the following steps:
  • Step 23) transmitting the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the first user terminal may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information through the pre-designated private information in real time.
  • the method is not limited to the embodiment of the present invention.
  • the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention.
  • the private information may be encrypted and then sent to the second user terminal, when the second user terminal receives the encrypted private information.
  • the private information may be decrypted according to a decryption manner pre-agreed by the first user terminal, which is not limited in the embodiment of the present invention.
  • the first user terminal can extract the private information in the clear communication from the language signal. Only the voice signal that does not include the private information is sent, and the private information is sent to the second user terminal by using a pre-designated private information transmission method. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
  • the first user terminal may further perform the following steps:
  • Step 31 detecting whether the currently collected voice signal includes private information
  • the private information may be used by the preset rule. Replaced, and then the voice signal including the target information is transmitted to the second user terminal through the pre-assigned communication channel.
  • the preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the first user terminal detects the private information, the private information may be encrypted into the target information by using an encryption algorithm, and then the voice signal including the target information is sent to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
  • the preset rule may be a rule that the first user terminal and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the first user terminal replaces the private information with the specified target information and sends it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the first user terminal may send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the target information that the private information of different types or different security levels is replaced may be different.
  • the security level or type of the original private information can be identified.
  • the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
  • the first user terminal detects that the voice signal input by the user includes “My bank card number is 123456”, the first user terminal detects the keyword “bank card number”, so The information is determined to be private information, and then the private information is encrypted into target information such as "AABBCC" by an encryption algorithm, and the target information is replaced with the private information to the second user terminal.
  • target information such as "AABBCC”
  • the first user terminal disconnects the communication with the second user terminal, and ends the process.
  • the user when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. If the user chooses not to perform the communication service type conversion, the first user terminal can disconnect the established clear communication connection with the second user terminal. Or the first user terminal can disconnect the clear communication with the second user terminal when the first user terminal determines that the user does not receive the confirmation operation for the prompt information input within the preset time period. connection. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the first user terminal ends the current call request and hangs up the call. After receiving the hang up signal of the first user terminal, the network side device releases the communication channel currently allocated for the first user terminal and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
  • the first user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources.
  • the private information may be replaced with other information.
  • the private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
  • FIG. 3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention.
  • the user terminal 300 shown in FIG. 3 may include a smart phone (such as an Android mobile phone, an iOS mobile phone, etc.), a flat computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, and smart glasses.
  • the smart bracelet and the like are not limited in the embodiment of the present invention.
  • the user terminal 300 can include the following units:
  • a secret communication establishing unit 301 configured to perform on the pre-assigned communication channel with the second user terminal The establishment of secret communication.
  • the user terminal 300 is the first user terminal in the method embodiment, and the user terminal 300 can perform voice or video conversation with other user terminals.
  • the second user terminal may include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, a smart glasses, a smart bracelet, and the like.
  • the user terminal is not limited in the embodiment of the present invention.
  • the pre-assigned communication channel represents a communication channel allocated by the network side device to the user terminal 300 and the second user terminal for performing clear communication.
  • the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel.
  • a physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device;
  • a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal.
  • the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
  • the secret communication establishing unit 301 A secret communication is established with the second user terminal on a pre-assigned communication channel.
  • the manner in which the secret communication establishing unit 301 and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel mainly includes the following operations:
  • the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the user terminal 300 and the second user terminal need to establish a secret communication, the user terminal 300 first sends a communication request to the network side device, and after the network side device receives the communication request sent by the user terminal 300, A communication channel for communication is allocated between the user terminal 300 and the second user terminal. After the communication channel allocation is completed, the user terminal 300 sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the user terminal 300 and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the user terminal 300 and the second user terminal.
  • the normal communication service ie, the clear communication service
  • the second user terminal may perform the operations performed by the user terminal 300, and details are not described herein again.
  • the secret communication connection can be established through the pairing key. If the secret communication connection is established successfully, the user terminal 300 and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
  • the sending unit 302 is configured to send a communication service type conversion request to the network side device when the secret communication establishment fails.
  • the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
  • the key negotiation failure may be because at least one user terminal between the user terminal 300 and the second user terminal does not support the secret communication function, and therefore, the user terminal 300 sends a secret communication establishment request to the network side device.
  • the network side device detects that there is a user terminal that does not support the secret communication function, the network terminal does not assign a key to the user terminal 300 and the second user terminal; or the current network transmission may be delayed, resulting in the The user terminal 300 fails to send the request in time or fails to receive the assigned pairing key in time.
  • the reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
  • the sending unit 302 sends a communication service type conversion request to the network side device.
  • the communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
  • the receiving unit 303 is configured to receive a notification message sent by the network side device that converts the secret communication service into a clear communication service.
  • the communication unit 304 is configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit 303.
  • the network side device when the network side device responds to the communication service type conversion request sent by the sending unit 302 to convert the secret communication service into the clear communication service, the network side device sends the mobile terminal device to the user terminal 300. Sending a notification message, the notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the receiving unit 303 receives the notification message, the communication unit 304 can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service.
  • clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention.
  • the user terminal 300 shown in FIG. 4 is optimized based on the user terminal 300 shown in FIG. 3.
  • the user terminal 300 may further include the following units:
  • the output unit 305 is configured to output prompt information for prompting whether the secret communication service needs to be converted into the clear communication service when the establishment of the secret communication fails.
  • the output unit 305 may output prompt information.
  • the prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service.
  • the prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
  • the output unit 305 outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
  • the determining unit 306 is configured to determine whether a confirmation operation for inputting the prompt information output by the output unit 305 is received within the preset time period.
  • the output unit 305 when the output unit 305 outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information through specific voice information or text information or gestures, and end the current communication connection with the second user terminal. And releasing the currently allocated communication channel resource; if the call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information, to instruct the sending unit 302 to send the communication service type to the network side device. Conversion request.
  • the preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
  • the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirm”, “yes” or a number representing the confirmation to indicate that the user terminal 300 needs to convert the current secret communication service into
  • the voice communication service may be used to indicate that the user terminal 300 needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the user terminal 300.
  • the user terminal 300 is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
  • the sending unit is triggered to send a communication service type conversion request to the network side device, so that the network side device rings.
  • the communication service type conversion request should be converted into a clear communication service.
  • the disconnecting unit 307 is configured to determine, in the determining unit 306, that the needle is not received within the preset time period When the confirmation operation of the prompt information is input, the communication connection with the second user terminal is disconnected.
  • the disconnection unit 307 can disconnect the established clear communication connection with the second user terminal.
  • the determining unit 306 determines that the confirmation operation for the prompt information input by the user is not received within the preset time period
  • the disconnecting unit 307 can disconnect the established clear communication connection with the second user terminal. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the disconnection unit 307 ends the current call request and hangs up the call. After receiving the hang up signal of the disconnecting unit 307, the network side device releases the communication channel currently allocated for the user terminal 300 and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
  • the communication unit 304 may perform the following operations:
  • Detecting whether the currently collected voice signal includes private information if yes, extracting the private information from the voice signal, and transmitting the extracted voice signal to the second user terminal through the pre-assigned communication channel.
  • the private information may be extracted from the voice signal, The voice signal after the private information is extracted is transmitted to the second user terminal through a pre-assigned communication channel.
  • the second user terminal may extract the private information in the voice signal and send it to the user terminal 300, which is not described herein again.
  • the communication unit 304 detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is private.
  • a preset keyword such as a password, an account, an account, a card number, and the like. The information may be detected by the embodiment of the present invention.
  • the communication unit 304 detects that the voice signal input by the user includes “My account is ABC, the password is 123456”, the communication unit 304 detects the two keywords “account” and “password”. Then, before the communication signal is sent out, the communication unit 304 will use the account number and the number, character or English included in the password as private information, and then from the segment. The voice signal is extracted, and the voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
  • the communication unit 304 sends the extracted voice signal to the second user terminal through the pre-assigned communication channel
  • the sending unit 302 is further configured to send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the sending unit 302 may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information to the pre-designated private information transmission manner in real time.
  • the embodiment is not limited by the embodiment of the present invention.
  • the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention.
  • the sending unit 302 transmits the private information in the pre-designated private information transmission mode
  • the private information may be encrypted and then sent to the second user terminal.
  • the second user terminal receives the encrypted private information
  • the private information may be decrypted according to a decryption manner pre-agreed by the user terminal 300, which is not limited in the embodiment of the present invention.
  • the communication unit 304 can extract the private information in the clear communication from the language signal, and only transmit the privacy information.
  • the voice signal of the information, and the sending unit 302 transmits the private information to the second user terminal by using a pre-designated private information transmission manner. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
  • the communication unit 304 may perform the following operations in the process of performing clear communication with the second user terminal:
  • Detecting whether the currently collected voice signal includes private information if yes, replacing the private information with the target information by using a preset rule, and transmitting the replaced voice signal to the second user terminal by using the pre-assigned communication channel.
  • the communication unit 304 may replace the private information with the target information by using a preset rule. And then transmitting the voice signal including the target information to the second user terminal through the pre-assigned communication channel.
  • the preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the communication unit 304 detects the private information, the communication unit 304 may encrypt the private information into the target information by using an encryption algorithm, and then transmit the voice signal including the target information to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
  • the preset rule may also be a rule that the user terminal 300 and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the communication unit 304 replaces the private information with the specified target information and transmits it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the sending unit 302 can send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the target information that the private information of different types or different security levels is replaced may be different.
  • the security level or type of the original private information can be identified.
  • the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
  • the communication unit 304 detects that the voice signal input by the user includes “My bank card number is 123456”, the communication unit 304 detects the keyword “bank card number”, and thus the information is determined.
  • the private information is then encrypted by the encryption algorithm into target information such as "AABBCC”, and the target information is replaced with the private information to the second user terminal.
  • the user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources.
  • the private information may be replaced with other information.
  • the private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
  • the storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM), or a random access memory (RAM).

Abstract

The embodiments of the present invention relate to the technical field of communications. Disclosed are an encrypted conversation communication establishment failure processing method and a user terminal. The method comprises: when a first user terminal fails to establish encrypted conversation communication with a second user terminal on a pre-allocated communication channel, the first user terminal transmitting a communication service type conversion request to a network side device; and when receiving a notification message, indicating that an encrypted conversation communication service has been converted into a clear conversation communication service, transmitted by the network side device, performing clear conversation communication with the second user terminal on the pre-allocated communication channel. By means of the embodiments of the present invention, when a user terminal fails to establish encrypted conversation communication with another user terminal, the user terminal can continue to use a communication channel for encrypted conversation communication to perform clear conversation communication with another user terminal by transmitting a communication service type conversion request, so that the occupation of communication channel resources can be reduced, the burden of a network side device can be reduced, and communication can be rapidly established, thereby improving the user experience.

Description

一种密话通信建立失败的处理方法及用户终端Method for processing failure of establishment of secret communication and user terminal 技术领域Technical field
本发明涉及通信技术领域,具体涉及一种密话通信建立失败的处理方法及用户终端The present invention relates to the field of communications technologies, and in particular, to a method for processing a secret communication establishment failure and a user terminal.
背景技术Background technique
对通话进行加密通信方式称为密话通信,而对通话不进行加密的通信方式称为明话通信。目前,为了保证通话的安全性,用户一般会在通话时选择密话通信。通常情况下,密话通信一般是在明话通信信道的基础上建立的。因此,在明话通信信道建立成功之后,通话双方才会建立密话通信,只有在密话通信建立成功之后通话双方才能进行密话通信。The method of encrypting communication on a call is called secret communication, and the communication method of not encrypting a call is called clear communication. At present, in order to ensure the security of the call, the user generally selects the secret communication during the call. In general, secret communication is generally established on the basis of a clear communication channel. Therefore, after the voice communication channel is successfully established, the two parties will establish a secret communication, and the two parties can perform the secret communication only after the establishment of the secret communication is successful.
在实践中发现,在密话通信建立过程中,有可能由于通话双方的其中一端的用户终端不支持密话通信业务等原因,从而导致密话通信建立失败。如果双方想要继续通话,那么就需要重新发送通信请求,并重新分配通信信道。这种样不仅会占用通信信道资源,还会使得建立通信所花费的时间较长,从而导致通信建立的效率较低。In practice, it is found that during the establishment of the secret communication, there is a possibility that the user terminal at one end of the call does not support the secret communication service and the like, thereby causing the establishment of the secret communication failure. If the parties want to continue the call, they will need to resend the communication request and reassign the communication channel. This kind of sample not only occupies communication channel resources, but also makes it take a long time to establish communication, which leads to low efficiency of communication establishment.
发明内容Summary of the invention
本发明实施例公开了一种密话通信建立失败的处理方法及用户终端,在密话通信建立失败之后利用现有的通信信道建立明话通信,从而能够快速建立通信。The embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly.
本发明实施例公开了一种密话通信建立失败的处理方法,包括:The embodiment of the invention discloses a processing method for failing to establish a secret communication, comprising:
第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立;Establishing a secret communication of the first user terminal and the second user terminal on a pre-assigned communication channel;
当所述密话通信建立失败时,所述第一用户终端向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务;When the establishment of the secret communication fails, the first user terminal sends a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear response in response to the communication service type conversion request. Telephone communication service;
所述第一用户终端接收所述网络侧设备发送的已将所述密话通信业务转换 为明话通信业务的通知消息,并根据所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信。Receiving, by the first user terminal, that the network side device sends the secret communication service And being a notification message of the communication service, and performing clear communication with the second user terminal on the pre-assigned communication channel according to the notification message.
相应的,本发明实施例公开了一种用户终端,包括:Correspondingly, the embodiment of the invention discloses a user terminal, including:
密话通信建立单元,用于与第二用户终端在预先分配的通信信道上进行密话通信的建立;a secret communication establishing unit, configured to establish a secret communication with the second user terminal on a pre-assigned communication channel;
发送单元,用于当所述密话通信建立失败时,向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务;a sending unit, configured to: when the secret communication establishment fails, send a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear message in response to the communication service type conversion request Communication service;
接收单元,用于接收所述网络侧设备发送的已将所述密话通信业务转换为明话通信业务的通知消息;a receiving unit, configured to receive a notification message sent by the network side device that has converted the secret communication service into a clear communication service;
通信单元,用于根据所述接收单元接收的所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信。And a communication unit, configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit.
实施本发明实施例,具有如下有益效果:Embodiments of the present invention have the following beneficial effects:
本发明实施例中,第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立;当该密话通信建立失败时,向网络侧设备发送通信业务类型转换请求,以使该网络侧设备响应该通信业务类型转换请求将密话通信业务转换为明话通信业务;当接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息时,根据该通知消息在该预先分配的通信信道上与第二用户终端进行明话通信。通过本发明实施例,当用户终端与另一用户终端之间的密话通信建立失败时,该用户终端可以通过发送通信业务类型转换请求而继续使用密话通信的通信信道进行明话通信,这样可以减少对通信信道资源的占用,减轻网络侧设备的负担,且能够快速建立通信,提升用户体验。In the embodiment of the present invention, the first user terminal and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel; when the establishment of the secret communication fails, the communication service type conversion request is sent to the network side device, And causing the network side device to convert the secret communication service into the clear communication service in response to the communication service type conversion request; and when receiving the notification message sent by the network side device and converting the secret communication service into the clear communication service, according to the notification message The notification message communicates with the second user terminal in clear communication over the pre-assigned communication channel. According to the embodiment of the present invention, when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
附图说明DRAWINGS
为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings used in the description of the embodiments will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the present invention. Other drawings may also be obtained from those of ordinary skill in the art in light of the inventive work.
图1是本发明实施例公开的一种密话通信建立失败的处理方法的流程示意图; 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention;
图2是本发明实施例公开的另一种密话通信建立失败的处理方法的流程示意图;2 is a schematic flowchart of another processing method for failing to establish a secret communication according to an embodiment of the present invention;
图3是本发明实施例公开的一种用户终端的结构示意图;3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention;
图4是本发明实施例公开的另一种用户终端的结构示意图。FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, but not all embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
本发明实施例公开了一种密话通信建立失败的处理方法及用户终端,在密话通信建立失败之后利用现有的通信信道建立明话通信,从而能够快速建立通信。以下分别进行详细说明。The embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly. The details are described below separately.
请参阅图1,图1是本发明实施例公开的一种密话通信建立失败的处理方法的流程示意图。其中,图1所示的方法可以应用于智能手机(如Android手机、iOS手机等)、平板电脑、掌上电脑以及移动互联网设备(Mobile Internet Devices,MID)、个人数字助理(Personal Digital Assistant,PDA)、媒体播放器、智能电视、智能手表、智能眼镜、智能手环等用户终端。如图1所示,该密话通信建立失败的处理方法可以包括以下步骤:Please refer to FIG. 1. FIG. 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention. The method shown in FIG. 1 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices (MID), personal digital assistants (PDAs). User terminals such as media players, smart TVs, smart watches, smart glasses, and smart bracelets. As shown in FIG. 1, the processing method for the establishment of the secret communication failure may include the following steps:
S101、第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立。S101. The first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
本发明实施例中,第一用户终端和第二用户终端均可以包括智能手机(如Android手机、iOS手机等)、平板电脑、掌上电脑以及移动互联网设备、个人数字助理、媒体播放器、智能电视、智能手表、智能眼镜、智能手环等用户终端,该用户终端可以与其他用户终端之间进行语音或视频通话等,本发明实施例不做限定。In the embodiment of the present invention, the first user terminal and the second user terminal may both include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, and a smart TV. The user terminal of the smart watch, the smart glasses, the smart bracelet, and the like, and the user terminal can perform a voice or video call with other user terminals, which is not limited in the embodiment of the present invention.
通常情况下,两个用户终端之间建立密话通信的方式有两种,一是在明话通信建立成功之后,建立密话通信;二是用户终端之间直接建立密话通信。这两种方式都需要先建立明话通信连接,再建立密话通信。其区别点在于:第一种方式是在明话通信建立完成的基础上再建立密话通信的,在建立密话通信之 前,双方是可以进行正常通话的;而第二种方式是明话通信的通信信道已经分配,且明话通信连接也建立完成,但是在密话通信建立完成之前,双方是无法进行通话的。因此,预先分配的通信信道就表示网络侧设备给第一用户终端以及第二用户终端之间分配的用于进行明话通信的通信信道。Generally, there are two ways to establish a secret communication between two user terminals. One is to establish a secret communication after the successful establishment of the clear communication, and the other is to establish a secret communication directly between the user terminals. In both ways, it is necessary to establish a clear communication connection and then establish a secret communication. The difference is that the first way is to establish a secret communication based on the completion of the establishment of the clear communication, and establish a secret communication. Before, the two parties can make normal calls; the second way is that the communication channel of the clear communication has been allocated, and the clear communication connection is also established, but the two parties cannot make a call until the establishment of the secret communication is completed. Therefore, the pre-assigned communication channel represents a communication channel allocated by the network side device to the first user terminal and the second user terminal for performing clear communication.
其中,通信信道是指数据传输的通路,在计算机网络中信道分为物理信道和逻辑信道。物理信道指用于传输数据信号的物理通路,它由传输介质与有关通信设备组成;逻辑信道指在物理信道的基础上,发送与接收数据信号的双方通过中间结点所实现的逻辑通路,由此为传输数据信号形成的逻辑通路。在通信领域中,通信信道可以为分有线信道和无线信道。通常情况下,用户使用手机拨打电话时使用的为无线信道,也有可能是无线信道和有线信道的结合。Wherein, the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel. A physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device; a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal. In the field of communications, the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
本发明实施例中,当网络侧设备给第一用户终端与第二用户终端之间分配了用于进行明话通信的通信信道之后,如果用户需要对通话进行加密,那么第一用户终端就会与第二用户终端在预先分配好的通信信道上建立密话通信。In the embodiment of the present invention, after the network side device allocates a communication channel for performing clear communication between the first user terminal and the second user terminal, if the user needs to encrypt the call, the first user terminal will Establishing a secret communication with the second user terminal on a pre-assigned communication channel.
本发明实施例中,第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立的方式主要包括以下步骤:In the embodiment of the present invention, the manner in which the first user terminal and the second user terminal establish the secret communication on the pre-assigned communication channel mainly includes the following steps:
步骤11)第一用户终端在预先分配的通信信道上向网络侧设备发送与第二用户终端用于建立密话通信的请求,以使该网络侧设备响应该请求向第一用户终端以及第二用户终端发送配对密钥;Step 11) The first user terminal sends a request for establishing a secret communication with the second user terminal to the network side device on the pre-assigned communication channel, so that the network side device responds to the request to the first user terminal and the second The user terminal sends a pairing key;
步骤12)第一用户终端与第二用户终端通过该配对密钥建立密话通信连接。Step 12) The first user terminal and the second user terminal establish a secret communication connection by using the pairing key.
具体实现中,网络侧设备可以为基站,也可以为网络服务器,还可以为基站与网络服务器的总称,本发明实施例不做限定。因此,当第一用户终端与第二用户终端需要建立进行密话通信时,第一用户终端首先会向网络侧设备发送通信请求,而网络侧设备接收到第一用户终端发送的通信请求之后,就会给第一用户终端和第二用户终端之间分配用于通信的通信信道。当通信信道分配完成之后,第一用户终端再向网络侧设备发送密话通信建立请求(该密话通信建立请求用于表示该第一用户终端与第二用户终端需要建立密话通信业务)。当网络侧设备接收到该密话通信建立请求时,会将普通通信业务(即明话通信业务)转换为密话通信业务,并向该第一用户终端和第二用户终端发送配对密钥。In a specific implementation, the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the first user terminal and the second user terminal need to establish a secret communication, the first user terminal first sends a communication request to the network side device, and after the network side device receives the communication request sent by the first user terminal, A communication channel for communication is allocated between the first user terminal and the second user terminal. After the communication channel allocation is completed, the first user terminal sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the first user terminal and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the first user terminal and the second user terminal.
需要说明的是,在本发明实施例中也可以是第二用户终端执行上述第一用户终端所执行的步骤,本发明实施例在此不再赘述。 It should be noted that, in the embodiment of the present invention, the second user terminal may perform the steps performed by the first user terminal, and details are not described herein again.
进一步的,在第一用户终端和第二用户终端接收到该配对密钥之后,就可以通过该配对密钥建立密话通信连接。如果密话通信连接建立成功,那么第一用户终端和第二用户终端就可以在该通信信道上进行密话通信,即第一用户终端与第二用户终端之间的通话是:其中一个用户终端通过密钥对语音信号加密之后,通过该通信信道发送给另一个用户终端,另一个用户终端再通过相同的密钥或者与该密钥配对的密钥对该语音信号进行解密。Further, after the first user terminal and the second user terminal receive the pairing key, the secret communication connection can be established through the pairing key. If the secret communication connection is successfully established, the first user terminal and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
S102、当该密话通信建立失败时,该第一用户终端向网络侧设备发送通信业务类型转换请求。S102. When the secret communication establishment fails, the first user terminal sends a communication service type conversion request to the network side device.
本发明实施例中,由于建立密话通信需要进行密钥协商和密话连接。因此,密话通信建立失败的原因有可能是密钥协商失败,或者密话连接建立失败。In the embodiment of the present invention, since the establishment of the secret communication requires key negotiation and a secret connection. Therefore, the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
具体的,密钥协商失败可能是因为第一用户终端和第二用户终端之间至少有一个用户终端不支持密话通信功能,因此,在第一用户终端向网络侧设备发送密话通信建立请求时,网络侧设备在检测到存在不支持密话通信功能的用户终端时,就不会向第一用户终端和第二用户终端分配密钥;还可能是当前的网络传输出现迟滞,而导致第一用户终端未能及时发送请求,或未能及时接收到分配的配对密钥。而密话连接建立失败的原因也有可能是网络传输出现迟滞,或当前的网络资源并不支持密话通信,本发明实施例不做限定。Specifically, the key negotiation failure may be because at least one user terminal between the first user terminal and the second user terminal does not support the secret communication function, and therefore, the first user terminal sends a secret communication establishment request to the network side device. When the network side device detects that there is a user terminal that does not support the secret communication function, the network user device does not assign a key to the first user terminal and the second user terminal; or the current network transmission may be delayed, resulting in the first A user terminal failed to send a request in time or failed to receive the assigned pairing key in time. The reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
因此,当第一用户终端和第二用户终端在建立密话通信而失败时,那么第一用户终端就会向网络侧设备发送通信业务类型转换请求。其中,该通信业务类型转换请求用于指示该网络侧设备需要将当前的密话通信业务转换为明话通信业务。因此,当该网络侧设备接收到该通信业务类型转换请求时,就会响应该通信业务类型转换请求,将该密话通信业务转换为明话通信业务。Therefore, when the first user terminal and the second user terminal fail to establish the secret communication, the first user terminal sends a communication service type conversion request to the network side device. The communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
S103、该第一用户终端接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息,并根据该通知消息在该预先分配的通信信道上与该第二用户终端进行明话通信。S103. The first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Minghua communication.
本发明实施例中,当该网络侧设备响应该通信业务类型转换请求,将该密话通信业务转换为明话通信业务时,该网络侧设备就会向该第一用户终端发送通知消息,该通知消息用于指示该第一用户终端该网络侧设备已经将密话通信业务转换为明话通信业务。因此,当该第一用户终端接收到该通知消息时,就可以在预先分配的通信信道上与第二用户终端进行明话通信。 In the embodiment of the present invention, when the network side device responds to the communication service type conversion request and converts the secret communication service into the clear communication service, the network side device sends a notification message to the first user terminal, where The notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
可见,在图1所描述的方法中,第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立;当该密话通信建立失败时,向网络侧设备发送通信业务类型转换请求,以使该网络侧设备响应该通信业务类型转换请求将密话通信业务转换为明话通信业务;当接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息时,根据该通知消息在该预先分配的通信信道上与第二用户终端进行明话通信。通过本发明实施例,当用户终端与另一用户终端之间的密话通信建立失败时,该用户终端可以通过发送通信业务类型转换请求而继续使用密话通信的通信信道进行明话通信,这样可以减少对通信信道资源的占用,减轻网络侧设备的负担,且能够快速建立通信,提升用户体验。It can be seen that, in the method described in FIG. 1, the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service. When the message is notified, clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message. According to the embodiment of the present invention, when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
请参阅图2,图2是本发明实施例公开的另一种密话通信建立失败的处理方法的流程示意图。其中,图2所示的方法可以应用于智能手机(如Android手机、iOS手机等)、平板电脑、掌上电脑以及移动互联网设备、个人数字助理、媒体播放器、智能电视、智能手表、智能眼镜、智能手环等用户终端。如图2所示,该密话通信建立失败的处理方法可以包括以下步骤:Referring to FIG. 2, FIG. 2 is a schematic flowchart of another method for processing a secret communication establishment failure according to an embodiment of the present invention. The method shown in FIG. 2 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices, personal digital assistants, media players, smart TVs, smart watches, smart glasses, User terminals such as smart bracelets. As shown in FIG. 2, the processing method for the establishment of the secret communication failure may include the following steps:
S201、第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立。S201. The first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
S202、当该密话通信建立失败时,该第一用户终端输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息。S202. When the secret communication establishment fails, the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into a clear communication service.
本发明实施例中,当密话通信建立失败时,第一用户终端可以输出提示信息。其中,该提示信息用于提示用户是否需要将当前的密话通信业务转换为明话通信业务。该提示信息可以是语音提示,也可以是文字提示,本发明实施例不做限定。In the embodiment of the present invention, when the establishment of the secret communication fails, the first user terminal may output the prompt information. The prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service. The prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
具体的,在第一用户终端和第二用户终端在预先分配的通信信道上建立密话通信的过程中,如果出现密钥协商失败或者密话连接建立失败,那么该第一用户终端就会输出提示信息来提示用户是否需要将当前的密话通信业务转换为明话通信业务。Specifically, in the process of establishing the secret communication on the pre-assigned communication channel by the first user terminal and the second user terminal, if the key negotiation fails or the secret connection establishment fails, the first user terminal outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
S203、该第一用户终端判断在预设时间段内是否接收到针对该提示信息输入的确认操作,若是,执行步骤S204;若否,执行步骤S206。 S203. The first user terminal determines whether a confirmation operation for inputting the prompt information is received within a preset time period. If yes, step S204 is performed; if no, step S206 is performed.
本发明实施例中,当第一用户终端输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息时,用户可以根据该提示信息做出相应的操作。例如,如果本次通话非常机密,必须使用密话通信,那么用户可以通过特定的语音信息或文字信息或手势等输入拒绝该提示信息的操作,指示第一用户终端拒绝通信业务类型转换请求,并结束当前与第二用户终端建立的通信连接,释放当前分配的通信信道资源;而如果本次通话十分紧急,可以选择使用明话通信,那么用户就可以根据该提示信息输入确认操作,以指示该第一用户终端向该网络侧设备发送通信业务类型转换请求。In the embodiment of the present invention, when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information by using specific voice information or text information or gestures, and instruct the first user terminal to reject the communication service type conversion request, and Ending the current communication connection established with the second user terminal, releasing the currently allocated communication channel resource; and if the current call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information to indicate the The first user terminal sends a communication service type conversion request to the network side device.
其中,该预设时间段可以是15秒、也可以是30秒,本发明实施例不做限定。The preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
具体的,该确认操作可以是在输出的文字提示信息上点击或回复“确认”、“是”或代表确认的数字等信息来指示第一用户终端该用户需要将当前的密话通信业务转换为明话通信业务;也可以是通过输入语音来指示第一用户终端该用户需要将当前的密话通信业务转换为明话通信业务;还可以是在第一用户终端的屏幕上输入特定的手势来指示第一用户终端该用户需要将当前的密话通信业务转换为明话通信业务,本发明实施例不做限定。Specifically, the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirmation”, “yes” or a number representing the confirmation to indicate that the first user terminal needs to convert the current secret communication service into The voice communication service may be used to indicate that the first user terminal needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the first user terminal. The first user terminal is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
S204、该第一用户终端向网络侧设备发送通信业务类型转换请求。S204. The first user terminal sends a communication service type conversion request to the network side device.
S205、该第一用户终端接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息,并根据该通知消息在该预先分配的通信信道上与该第二用户终端进行明话通信,并结束本流程。S205. The first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Communicate clearly and end this process.
本发明实施例中,当该网络侧设备响应该通信业务类型转换请求将该密话通信业务转换为明话通信业务之后,就会向该第一用户终端发送通知,该通知用于指示该第一用户终端已经将密话通信业务转换为明话通信业务。In the embodiment of the present invention, after the network side device converts the secret communication service into the clear communication service in response to the communication service type conversion request, the network user device sends a notification to the first user terminal, where the notification is used to indicate the first A user terminal has converted the secret communication service into a clear communication service.
因此,当该第一用户终端接收到该通知消息时,就可以在预先分配的通信信道上与第二用户终端进行明话通信。Therefore, when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
作为一种可行的实施方式,在第一用户终端与第二用户终端进行明话通信的过程中,第一用户终端可以执行以下步骤:As a possible implementation manner, in the process of performing clear communication between the first user terminal and the second user terminal, the first user terminal may perform the following steps:
步骤21)检测当前采集的语音信号中是否包括私密信息;Step 21) detecting whether the currently collected voice signal includes private information;
步骤22)若是,则从该语音信号中抽取出该私密信息,并将抽取后的语音信号通过该预先分配的通信信道发送给第二用户终端。 Step 22) If yes, the private information is extracted from the voice signal, and the extracted voice signal is sent to the second user terminal through the pre-assigned communication channel.
具体实现中,第一用户终端在与第二用户终端之间进行明话通信过程中,如果第一用户终端检测到语音信号中包括有私密信息,可以将该私密信息从该语音信号中抽取出来,只将抽取了私密信息后的语音信号通过预先分配的通信信道发送给第二用户终端。当然,也可以是第二用户终端将语音信号中的私密信息抽取出来再发送给第一用户终端,本发明实施例在此不再赘述。In a specific implementation, during the clear communication between the first user terminal and the second user terminal, if the first user terminal detects that the voice signal includes private information, the private information may be extracted from the voice signal. Only the voice signal after the private information is extracted is sent to the second user terminal through the pre-assigned communication channel. Of course, the second user terminal may extract the private information in the voice signal and send it to the first user terminal, which is not described herein again.
其中,第一用户终端检测语音信号中是否包括私密信息可以是通过检测是否包括有预设的关键字,如密码、账号、账户、卡号等关键字,如果包括,就确定出这类型的信息为私密信息;也可以是检测包括有数字、英文字母等信息,本发明实施例不做限定。The first user terminal detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is The information is not limited to the embodiment of the present invention.
举例来说,当第一用户终端检测到用户输入的语音信号中包括有“我的账号为ABC,密码为123456”时,第一用户终端就会检测到“账号”以及“密码”这两个关键字,那么该第一用户终端在将该语音信号发送出去之前,会将账号以及密码后面的包括的数字、字符或者英文等信息均作为私密信息,然后从该段语音信号中抽取出来,并将抽取私密信息后的语音信号再通过预先分配的信信道发送给第二用户终端。For example, when the first user terminal detects that the voice signal input by the user includes “My account is ABC and the password is 123456”, the first user terminal detects “account” and “password”. Keyword, then the first user terminal will use the account, as well as the number, character or English information after the password as private information, before sending the voice signal, and then extract the voice signal from the voice signal. The voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
可选的,在第一用户终端将抽取后的语音信号通过预先分配的通信信道发送给第二用户终端之后,该第一用户终端还可以执行以下步骤:Optionally, after the first user terminal sends the extracted voice signal to the second user terminal by using the pre-assigned communication channel, the first user terminal may further perform the following steps:
步骤23)通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。Step 23) transmitting the private information to the second user terminal by using a pre-designated private information transmission manner.
具体实现中,第一用户终端可以在当前通话结束之后将该私密信息通过预先指定的私密信息传输方式再发送给第二用户终端,还可以是实时地将该私密信息通过预先指定的私密信息传输方式发送给第二用户终端,本发明实施例不做限定。In a specific implementation, the first user terminal may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information through the pre-designated private information in real time. The method is not limited to the embodiment of the present invention.
进一步的,预先指定的私密信息传输方式可以是如QQ、微信、MSN等,本发明实施例不做限定。其中,第一用户终端在该预先指定的私密信息传输方式中发送该私密信息时,可以对该私密信息进行加密之后再发送给第二用户终端,当第二用户终端接收到加密的私密信息时,可以根据与第一用户终端预先约定的解密方式对该私密信息进行解密,本发明实施例不做限定。Further, the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention. When the first user terminal sends the private information in the pre-designated private information transmission mode, the private information may be encrypted and then sent to the second user terminal, when the second user terminal receives the encrypted private information. The private information may be decrypted according to a decryption manner pre-agreed by the first user terminal, which is not limited in the embodiment of the present invention.
因此,在第一用户终端与第二用户终端之间不能进行密话通信而选择明话通信时,第一用户终端可以将明话通信中的私密信息从语言信号中抽取出来, 只发送不包括私密信息的语音信号,而该私密信息会通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。这样可以保证用户在通话过程中的涉及到的私密信息不被其他用户终端或设备截取到,从而保证用户信息的安全。Therefore, when the secret communication is not possible between the first user terminal and the second user terminal and the clear communication is selected, the first user terminal can extract the private information in the clear communication from the language signal. Only the voice signal that does not include the private information is sent, and the private information is sent to the second user terminal by using a pre-designated private information transmission method. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
作为另一种可行的实施方式,在第一用户终端与第二用户终端进行明话通信的过程中,第一用户终端还可以执行以下步骤:As another possible implementation manner, in the process of performing clear communication between the first user terminal and the second user terminal, the first user terminal may further perform the following steps:
步骤31)检测当前采集的语音信号中是否包括私密信息;Step 31) detecting whether the currently collected voice signal includes private information;
步骤32)若是,则通过预设规则将该私密信息替换为目标信息,并将替换后的语音信号通过该预先分配的通信信道发送给第二用户终端。Step 32) If yes, the private information is replaced with the target information by using a preset rule, and the replaced voice signal is sent to the second user terminal through the pre-assigned communication channel.
具体实现中,第一用户终端在与第二用户终端之间进行明话通信过程中,如果第一用户终端检测到语音信号中包括有私密信息,可以通过预设规则将该私密信息用目标信息替换掉,然后将包括有目标信息的语音信号通过预先分配的通信信道发送给第二用户终端。In a specific implementation, in the process of performing the clear communication between the first user terminal and the second user terminal, if the first user terminal detects that the voice signal includes the private information, the private information may be used by the preset rule. Replaced, and then the voice signal including the target information is transmitted to the second user terminal through the pre-assigned communication channel.
其中,预设规则可以是指某一加密算法,现有的加密算法有对称加密算法和非对称加密算法等,本发明实施例不做限定。因此,当第一用户终端检测到私密信息时,可以通过加密算法将该私密信息加密为目标信息,再将包括有目标信息的语音信号发送给第二用户终端。而第二用户终端在接收到该目标信息之后,就会通过与该加密算法对应的解密算法将该目标信息进行解密,从而得到该私密信息。The preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the first user terminal detects the private information, the private information may be encrypted into the target information by using an encryption algorithm, and then the voice signal including the target information is sent to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
进一步的,该预设规则还可以是第一用户终端与第二用户终端预先约定的表示该信息为私密信息的规则。因此,第一用户终端会通过指定的目标信息来代替该私密信息,并发送给第二用户终端。而当第二用户终端接收到该目标信息时,就可以确定该目标信息所代表信息为私密信息。同时,第一用户终端可以通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。Further, the preset rule may be a rule that the first user terminal and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the first user terminal replaces the private information with the specified target information and sends it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the first user terminal may send the private information to the second user terminal by using a pre-designated private information transmission manner.
当然,不同类型或不同安全等级的私密信息被替代的目标信息可以是不同的。当第二用户终端接收到该目标信息时,就可以识别出原来的私密信息的安全等级或类型。如账号、卡号、生日类的私密信息的安全等级较低;密码、银行卡号、金钱等安全等级较高。因此,安全等级较低的私密信息所对应的目标信息可以为问候类的信息,而安全等级较高的私密信息所对应的目标信息可以为交通类的信息,本发明实施例不做限定。 Of course, the target information that the private information of different types or different security levels is replaced may be different. When the second user terminal receives the target information, the security level or type of the original private information can be identified. For example, the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
举例来说,当第一用户终端检测到用户输入的语音信号中包括有“我的银行卡号为123456”时,第一用户终端就会检测到“银行卡号”这个关键字,因此就会将该信息确定为私密信息,然后通过加密算法将该私密信息加密为目标信息如“AABBCC”,并将该目标信息替换私密信息发送给第二用户终端。For example, when the first user terminal detects that the voice signal input by the user includes “My bank card number is 123456”, the first user terminal detects the keyword “bank card number”, so The information is determined to be private information, and then the private information is encrypted into target information such as "AABBCC" by an encryption algorithm, and the target information is replaced with the private information to the second user terminal.
S206、该第一用户终端断开与该第二用户终端的通信连接,并结束本流程。S206. The first user terminal disconnects the communication with the second user terminal, and ends the process.
本发明实施例中,当第一用户终端输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息时,用户可以根据该提示信息做出相应的操作。如果用户选择不需要进行通信业务类型转换,那么第一用户终端就可以断开与第二用户终端之间建立好的明话通信连接。或者在第一用户终端判断出在预设时间段内没有接收到用户针对该提示信息输入的确认操作时,该第一用户终端就可以断开与第二用户终端之间建立好的明话通信连接。也就是说,当密话通信建立失败且用户选择不需要转换为明话通信时,第一用户终端会结束当前的通话请求,挂断电话。而网络侧设备在接收到第一用户终端的挂断信号后,就会释放当前为第一用户终端和第二用户终端分配的用于进行明话通信的通信信道。这样可以在其他用户终端发送通信请求时,将该通信信道分配给其他用户终端。In the embodiment of the present invention, when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. If the user chooses not to perform the communication service type conversion, the first user terminal can disconnect the established clear communication connection with the second user terminal. Or the first user terminal can disconnect the clear communication with the second user terminal when the first user terminal determines that the user does not receive the confirmation operation for the prompt information input within the preset time period. connection. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the first user terminal ends the current call request and hangs up the call. After receiving the hang up signal of the first user terminal, the network side device releases the communication channel currently allocated for the first user terminal and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
可见,在图2所描述的方法中,第一用户终端可以在密话通信建立失败时,提示用户,根据用户的选择执行是否将密话通信业务转换为明话通信业务,可以合理利用通信信道资源。在进行明话通信时,如果第一用户终端和第二用户终端之间的通话中包括有私密信息,可以将该私密信息替换为其他信息。还可以将该私密信息从通话中抽取出来,并通过预先指定的私密信息传输方式进行传输。通过这种方式,可以实现即使不能进行密话通信,也能很好的对私密信息进行保护,提高明话通信过程中用户信息的安全,从而提升用户体验。It can be seen that, in the method described in FIG. 2, when the secret communication establishment fails, the first user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources. In the case of clear communication, if the conversation between the first user terminal and the second user terminal includes private information, the private information may be replaced with other information. The private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
请参阅图3,图3是本发明实施例公开的一种用户终端的结构示意图。其中,图3所示的用户终端300可以包括智能手机(如Android手机、iOS手机等)、平电脑、掌上电脑以及移动互联网设备、个人数字助理、媒体播放器、智能电视、智能手表、智能眼镜、智能手环等,本发明实施例不做限定。如图3所示,该用户终端300可以包括以下单元:Please refer to FIG. 3. FIG. 3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention. The user terminal 300 shown in FIG. 3 may include a smart phone (such as an Android mobile phone, an iOS mobile phone, etc.), a flat computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, and smart glasses. The smart bracelet and the like are not limited in the embodiment of the present invention. As shown in FIG. 3, the user terminal 300 can include the following units:
密话通信建立单元301,用于与第二用户终端在预先分配的通信信道上进行 密话通信的建立。a secret communication establishing unit 301, configured to perform on the pre-assigned communication channel with the second user terminal The establishment of secret communication.
本发明实施例中,用户终端300即为方法实施例中的第一用户终端,该用户终端300可以与其他用户终端之间进行语音或视频通话等。而第二用户终端可以包括智能手机(如Android手机、iOS手机等)、平板电脑、掌上电脑以及移动互联网设备、个人数字助理、媒体播放器、智能电视、智能手表、智能眼镜、智能手环等用户终端,本发明实施例不做限定。In the embodiment of the present invention, the user terminal 300 is the first user terminal in the method embodiment, and the user terminal 300 can perform voice or video conversation with other user terminals. The second user terminal may include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, a smart glasses, a smart bracelet, and the like. The user terminal is not limited in the embodiment of the present invention.
通常情况下,两个用户终端之间建立密话通信的方式有两种,一是在明话通信建立成功之后,建立密话通信;二是用户终端之间直接建立密话通信。这两种方式都需要先建立明话通信连接,再建立密话通信。其区别点在于:第一种方式是在明话通信建立完成的基础上再建立密话通信的,在建立密话通信之前,双方是可以进行正常通话的;而第二种方式是明话通信的通信信道已经分配,且明话通信连接也建立完成,但是在密话通信建立完成之前,双方是无法进行通话的。因此,预先分配的通信信道就表示网络侧设备给该用户终端300以及第二用户终端之间分配的用于进行明话通信的通信信道。Generally, there are two ways to establish a secret communication between two user terminals. One is to establish a secret communication after the successful establishment of the clear communication, and the other is to establish a secret communication directly between the user terminals. In both ways, it is necessary to establish a clear communication connection and then establish a secret communication. The difference is that the first way is to establish a secret communication on the basis of the establishment of the clear communication, before the establishment of the secret communication, the two parties can make a normal call; and the second way is the clear communication. The communication channel has been allocated, and the clear communication connection is also established, but the two parties cannot make a call until the establishment of the secret communication is completed. Therefore, the pre-assigned communication channel represents a communication channel allocated by the network side device to the user terminal 300 and the second user terminal for performing clear communication.
其中,通信信道是指数据传输的通路,在计算机网络中信道分为物理信道和逻辑信道。物理信道指用于传输数据信号的物理通路,它由传输介质与有关通信设备组成;逻辑信道指在物理信道的基础上,发送与接收数据信号的双方通过中间结点所实现的逻辑通路,由此为传输数据信号形成的逻辑通路。在通信领域中,通信信道可以为分有线信道和无线信道。通常情况下,用户使用手机拨打电话时使用的为无线信道,也有可能是无线信道和有线信道的结合。Wherein, the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel. A physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device; a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal. In the field of communications, the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
本发明实施例中,当网络侧设备给用户终端300与第二用户终端之间分配了用于进行明话通信的通信信道之后,如果用户需要对通话进行加密,那么密话通信建立单元301就会与第二用户终端在预先分配好的通信信道上建立密话通信。In the embodiment of the present invention, after the network side device allocates a communication channel for performing clear communication between the user terminal 300 and the second user terminal, if the user needs to encrypt the call, the secret communication establishing unit 301 A secret communication is established with the second user terminal on a pre-assigned communication channel.
本发明实施例中,密话通信建立单元301与第二用户终端在预先分配的通信信道上进行密话通信的建立的方式主要包括以下操作:In the embodiment of the present invention, the manner in which the secret communication establishing unit 301 and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel mainly includes the following operations:
在预先分配的通信信道上向网络侧设备发送与第二用户终端用于建立密话通信的请求,以使该网络侧设备响应该请求向该用户终端300以及第二用户终端发送配对密钥;Sending, to the network side device, a request for establishing a secret communication with the second user terminal on the pre-assigned communication channel, so that the network side device sends the pairing key to the user terminal 300 and the second user terminal in response to the request;
与第二用户终端通过该配对密钥建立密话通信连接。 Establishing a secret communication connection with the second user terminal through the pairing key.
具体实现中,网络侧设备可以为基站,也可以为网络服务器,还可以为基站与网络服务器的总称,本发明实施例不做限定。因此,当该用户终端300与第二用户终端需要建立进行密话通信时,该用户终端300首先会向网络侧设备发送通信请求,而网络侧设备接收到该用户终端300发送的通信请求之后,就会给该用户终端300和第二用户终端之间分配用于通信的通信信道。当通信信道分配完成之后,该用户终端300再向网络侧设备发送密话通信建立请求(该密话通信建立请求用于表示该该用户终端300与第二用户终端需要建立密话通信业务)。当网络侧设备接收到该密话通信建立请求时,会将普通通信业务(即明话通信业务)转换为密话通信业务,并向该用户终端300和第二用户终端发送配对密钥。In a specific implementation, the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the user terminal 300 and the second user terminal need to establish a secret communication, the user terminal 300 first sends a communication request to the network side device, and after the network side device receives the communication request sent by the user terminal 300, A communication channel for communication is allocated between the user terminal 300 and the second user terminal. After the communication channel allocation is completed, the user terminal 300 sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the user terminal 300 and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the user terminal 300 and the second user terminal.
需要说明的是,在本发明实施例中也可以是第二用户终端执行该用户终端300所执行的操作,本发明实施例在此不再赘述。It should be noted that, in the embodiment of the present invention, the second user terminal may perform the operations performed by the user terminal 300, and details are not described herein again.
进一步的,在该用户终端300和第二用户终端接收到该配对密钥之后,就可以通过该配对密钥建立密话通信连接。如果密话通信连接建立成功,那么该用户终端300和第二用户终端就可以在该通信信道上进行密话通信,即第一用户终端与第二用户终端之间的通话是:其中一个用户终端通过密钥对语音信号加密之后,通过该通信信道发送给另一个用户终端,另一个用户终端再通过相同的密钥或者与该密钥配对的密钥对该语音信号进行解密。Further, after the user terminal 300 and the second user terminal receive the pairing key, the secret communication connection can be established through the pairing key. If the secret communication connection is established successfully, the user terminal 300 and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
发送单元302,用于当该密话通信建立失败时,向网络侧设备发送通信业务类型转换请求。The sending unit 302 is configured to send a communication service type conversion request to the network side device when the secret communication establishment fails.
本发明实施例中,由于建立密话通信需要进行密钥协商和密话连接。因此,密话通信建立失败的原因有可能是密钥协商失败,或者密话连接建立失败。In the embodiment of the present invention, since the establishment of the secret communication requires key negotiation and a secret connection. Therefore, the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
具体的,密钥协商失败可能是因为该用户终端300和第二用户终端之间至少有一个用户终端不支持密话通信功能,因此,在该用户终端300向网络侧设备发送密话通信建立请求时,网络侧设备在检测到存在不支持密话通信功能的用户终端时,就不会向该用户终端300和第二用户终端分配密钥;还可能是当前的网络传输出现迟滞,而导致该用户终端300未能及时发送请求,或未能及时接收到分配的配对密钥。而密话连接建立失败的原因也有可能是网络传输出现迟滞,或当前的网络资源并不支持密话通信,本发明实施例不做限定。Specifically, the key negotiation failure may be because at least one user terminal between the user terminal 300 and the second user terminal does not support the secret communication function, and therefore, the user terminal 300 sends a secret communication establishment request to the network side device. When the network side device detects that there is a user terminal that does not support the secret communication function, the network terminal does not assign a key to the user terminal 300 and the second user terminal; or the current network transmission may be delayed, resulting in the The user terminal 300 fails to send the request in time or fails to receive the assigned pairing key in time. The reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
因此,当该用户终端300和第二用户终端在建立密话通信而失败时,那么 发送单元302端就会向网络侧设备发送通信业务类型转换请求。其中,该通信业务类型转换请求用于指示该网络侧设备需要将当前的密话通信业务转换为明话通信业务。因此,当该网络侧设备接收到该通信业务类型转换请求时,就会响应该通信业务类型转换请求,将该密话通信业务转换为明话通信业务。Therefore, when the user terminal 300 and the second user terminal fail to establish a secret communication, then The sending unit 302 sends a communication service type conversion request to the network side device. The communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
接收单元303,用于接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息。The receiving unit 303 is configured to receive a notification message sent by the network side device that converts the secret communication service into a clear communication service.
通信单元304,用于根据上述接收单元303接收的通知消息在该预先分配的通信信道上与该第二用户终端进行明话通信。The communication unit 304 is configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit 303.
本发明实施例中,当该网络侧设备响应上述发送单元302发送的该通信业务类型转换请求,将该密话通信业务转换为明话通信业务时,该网络侧设备就会向该用户终端300发送通知消息,该通知消息用于指示该第一用户终端该网络侧设备已经将密话通信业务转换为明话通信业务。因此,当接收单元303接收到该通知消息时,通信单元304就可以在预先分配的通信信道上与第二用户终端进行明话通信。In the embodiment of the present invention, when the network side device responds to the communication service type conversion request sent by the sending unit 302 to convert the secret communication service into the clear communication service, the network side device sends the mobile terminal device to the user terminal 300. Sending a notification message, the notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the receiving unit 303 receives the notification message, the communication unit 304 can perform clear communication with the second user terminal on the pre-assigned communication channel.
可见,在图3所描述的用户终端中,该用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立;当该密话通信建立失败时,向网络侧设备发送通信业务类型转换请求,以使该网络侧设备响应该通信业务类型转换请求将密话通信业务转换为明话通信业务;当接收该网络侧设备发送的已将密话通信业务转换为明话通信业务的通知消息时,根据该通知消息在该预先分配的通信信道上与第二用户终端进行明话通信。通过本发明实施例,当用户终端与另一用户终端之间的密话通信建立失败时,该用户终端可以通过发送通信业务类型转换请求而继续使用密话通信的通信信道进行明话通信,这样可以减少对通信信道资源的占用,减轻网络侧设备的负担,且能够快速建立通信,提升用户体验。It can be seen that, in the user terminal described in FIG. 3, the user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service. When the message is notified, clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message. According to the embodiment of the present invention, when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
请参阅图4,图4是本发明实施例公开的另一种用户终端的结构示意图。其中,图4所示的用户终端300是在图3所示的用户终端300的基础上进行优化得到的。如图4所示,该用户终端300还可以包括以下单元:Please refer to FIG. 4. FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention. The user terminal 300 shown in FIG. 4 is optimized based on the user terminal 300 shown in FIG. 3. As shown in FIG. 4, the user terminal 300 may further include the following units:
输出单元305,用于在该密话通信建立失败时,输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息。 The output unit 305 is configured to output prompt information for prompting whether the secret communication service needs to be converted into the clear communication service when the establishment of the secret communication fails.
本发明实施例中,当密话通信建立失败时,输出单元305可以输出提示信息。其中,该提示信息用于提示用户是否需要将当前的密话通信业务转换为明话通信业务。该提示信息可以是语音提示,也可以是文字提示,本发明实施例不做限定。In the embodiment of the present invention, when the secret communication establishment fails, the output unit 305 may output prompt information. The prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service. The prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
具体的,在密话通信建立单元301和第二用户终端在预先分配的通信信道上建立密话通信的过程中,如果出现密钥协商失败或者密话连接建立失败,那么输出单元305就会输出提示信息来提示用户是否需要将当前的密话通信业务转换为明话通信业务。Specifically, in the process of establishing the secret communication on the pre-assigned communication channel by the secret communication establishing unit 301 and the second user terminal, if the key negotiation fails or the secret connection establishment fails, the output unit 305 outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
判断单元306,用于判断在预设时间段内是否接收到针对上述输出单元305输出的提示信息输入的确认操作。The determining unit 306 is configured to determine whether a confirmation operation for inputting the prompt information output by the output unit 305 is received within the preset time period.
本发明实施例中,当输出单元305输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息时,用户可以根据该提示信息做出相应的操作。例如,如果本次通话非常机密,必须使用密话通信,那么用户可以通过特定的语音信息或文字信息或手势等输入拒绝该提示信息的操作,,并结束当前与第二用户终端建立的通信连接,释放当前分配的通信信道资源;而如果本次通话十分紧急,可以选择使用明话通信,那么用户就可以根据该提示信息输入确认操作,以指示发送单元302向该网络侧设备发送通信业务类型转换请求。In the embodiment of the present invention, when the output unit 305 outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information through specific voice information or text information or gestures, and end the current communication connection with the second user terminal. And releasing the currently allocated communication channel resource; if the call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information, to instruct the sending unit 302 to send the communication service type to the network side device. Conversion request.
其中,该预设时间段可以是15秒、也可以是30秒,本发明实施例不做限定。The preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
具体的,该确认操作可以是在输出的文字提示信息上点击或回复“确认”、“是”或代表确认的数字等信息来指示该用户终端300该用户需要将当前的密话通信业务转换为明话通信业务;也可以是通过输入语音来指示该用户终端300该用户需要将当前的密话通信业务转换为明话通信业务;还可以是在该用户终端300的屏幕上输入特定的手势来指示该用户终端300该用户需要将当前的密话通信业务转换为明话通信业务,本发明实施例不做限定。Specifically, the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirm”, “yes” or a number representing the confirmation to indicate that the user terminal 300 needs to convert the current secret communication service into The voice communication service may be used to indicate that the user terminal 300 needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the user terminal 300. The user terminal 300 is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
因此,如果判断单元306判断出在预设时间段内接收到针对该提示信息输入的确认操作,那么就会触发上述发送单元向网络侧设备发送通信业务类型转换请求,以使该网络侧设备响应该通信业务类型转换请求将密话通信业务转换为明话通信业务。Therefore, if the determining unit 306 determines that the confirmation operation for the prompt information input is received within the preset time period, the sending unit is triggered to send a communication service type conversion request to the network side device, so that the network side device rings. The communication service type conversion request should be converted into a clear communication service.
断开单元307,用于在上述判断单元306判断出在预设时间段内未接收到针 对该提示信息输入的确认操作时,断开与该第二用户终端的通信连接。The disconnecting unit 307 is configured to determine, in the determining unit 306, that the needle is not received within the preset time period When the confirmation operation of the prompt information is input, the communication connection with the second user terminal is disconnected.
本发明实施例中,当输出单元305输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息时,用户可以根据该提示信息做出相应的操作。如果用户选择不需要进行通信业务类型转换,那么断开单元307就可以断开与第二用户终端之间建立好的明话通信连接。或者在判断单元306判断出在预设时间段内没有接收到用户针对该提示信息输入的确认操作时,断开单元307就可以断开与第二用户终端之间建立好的明话通信连接。也就是说,当密话通信建立失败且用户选择不需要转换为明话通信时,断开单元307会结束当前的通话请求,挂断电话。而网络侧设备在接收到断开单元307的挂断信号后,就会释放当前为该用户终端300和第二用户终端分配的用于进行明话通信的通信信道。这样可以在其他用户终端发送通信请求时,将该通信信道分配给其他用户终端。In the embodiment of the present invention, when the output unit 305 outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. If the user chooses not to perform the communication service type conversion, the disconnection unit 307 can disconnect the established clear communication connection with the second user terminal. Alternatively, when the determining unit 306 determines that the confirmation operation for the prompt information input by the user is not received within the preset time period, the disconnecting unit 307 can disconnect the established clear communication connection with the second user terminal. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the disconnection unit 307 ends the current call request and hangs up the call. After receiving the hang up signal of the disconnecting unit 307, the network side device releases the communication channel currently allocated for the user terminal 300 and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
本发明实施例中,通信单元304在与第二用户终端进行明话通信的过程中,通信单元304可以执行以下操作:In the embodiment of the present invention, in the process of communicating with the second user terminal, the communication unit 304 may perform the following operations:
检测当前采集的语音信号中是否包括私密信息;若是,则从该语音信号中抽取出该私密信息,并将抽取后的语音信号通过该预先分配的通信信道发送给第二用户终端。Detecting whether the currently collected voice signal includes private information; if yes, extracting the private information from the voice signal, and transmitting the extracted voice signal to the second user terminal through the pre-assigned communication channel.
具体实现中,通信单元304在与第二用户终端之间进行明话通信过程中,如果通信单元304检测到语音信号中包括有私密信息,可以将该私密信息从该语音信号中抽取出来,只将抽取了私密信息后的语音信号通过预先分配的通信信道发送给第二用户终端。当然,也可以是第二用户终端将语音信号中的私密信息抽取出来再发送给该用户终端300,本发明实施例在此不再赘述。In a specific implementation, during the clear communication process between the communication unit 304 and the second user terminal, if the communication unit 304 detects that the voice signal includes private information, the private information may be extracted from the voice signal, The voice signal after the private information is extracted is transmitted to the second user terminal through a pre-assigned communication channel. Of course, the second user terminal may extract the private information in the voice signal and send it to the user terminal 300, which is not described herein again.
其中,通信单元304检测语音信号中是否包括私密信息可以是通过检测是否包括有预设的关键字,如密码、账号、账户、卡号等关键字,如果包括,就确定出这类型的信息为私密信息;也可以是检测包括有数字、英文字母等信息,本发明实施例不做限定。The communication unit 304 detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is private. The information may be detected by the embodiment of the present invention.
举例来说,当通信单元304检测到用户输入的语音信号中包括有“我的账号为ABC,密码为123456”时,通信单元304就会检测到“账号”以及“密码”这两个关键字,那么通信单元304在将该语音信号发送出去之前,会将账号以及密码后面的包括的数字、字符或者英文等信息均作为私密信息,然后从该段 语音信号中抽取出来,并将抽取私密信息后的语音信号再通过预先分配的信信道发送给第二用户终端。For example, when the communication unit 304 detects that the voice signal input by the user includes “My account is ABC, the password is 123456”, the communication unit 304 detects the two keywords “account” and “password”. Then, before the communication signal is sent out, the communication unit 304 will use the account number and the number, character or English included in the password as private information, and then from the segment. The voice signal is extracted, and the voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
可选的,在通信单元304将抽取后的语音信号通过预先分配的通信信道发送给第二用户终端之后,Optionally, after the communication unit 304 sends the extracted voice signal to the second user terminal through the pre-assigned communication channel,
发送单元302,还用于通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。The sending unit 302 is further configured to send the private information to the second user terminal by using a pre-designated private information transmission manner.
具体实现中,发送单元302可以在当前通话结束之后将该私密信息通过预先指定的私密信息传输方式再发送给第二用户终端,还可以是实时地将该私密信息通过预先指定的私密信息传输方式发送给第二用户终端,本发明实施例不做限定。In a specific implementation, the sending unit 302 may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information to the pre-designated private information transmission manner in real time. The embodiment is not limited by the embodiment of the present invention.
进一步的,预先指定的私密信息传输方式可以是如QQ、微信、MSN等,本发明实施例不做限定。其中,发送单元302在该预先指定的私密信息传输方式中发送该私密信息时,可以对该私密信息进行加密之后再发送给第二用户终端,当第二用户终端接收到加密的私密信息时,可以根据与该用户终端300预先约定的解密方式对该私密信息进行解密,本发明实施例不做限定。Further, the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention. When the sending unit 302 transmits the private information in the pre-designated private information transmission mode, the private information may be encrypted and then sent to the second user terminal. When the second user terminal receives the encrypted private information, The private information may be decrypted according to a decryption manner pre-agreed by the user terminal 300, which is not limited in the embodiment of the present invention.
因此,在该用户终端300与第二用户终端之间不能进行密话通信而选择明话通信时,通信单元304可以将明话通信中的私密信息从语言信号中抽取出来,只发送不包括私密信息的语音信号,而发送单元302会将该私密信息通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。这样可以保证用户在通话过程中的涉及到的私密信息不被其他用户终端或设备截取到,从而保证用户信息的安全。Therefore, when the secret communication cannot be performed between the user terminal 300 and the second user terminal to select the clear communication, the communication unit 304 can extract the private information in the clear communication from the language signal, and only transmit the privacy information. The voice signal of the information, and the sending unit 302 transmits the private information to the second user terminal by using a pre-designated private information transmission manner. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
本发明实施例中,通信单元304在与第二用户终端进行明话通信的过程中,通信单元304还可以执行以下操作:In the embodiment of the present invention, the communication unit 304 may perform the following operations in the process of performing clear communication with the second user terminal:
检测当前采集的语音信号中是否包括私密信息;若是,则通过预设规则将该私密信息替换为目标信息,并将替换后的语音信号通过该预先分配的通信信道发送给第二用户终端。Detecting whether the currently collected voice signal includes private information; if yes, replacing the private information with the target information by using a preset rule, and transmitting the replaced voice signal to the second user terminal by using the pre-assigned communication channel.
具体实现中,通信单元304在与第二用户终端之间进行明话通信过程中,如果通信单元304检测到语音信号中包括有私密信息,可以通过预设规则将该私密信息用目标信息替换掉,然后将包括有目标信息的语音信号通过预先分配的通信信道发送给第二用户终端。 In a specific implementation, in the process of performing clear communication with the second user terminal, if the communication unit 304 detects that the voice signal includes private information, the communication unit 304 may replace the private information with the target information by using a preset rule. And then transmitting the voice signal including the target information to the second user terminal through the pre-assigned communication channel.
其中,预设规则可以是指某一加密算法,现有的加密算法有对称加密算法和非对称加密算法等,本发明实施例不做限定。因此,当通信单元304检测到私密信息时,通信单元304可以通过加密算法将该私密信息加密为目标信息,再将包括有目标信息的语音信号发送给第二用户终端。而第二用户终端在接收到该目标信息之后,就会通过与该加密算法对应的解密算法将该目标信息进行解密,从而得到该私密信息。The preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the communication unit 304 detects the private information, the communication unit 304 may encrypt the private information into the target information by using an encryption algorithm, and then transmit the voice signal including the target information to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
进一步的,该预设规则还可以是该用户终端300与第二用户终端预先约定的表示该信息为私密信息的规则。因此,通信单元304会通过指定的目标信息来代替该私密信息,并发送给第二用户终端。而当第二用户终端接收到该目标信息时,就可以确定该目标信息所代表信息为私密信息。同时,发送单元302可以通过预先指定的私密信息传输方式将该私密信息发送给第二用户终端。Further, the preset rule may also be a rule that the user terminal 300 and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the communication unit 304 replaces the private information with the specified target information and transmits it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the sending unit 302 can send the private information to the second user terminal by using a pre-designated private information transmission manner.
当然,不同类型或不同安全等级的私密信息被替代的目标信息可以是不同的。当第二用户终端接收到该目标信息时,就可以识别出原来的私密信息的安全等级或类型。如账号、卡号、生日类的私密信息的安全等级较低;密码、银行卡号、金钱等安全等级较高。因此,安全等级较低的私密信息所对应的目标信息可以为问候类的信息,而安全等级较高的私密信息所对应的目标信息可以为交通类的信息,本发明实施例不做限定。Of course, the target information that the private information of different types or different security levels is replaced may be different. When the second user terminal receives the target information, the security level or type of the original private information can be identified. For example, the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
举例来说,当通信单元304检测到用户输入的语音信号中包括有“我的银行卡号为123456”时,通信单元304就会检测到“银行卡号”这个关键字,因此就会将该信息确定为私密信息,然后通过加密算法将该私密信息加密为目标信息如“AABBCC”,并将该目标信息替换私密信息发送给第二用户终端。For example, when the communication unit 304 detects that the voice signal input by the user includes “My bank card number is 123456”, the communication unit 304 detects the keyword “bank card number”, and thus the information is determined. The private information is then encrypted by the encryption algorithm into target information such as "AABBCC", and the target information is replaced with the private information to the second user terminal.
可见,在图4所描述的用户终端中,该用户终端可以在密话通信建立失败时,提示用户,根据用户的选择执行是否将密话通信业务转换为明话通信业务,可以合理利用通信信道资源。在进行明话通信时,如果该用户终端和第二用户终端之间的通话中包括有私密信息,可以将该私密信息替换为其他信息。还可以将该私密信息从通话中抽取出来,并通过预先指定的私密信息传输方式进行传输。通过这种方式,可以实现即使不能进行密话通信,也能很好的对私密信息进行保护,提高明话通信过程中用户信息的安全,从而提升用户体验。It can be seen that, in the user terminal described in FIG. 4, when the establishment of the secret communication fails, the user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources. In the case of clear communication, if the communication between the user terminal and the second user terminal includes private information, the private information may be replaced with other information. The private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
本领域普通技术人员可以理解实现上述实施例方法中的全部或部分流程, 是可以通过计算机程序来指令相关的硬件来完成,所述的程序可存储于一计算机可读取存储介质中,该程序在执行时,可包括如上述各方法的实施例的流程。其中,所述的存储介质可为磁碟、光盘、只读存储记忆体(Read-Only Memory,ROM)或随机存储记忆体(Random Access Memory,RAM)等。One of ordinary skill in the art can understand all or part of the process in implementing the above embodiments. This may be accomplished by a computer program instructing the associated hardware, which may be stored in a computer readable storage medium, which, when executed, may include the flow of an embodiment of the methods described above. The storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM), or a random access memory (RAM).
以上所揭露的仅为本发明较佳实施例而已,当然不能以此来限定本发明之权利范围,因此依本发明权利要求所作的等同变化,仍属本发明所涵盖的范围。 The above is only the preferred embodiment of the present invention, and the scope of the present invention is not limited thereto, and thus equivalent changes made in the claims of the present invention are still within the scope of the present invention.

Claims (10)

  1. 一种密话通信建立失败的处理方法,其特征在于,包括:A processing method for failing to establish a secret communication, characterized in that:
    第一用户终端与第二用户终端在预先分配的通信信道上进行密话通信的建立;Establishing a secret communication of the first user terminal and the second user terminal on a pre-assigned communication channel;
    当所述密话通信建立失败时,所述第一用户终端向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务;When the establishment of the secret communication fails, the first user terminal sends a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear response in response to the communication service type conversion request. Telephone communication service;
    所述第一用户终端接收所述网络侧设备发送的已将所述密话通信业务转换为所述明话通信业务的通知消息,并根据所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信。Receiving, by the network side device, a notification message that is sent by the network side device to convert the secret communication service to the clear communication service, and according to the notification message, on the pre-assigned communication channel The second user terminal performs clear communication.
  2. 根据权利要求1所述的方法,其特征在于,当所述密话通信建立失败时,所述方法还包括:The method according to claim 1, wherein when the secret communication establishment fails, the method further comprises:
    所述第一用户终端输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息;The first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into a clear communication service;
    所述第一用户终端判断在预设时间段内是否接收到针对所述提示信息输入的确认操作;Determining, by the first user terminal, whether a confirmation operation for inputting the prompt information is received within a preset time period;
    若接收到所述确认操作,则所述第一用户终端执行所述向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务的步骤。And if the confirming operation is received, the first user terminal performs the sending a communication service type conversion request to the network side device, so that the network side device converts the secret communication service in response to the communication service type conversion request. The steps for the communication business.
  3. 根据权利要求2所述的方法,其特征在于,所述方法还包括:The method of claim 2, wherein the method further comprises:
    当在所述预设时间段内未接收到所述确认操作时,所述第一用户终端断开与所述第二用户终端的通信连接。The first user terminal disconnects the communication connection with the second user terminal when the confirmation operation is not received within the preset time period.
  4. 根据权利要求1所述的方法,其特征在于,所述根据所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信,包括:The method according to claim 1, wherein the performing clear communication with the second user terminal on the pre-assigned communication channel according to the notification message comprises:
    当所述第一用户终端检测到当前采集的语音信号中包括私密信息时,所述第一用户终端从所述语音信号中抽取出所述私密信息,并将抽取后的语音信号 通过所述预先分配的通信信道发送给所述第二用户终端;When the first user terminal detects that the currently collected voice signal includes private information, the first user terminal extracts the private information from the voice signal, and extracts the extracted voice signal. Transmitting to the second user terminal by using the pre-assigned communication channel;
    所述方法还包括:The method further includes:
    所述第一用户终端通过预先指定的私密信息传输方式将所述私密信息发送给所述第二用户终端。The first user terminal sends the private information to the second user terminal by using a pre-designated private information transmission manner.
  5. 根据权利要求1所述的方法,其特征在于,所述根据所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信,包括:The method according to claim 1, wherein the performing clear communication with the second user terminal on the pre-assigned communication channel according to the notification message comprises:
    当所述第一用户终端检测到当前采集的语音信号中包括私密信息时,所述第一用户终端通过预设规则将所述私密信息替换为目标信息,并将替换后的语音信号通过所述预先分配的通信信道发送给所述第二用户终端。When the first user terminal detects that the currently collected voice signal includes private information, the first user terminal replaces the private information with the target information by using a preset rule, and passes the replaced voice signal through the A pre-assigned communication channel is sent to the second user terminal.
  6. 一种用户终端,其特征在于,包括:A user terminal, comprising:
    密话通信建立单元,用于与第二用户终端在预先分配的通信信道上进行密话通信的建立;a secret communication establishing unit, configured to establish a secret communication with the second user terminal on a pre-assigned communication channel;
    发送单元,用于当所述密话通信建立失败时,向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务;a sending unit, configured to: when the secret communication establishment fails, send a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear message in response to the communication service type conversion request Communication service;
    接收单元,用于接收所述网络侧设备发送的已将所述密话通信业务转换为所述明话通信业务的通知消息;a receiving unit, configured to receive, by the network side device, a notification message that has converted the secret communication service into the clear communication service;
    通信单元,用于根据所述接收单元接收的所述通知消息在所述预先分配的通信信道上与所述第二用户终端进行明话通信。And a communication unit, configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit.
  7. 根据权利要求6所述的用户终端,其特征在于,所述用户终端还包括:The user terminal according to claim 6, wherein the user terminal further comprises:
    输出单元,用于当所述密话通信建立失败时,输出用于提示是否需要将密话通信业务转换为明话通信业务的提示信息;And an output unit, configured to: when the secret communication establishment fails, output prompt information for prompting whether the secret communication service needs to be converted into a clear communication service;
    判断单元,用于判断在预设时间段内是否接收到针对所述提示信息输入的确认操作,若接收到,则触发所述发送单元执行所述向网络侧设备发送通信业务类型转换请求,以使所述网络侧设备响应所述通信业务类型转换请求将密话通信业务转换为明话通信业务的操作。 a determining unit, configured to determine whether a confirmation operation for inputting the prompt information is received within a preset time period, and if yes, triggering, by the sending unit, the sending, to the network side device, a communication service type conversion request, to And causing the network side device to convert the secret communication service into an operation of the clear communication service in response to the communication service type conversion request.
  8. 根据权利要求7所述的用户终端,其特征在于,所述用户终端还包括:The user terminal according to claim 7, wherein the user terminal further comprises:
    断开单元,用于在所述判断单元判断出在预设时间段内未接收到针对所述提示信息输入的确认操作时,断开与所述第二用户终端的通信连接。And a disconnecting unit, configured to disconnect the communication connection with the second user terminal when the determining unit determines that the confirmation operation for the prompt information input is not received within the preset time period.
  9. 根据权利要求6所述的用户终端,其特征在于,所述通信单元具体用于:The user terminal according to claim 6, wherein the communication unit is specifically configured to:
    当检测到当前采集的语音信号中包括私密信息时,从所述语音信号中抽取出所述私密信息,并将抽取后的语音信号通过所述预先分配的通信信道发送给所述第二用户终端;When it is detected that the currently collected voice signal includes private information, the private information is extracted from the voice signal, and the extracted voice signal is sent to the second user terminal through the pre-assigned communication channel. ;
    所述发送单元,还用于通过预先指定的私密信息传输方式将所述私密信息发送给所述第二用户终端。The sending unit is further configured to send the private information to the second user terminal by using a pre-designated private information transmission manner.
  10. 根据权利要求6所述的用户终端,其特征在于,所述通信单元具体用于:The user terminal according to claim 6, wherein the communication unit is specifically configured to:
    当检测到当前采集的语音信号中包括私密信息时,将所述私密信息替换为目标信息,并将替换后的语音信号通过所述预先分配的通信信道发送给所述第二用户终端。 When it is detected that the currently collected voice signal includes private information, the private information is replaced with the target information, and the replaced voice signal is sent to the second user terminal through the pre-assigned communication channel.
PCT/CN2015/088507 2015-07-31 2015-08-30 Encrypted conversation communication establishment failure processing method and user terminal WO2017020389A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510466655.2 2015-07-31
CN201510466655.2A CN105577634B (en) 2015-07-31 2015-07-31 A kind of processing method and user terminal of the failure of encrypted word connection setup

Publications (1)

Publication Number Publication Date
WO2017020389A1 true WO2017020389A1 (en) 2017-02-09

Family

ID=55887296

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/088507 WO2017020389A1 (en) 2015-07-31 2015-08-30 Encrypted conversation communication establishment failure processing method and user terminal

Country Status (2)

Country Link
CN (1) CN105577634B (en)
WO (1) WO2017020389A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107872792A (en) * 2016-09-23 2018-04-03 中兴通讯股份有限公司 A kind of method, equipment and the system of encryption of conversing
WO2019029677A1 (en) * 2017-08-11 2019-02-14 华为技术有限公司 Information indication method and apparatus
CN109391988B (en) 2017-08-11 2021-11-09 华为技术有限公司 Information indication method and device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1753348A (en) * 2004-09-22 2006-03-29 华为技术有限公司 Method of realizing changing open talk to secret talk
CN1753366A (en) * 2004-09-24 2006-03-29 华为技术有限公司 Method of implementing business ability negotiation
US20130136261A1 (en) * 2010-08-11 2013-05-30 Zte Corporation Method and System for Mobile Terminals Handing Over between Clear Session and Encrypted Session Communications
CN104486503A (en) * 2014-12-16 2015-04-01 深圳市中兴移动通信有限公司 Mobile terminal and voice encryption method thereof

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100415005C (en) * 2005-02-05 2008-08-27 华为技术有限公司 Method for realizing switch-over between open call/secrete call in end-to-end voice telecommunication

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1753348A (en) * 2004-09-22 2006-03-29 华为技术有限公司 Method of realizing changing open talk to secret talk
CN1753366A (en) * 2004-09-24 2006-03-29 华为技术有限公司 Method of implementing business ability negotiation
US20130136261A1 (en) * 2010-08-11 2013-05-30 Zte Corporation Method and System for Mobile Terminals Handing Over between Clear Session and Encrypted Session Communications
CN104486503A (en) * 2014-12-16 2015-04-01 深圳市中兴移动通信有限公司 Mobile terminal and voice encryption method thereof

Also Published As

Publication number Publication date
CN105577634B (en) 2019-11-12
CN105577634A (en) 2016-05-11

Similar Documents

Publication Publication Date Title
US20170034149A1 (en) Intelligent Communications Method, Terminal, and System
US10848528B2 (en) Managing data communications based on phone calls between mobile computing devices
KR101777698B1 (en) User terminal, method and computer for receiving and sending messages
CN105634737B (en) Data transmission method, terminal and system
US20160381114A1 (en) Method and system for replicating a communication application on an auxiliary computing device
WO2016045214A1 (en) Decision method and device, terminal and computer storage medium
WO2015117352A1 (en) Data processing method, data sending and receiving terminal, and data transmission system
US9942751B2 (en) Audio proximity-based mobile device data sharing
WO2017020389A1 (en) Encrypted conversation communication establishment failure processing method and user terminal
US8345837B2 (en) Preventing unintended users from accessing a re-routed communication
US10691818B2 (en) Secure interface for displaying of information
RU2670096C2 (en) Method and device for ending video communication
US20090327719A1 (en) Communication authentication
JP2015095896A (en) Method for encrypting and decrypting file using telephone number
AU2013319774A1 (en) Mobile sender controlled data access and data deletion method and system
KR102041023B1 (en) Information exchange method and apparatus
CN110493022B (en) Method, device and system for establishing three-party session
EP4027257A1 (en) Methods and systems for end-to-end encrypted message history exchange
KR102294918B1 (en) System and method for automatic selection of message transmission channels and deduplication of messages based on multiple blockchains
WO2016177246A1 (en) Message processing method and device
CN114222290A (en) Communication method, device, equipment and storage medium
US9949097B1 (en) Sharing SIM functionality between devices
US20180375994A1 (en) Method for managing at least one communication, corresponding device and software module program
TWI428762B (en) Method, apparatus and computer program product for providing intelligent synchronization
CN104144259B (en) Communication means and communication terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15900163

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15900163

Country of ref document: EP

Kind code of ref document: A1