WO2017020389A1 - Procédé de traitement d'échec d'établissement de communication de conversation chiffrée et terminal d'utilisateur - Google Patents

Procédé de traitement d'échec d'établissement de communication de conversation chiffrée et terminal d'utilisateur Download PDF

Info

Publication number
WO2017020389A1
WO2017020389A1 PCT/CN2015/088507 CN2015088507W WO2017020389A1 WO 2017020389 A1 WO2017020389 A1 WO 2017020389A1 CN 2015088507 W CN2015088507 W CN 2015088507W WO 2017020389 A1 WO2017020389 A1 WO 2017020389A1
Authority
WO
WIPO (PCT)
Prior art keywords
user terminal
communication
communication service
secret
clear
Prior art date
Application number
PCT/CN2015/088507
Other languages
English (en)
Chinese (zh)
Inventor
李小辉
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 宇龙计算机通信科技(深圳)有限公司 filed Critical 宇龙计算机通信科技(深圳)有限公司
Publication of WO2017020389A1 publication Critical patent/WO2017020389A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to a method for processing a secret communication establishment failure and a user terminal.
  • secret communication The method of encrypting communication on a call
  • clear communication the communication method of not encrypting a call
  • the user generally selects the secret communication during the call.
  • secret communication is generally established on the basis of a clear communication channel. Therefore, after the voice communication channel is successfully established, the two parties will establish a secret communication, and the two parties can perform the secret communication only after the establishment of the secret communication is successful.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication, comprising:
  • the first user terminal When the establishment of the secret communication fails, the first user terminal sends a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear response in response to the communication service type conversion request.
  • Telephone communication service ;
  • a user terminal including:
  • a secret communication establishing unit configured to establish a secret communication with the second user terminal on a pre-assigned communication channel
  • a sending unit configured to: when the secret communication establishment fails, send a communication service type conversion request to the network side device, so that the network side device converts the secret communication service into a clear message in response to the communication service type conversion request Communication service;
  • a receiving unit configured to receive a notification message sent by the network side device that has converted the secret communication service into a clear communication service
  • a communication unit configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit.
  • the first user terminal and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel; when the establishment of the secret communication fails, the communication service type conversion request is sent to the network side device, And causing the network side device to convert the secret communication service into the clear communication service in response to the communication service type conversion request; and when receiving the notification message sent by the network side device and converting the secret communication service into the clear communication service, according to the notification message
  • the notification message communicates with the second user terminal in clear communication over the pre-assigned communication channel.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention
  • FIG. 2 is a schematic flowchart of another processing method for failing to establish a secret communication according to an embodiment of the present invention
  • FIG. 3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention.
  • FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention.
  • the embodiment of the invention discloses a processing method for failing to establish a secret communication and a user terminal, which can establish a clear communication by using an existing communication channel after the failure of the establishment of the secret communication, so that the communication can be established quickly. The details are described below separately.
  • FIG. 1 is a schematic flowchart of a method for processing a secret communication establishment failure according to an embodiment of the present invention.
  • the method shown in FIG. 1 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices (MID), personal digital assistants (PDAs).
  • User terminals such as media players, smart TVs, smart watches, smart glasses, and smart bracelets.
  • the processing method for the establishment of the secret communication failure may include the following steps:
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
  • the first user terminal and the second user terminal may both include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, and a smart TV.
  • a smart phone such as an Android phone, an iOS phone, etc.
  • a tablet computer such as an Apple MacBook Air, etc.
  • a palmtop computer such as an Apple MacBook Air, etc.
  • a mobile Internet device such as an Android phone, an iOS phone, etc.
  • the user terminal of the smart watch, the smart glasses, the smart bracelet, and the like, and the user terminal can perform a voice or video call with other user terminals, which is not limited in the embodiment of the present invention.
  • the pre-assigned communication channel represents a communication channel allocated by the network side device to the first user terminal and the second user terminal for performing clear communication.
  • the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel.
  • a physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device;
  • a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal.
  • the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
  • the first user terminal after the network side device allocates a communication channel for performing clear communication between the first user terminal and the second user terminal, if the user needs to encrypt the call, the first user terminal will Establishing a secret communication with the second user terminal on a pre-assigned communication channel.
  • the manner in which the first user terminal and the second user terminal establish the secret communication on the pre-assigned communication channel mainly includes the following steps:
  • Step 11) The first user terminal sends a request for establishing a secret communication with the second user terminal to the network side device on the pre-assigned communication channel, so that the network side device responds to the request to the first user terminal and the second The user terminal sends a pairing key;
  • Step 12 The first user terminal and the second user terminal establish a secret communication connection by using the pairing key.
  • the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the first user terminal and the second user terminal need to establish a secret communication, the first user terminal first sends a communication request to the network side device, and after the network side device receives the communication request sent by the first user terminal, A communication channel for communication is allocated between the first user terminal and the second user terminal. After the communication channel allocation is completed, the first user terminal sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the first user terminal and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the first user terminal and the second user terminal.
  • the normal communication service ie, the clear communication service
  • the second user terminal may perform the steps performed by the first user terminal, and details are not described herein again.
  • the secret communication connection can be established through the pairing key. If the secret communication connection is successfully established, the first user terminal and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
  • the key negotiation failure may be because at least one user terminal between the first user terminal and the second user terminal does not support the secret communication function, and therefore, the first user terminal sends a secret communication establishment request to the network side device.
  • the network side device detects that there is a user terminal that does not support the secret communication function, the network user device does not assign a key to the first user terminal and the second user terminal; or the current network transmission may be delayed, resulting in the first A user terminal failed to send a request in time or failed to receive the assigned pairing key in time.
  • the reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
  • the first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Minghua communication.
  • the network side device when the network side device responds to the communication service type conversion request and converts the secret communication service into the clear communication service, the network side device sends a notification message to the first user terminal, where The notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service.
  • clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 2 is a schematic flowchart of another method for processing a secret communication establishment failure according to an embodiment of the present invention.
  • the method shown in FIG. 2 can be applied to smart phones (such as Android phones, iOS phones, etc.), tablets, PDAs, and mobile Internet devices, personal digital assistants, media players, smart TVs, smart watches, smart glasses, User terminals such as smart bracelets.
  • the processing method for the establishment of the secret communication failure may include the following steps:
  • the first user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel.
  • the first user terminal When the secret communication establishment fails, the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into a clear communication service.
  • the first user terminal may output the prompt information.
  • the prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service.
  • the prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
  • the first user terminal outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
  • step S203 The first user terminal determines whether a confirmation operation for inputting the prompt information is received within a preset time period. If yes, step S204 is performed; if no, step S206 is performed.
  • the user when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information by using specific voice information or text information or gestures, and instruct the first user terminal to reject the communication service type conversion request, and Ending the current communication connection established with the second user terminal, releasing the currently allocated communication channel resource; and if the current call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information to indicate the The first user terminal sends a communication service type conversion request to the network side device.
  • the preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
  • the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirmation”, “yes” or a number representing the confirmation to indicate that the first user terminal needs to convert the current secret communication service into
  • the voice communication service may be used to indicate that the first user terminal needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the first user terminal.
  • the first user terminal is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
  • the first user terminal sends a communication service type conversion request to the network side device.
  • the first user terminal receives a notification message that is sent by the network side device and converts the secret communication service into a clear communication service, and performs, according to the notification message, the second user terminal on the pre-assigned communication channel. Communicate clearly and end this process.
  • the network user device after the network side device converts the secret communication service into the clear communication service in response to the communication service type conversion request, the network user device sends a notification to the first user terminal, where the notification is used to indicate the first A user terminal has converted the secret communication service into a clear communication service.
  • the first user terminal when the first user terminal receives the notification message, it can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the first user terminal may perform the following steps:
  • Step 21 detecting whether the currently collected voice signal includes private information
  • Step 22) If yes, the private information is extracted from the voice signal, and the extracted voice signal is sent to the second user terminal through the pre-assigned communication channel.
  • the private information may be extracted from the voice signal. Only the voice signal after the private information is extracted is sent to the second user terminal through the pre-assigned communication channel.
  • the second user terminal may extract the private information in the voice signal and send it to the first user terminal, which is not described herein again.
  • the first user terminal detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is The information is not limited to the embodiment of the present invention.
  • the first user terminal detects that the voice signal input by the user includes “My account is ABC and the password is 123456”, the first user terminal detects “account” and “password”. Keyword, then the first user terminal will use the account, as well as the number, character or English information after the password as private information, before sending the voice signal, and then extract the voice signal from the voice signal.
  • the voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
  • the first user terminal may further perform the following steps:
  • Step 23) transmitting the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the first user terminal may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information through the pre-designated private information in real time.
  • the method is not limited to the embodiment of the present invention.
  • the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention.
  • the private information may be encrypted and then sent to the second user terminal, when the second user terminal receives the encrypted private information.
  • the private information may be decrypted according to a decryption manner pre-agreed by the first user terminal, which is not limited in the embodiment of the present invention.
  • the first user terminal can extract the private information in the clear communication from the language signal. Only the voice signal that does not include the private information is sent, and the private information is sent to the second user terminal by using a pre-designated private information transmission method. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
  • the first user terminal may further perform the following steps:
  • Step 31 detecting whether the currently collected voice signal includes private information
  • the private information may be used by the preset rule. Replaced, and then the voice signal including the target information is transmitted to the second user terminal through the pre-assigned communication channel.
  • the preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the first user terminal detects the private information, the private information may be encrypted into the target information by using an encryption algorithm, and then the voice signal including the target information is sent to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
  • the preset rule may be a rule that the first user terminal and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the first user terminal replaces the private information with the specified target information and sends it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the first user terminal may send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the target information that the private information of different types or different security levels is replaced may be different.
  • the security level or type of the original private information can be identified.
  • the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
  • the first user terminal detects that the voice signal input by the user includes “My bank card number is 123456”, the first user terminal detects the keyword “bank card number”, so The information is determined to be private information, and then the private information is encrypted into target information such as "AABBCC" by an encryption algorithm, and the target information is replaced with the private information to the second user terminal.
  • target information such as "AABBCC”
  • the first user terminal disconnects the communication with the second user terminal, and ends the process.
  • the user when the first user terminal outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. If the user chooses not to perform the communication service type conversion, the first user terminal can disconnect the established clear communication connection with the second user terminal. Or the first user terminal can disconnect the clear communication with the second user terminal when the first user terminal determines that the user does not receive the confirmation operation for the prompt information input within the preset time period. connection. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the first user terminal ends the current call request and hangs up the call. After receiving the hang up signal of the first user terminal, the network side device releases the communication channel currently allocated for the first user terminal and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
  • the first user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources.
  • the private information may be replaced with other information.
  • the private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
  • FIG. 3 is a schematic structural diagram of a user terminal according to an embodiment of the present invention.
  • the user terminal 300 shown in FIG. 3 may include a smart phone (such as an Android mobile phone, an iOS mobile phone, etc.), a flat computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, and smart glasses.
  • the smart bracelet and the like are not limited in the embodiment of the present invention.
  • the user terminal 300 can include the following units:
  • a secret communication establishing unit 301 configured to perform on the pre-assigned communication channel with the second user terminal The establishment of secret communication.
  • the user terminal 300 is the first user terminal in the method embodiment, and the user terminal 300 can perform voice or video conversation with other user terminals.
  • the second user terminal may include a smart phone (such as an Android phone, an iOS phone, etc.), a tablet computer, a palmtop computer, and a mobile Internet device, a personal digital assistant, a media player, a smart TV, a smart watch, a smart glasses, a smart bracelet, and the like.
  • the user terminal is not limited in the embodiment of the present invention.
  • the pre-assigned communication channel represents a communication channel allocated by the network side device to the user terminal 300 and the second user terminal for performing clear communication.
  • the communication channel refers to a path of data transmission, and in the computer network, the channel is divided into a physical channel and a logical channel.
  • a physical channel refers to a physical path for transmitting a data signal, which is composed of a transmission medium and a related communication device;
  • a logical channel refers to a logical path realized by both sides of a transmitting and receiving data signal through an intermediate node on the basis of a physical channel, This is the logical path formed by the transmitted data signal.
  • the communication channel can be a separate wired channel and a wireless channel. Usually, when a user makes a call using a mobile phone, a wireless channel is used, and it is also possible to combine a wireless channel and a wired channel.
  • the secret communication establishing unit 301 A secret communication is established with the second user terminal on a pre-assigned communication channel.
  • the manner in which the secret communication establishing unit 301 and the second user terminal perform the establishment of the secret communication on the pre-assigned communication channel mainly includes the following operations:
  • the network side device may be a base station, or may be a network server, and may also be a general term of the base station and the network server, which is not limited in the embodiment of the present invention. Therefore, when the user terminal 300 and the second user terminal need to establish a secret communication, the user terminal 300 first sends a communication request to the network side device, and after the network side device receives the communication request sent by the user terminal 300, A communication channel for communication is allocated between the user terminal 300 and the second user terminal. After the communication channel allocation is completed, the user terminal 300 sends a secret communication establishment request to the network side device (the secret communication establishment request is used to indicate that the user terminal 300 and the second user terminal need to establish a secret communication service). When the network side device receives the secret communication establishment request, the normal communication service (ie, the clear communication service) is converted into a secret communication service, and the pairing key is sent to the user terminal 300 and the second user terminal.
  • the normal communication service ie, the clear communication service
  • the second user terminal may perform the operations performed by the user terminal 300, and details are not described herein again.
  • the secret communication connection can be established through the pairing key. If the secret communication connection is established successfully, the user terminal 300 and the second user terminal can perform secret communication on the communication channel, that is, the call between the first user terminal and the second user terminal is: one of the user terminals After the voice signal is encrypted by the key, it is transmitted to another user terminal through the communication channel, and the other user terminal decrypts the voice signal by the same key or a key paired with the key.
  • the sending unit 302 is configured to send a communication service type conversion request to the network side device when the secret communication establishment fails.
  • the reason why the secret communication establishment fails may be that the key negotiation fails or the secret connection establishment fails.
  • the key negotiation failure may be because at least one user terminal between the user terminal 300 and the second user terminal does not support the secret communication function, and therefore, the user terminal 300 sends a secret communication establishment request to the network side device.
  • the network side device detects that there is a user terminal that does not support the secret communication function, the network terminal does not assign a key to the user terminal 300 and the second user terminal; or the current network transmission may be delayed, resulting in the The user terminal 300 fails to send the request in time or fails to receive the assigned pairing key in time.
  • the reason for the failure of the establishment of the secret connection may also be that the network transmission is delayed, or the current network resource does not support the secret communication, which is not limited in the embodiment of the present invention.
  • the sending unit 302 sends a communication service type conversion request to the network side device.
  • the communication service type conversion request is used to indicate that the network side device needs to convert the current secret communication service into a clear communication service. Therefore, when the network side device receives the communication service type conversion request, it responds to the communication service type conversion request, and converts the secret communication service into a clear communication service.
  • the receiving unit 303 is configured to receive a notification message sent by the network side device that converts the secret communication service into a clear communication service.
  • the communication unit 304 is configured to perform clear communication with the second user terminal on the pre-assigned communication channel according to the notification message received by the receiving unit 303.
  • the network side device when the network side device responds to the communication service type conversion request sent by the sending unit 302 to convert the secret communication service into the clear communication service, the network side device sends the mobile terminal device to the user terminal 300. Sending a notification message, the notification message is used to indicate that the network side device of the first user terminal has converted the secret communication service into a clear communication service. Therefore, when the receiving unit 303 receives the notification message, the communication unit 304 can perform clear communication with the second user terminal on the pre-assigned communication channel.
  • the user terminal and the second user terminal perform establishment of a secret communication on a pre-assigned communication channel; when the establishment of the secret communication fails, the communication service is sent to the network side device. a type conversion request, so that the network side device converts the secret communication service into a clear communication service in response to the communication service type conversion request; and receives the encrypted communication service sent by the network side device to the clear communication service.
  • clear communication with the second user terminal is performed on the pre-assigned communication channel based on the notification message.
  • the user terminal when the establishment of the secret communication between the user terminal and another user terminal fails, the user terminal can continue to use the communication channel of the secret communication to perform clear communication by sending a communication service type conversion request, such that The occupation of communication channel resources can be reduced, the burden on the network side device can be alleviated, and communication can be quickly established to improve the user experience.
  • FIG. 4 is a schematic structural diagram of another user terminal according to an embodiment of the present invention.
  • the user terminal 300 shown in FIG. 4 is optimized based on the user terminal 300 shown in FIG. 3.
  • the user terminal 300 may further include the following units:
  • the output unit 305 is configured to output prompt information for prompting whether the secret communication service needs to be converted into the clear communication service when the establishment of the secret communication fails.
  • the output unit 305 may output prompt information.
  • the prompt information is used to prompt the user whether the current secret communication service needs to be converted into a clear communication service.
  • the prompt information may be a voice prompt or a text prompt, which is not limited in the embodiment of the present invention.
  • the output unit 305 outputs The prompt message prompts the user whether the current secret communication service needs to be converted into a clear communication service.
  • the determining unit 306 is configured to determine whether a confirmation operation for inputting the prompt information output by the output unit 305 is received within the preset time period.
  • the output unit 305 when the output unit 305 outputs prompt information for prompting whether the secret communication service needs to be converted into the clear communication service, the user may perform corresponding operations according to the prompt information. For example, if the call is very confidential and must use secret communication, the user can input the operation of rejecting the prompt information through specific voice information or text information or gestures, and end the current communication connection with the second user terminal. And releasing the currently allocated communication channel resource; if the call is very urgent, the user can choose to use the clear communication, then the user can input a confirmation operation according to the prompt information, to instruct the sending unit 302 to send the communication service type to the network side device. Conversion request.
  • the preset time period may be 15 seconds or 30 seconds, which is not limited in the embodiment of the present invention.
  • the confirming operation may be: clicking or replying to the output text prompt information or replying to “confirm”, “yes” or a number representing the confirmation to indicate that the user terminal 300 needs to convert the current secret communication service into
  • the voice communication service may be used to indicate that the user terminal 300 needs to convert the current secret communication service into a clear communication service by inputting a voice; or may input a specific gesture on the screen of the user terminal 300.
  • the user terminal 300 is instructed to convert the current secret communication service into a clear communication service, which is not limited in the embodiment of the present invention.
  • the sending unit is triggered to send a communication service type conversion request to the network side device, so that the network side device rings.
  • the communication service type conversion request should be converted into a clear communication service.
  • the disconnecting unit 307 is configured to determine, in the determining unit 306, that the needle is not received within the preset time period When the confirmation operation of the prompt information is input, the communication connection with the second user terminal is disconnected.
  • the disconnection unit 307 can disconnect the established clear communication connection with the second user terminal.
  • the determining unit 306 determines that the confirmation operation for the prompt information input by the user is not received within the preset time period
  • the disconnecting unit 307 can disconnect the established clear communication connection with the second user terminal. That is to say, when the secret communication establishment fails and the user chooses not to convert to the clear communication, the disconnection unit 307 ends the current call request and hangs up the call. After receiving the hang up signal of the disconnecting unit 307, the network side device releases the communication channel currently allocated for the user terminal 300 and the second user terminal for clear communication. This allows the communication channel to be assigned to other user terminals when other user terminals send communication requests.
  • the communication unit 304 may perform the following operations:
  • Detecting whether the currently collected voice signal includes private information if yes, extracting the private information from the voice signal, and transmitting the extracted voice signal to the second user terminal through the pre-assigned communication channel.
  • the private information may be extracted from the voice signal, The voice signal after the private information is extracted is transmitted to the second user terminal through a pre-assigned communication channel.
  • the second user terminal may extract the private information in the voice signal and send it to the user terminal 300, which is not described herein again.
  • the communication unit 304 detects whether the private information is included in the voice signal by detecting whether a preset keyword, such as a password, an account, an account, a card number, and the like, is included, and if included, determining that the type of information is private.
  • a preset keyword such as a password, an account, an account, a card number, and the like. The information may be detected by the embodiment of the present invention.
  • the communication unit 304 detects that the voice signal input by the user includes “My account is ABC, the password is 123456”, the communication unit 304 detects the two keywords “account” and “password”. Then, before the communication signal is sent out, the communication unit 304 will use the account number and the number, character or English included in the password as private information, and then from the segment. The voice signal is extracted, and the voice signal after extracting the private information is sent to the second user terminal through the pre-assigned signal channel.
  • the communication unit 304 sends the extracted voice signal to the second user terminal through the pre-assigned communication channel
  • the sending unit 302 is further configured to send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the sending unit 302 may resend the private information to the second user terminal by using a pre-designated private information transmission manner after the current call ends, or may transmit the private information to the pre-designated private information transmission manner in real time.
  • the embodiment is not limited by the embodiment of the present invention.
  • the pre-designated private information transmission manner may be, for example, QQ, WeChat, MSN, etc., which is not limited in the embodiment of the present invention.
  • the sending unit 302 transmits the private information in the pre-designated private information transmission mode
  • the private information may be encrypted and then sent to the second user terminal.
  • the second user terminal receives the encrypted private information
  • the private information may be decrypted according to a decryption manner pre-agreed by the user terminal 300, which is not limited in the embodiment of the present invention.
  • the communication unit 304 can extract the private information in the clear communication from the language signal, and only transmit the privacy information.
  • the voice signal of the information, and the sending unit 302 transmits the private information to the second user terminal by using a pre-designated private information transmission manner. This ensures that the private information involved in the user's call is not intercepted by other user terminals or devices, thereby ensuring the security of the user information.
  • the communication unit 304 may perform the following operations in the process of performing clear communication with the second user terminal:
  • Detecting whether the currently collected voice signal includes private information if yes, replacing the private information with the target information by using a preset rule, and transmitting the replaced voice signal to the second user terminal by using the pre-assigned communication channel.
  • the communication unit 304 may replace the private information with the target information by using a preset rule. And then transmitting the voice signal including the target information to the second user terminal through the pre-assigned communication channel.
  • the preset rule may be an encryption algorithm, and the existing encryption algorithm includes a symmetric encryption algorithm and an asymmetric encryption algorithm, which are not limited in the embodiment of the present invention. Therefore, when the communication unit 304 detects the private information, the communication unit 304 may encrypt the private information into the target information by using an encryption algorithm, and then transmit the voice signal including the target information to the second user terminal. After receiving the target information, the second user terminal decrypts the target information by using a decryption algorithm corresponding to the encryption algorithm, thereby obtaining the private information.
  • the preset rule may also be a rule that the user terminal 300 and the second user terminal pre-agreed to indicate that the information is private information. Therefore, the communication unit 304 replaces the private information with the specified target information and transmits it to the second user terminal. When the second user terminal receives the target information, it can determine that the information represented by the target information is private information. At the same time, the sending unit 302 can send the private information to the second user terminal by using a pre-designated private information transmission manner.
  • the target information that the private information of different types or different security levels is replaced may be different.
  • the security level or type of the original private information can be identified.
  • the privacy information of the account number, card number, and birthday class has a lower security level; the password, bank card number, and money have higher security levels. Therefore, the target information corresponding to the private information with a lower security level may be the information of the greeting type, and the target information corresponding to the private information with a higher security level may be the information of the traffic type, which is not limited in the embodiment of the present invention.
  • the communication unit 304 detects that the voice signal input by the user includes “My bank card number is 123456”, the communication unit 304 detects the keyword “bank card number”, and thus the information is determined.
  • the private information is then encrypted by the encryption algorithm into target information such as "AABBCC”, and the target information is replaced with the private information to the second user terminal.
  • the user terminal may prompt the user to perform whether to convert the secret communication service into the clear communication service according to the user's selection, and the communication channel can be reasonably utilized. Resources.
  • the private information may be replaced with other information.
  • the private information can also be extracted from the call and transmitted through a pre-designated private information transmission method. In this way, even if the secret communication cannot be performed, the private information can be well protected, and the user information in the communication process of the clear communication can be improved, thereby improving the user experience.
  • the storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM), or a random access memory (RAM).

Abstract

Les modes de réalisation de la présente invention se rapportent au domaine technique des télécommunications. L'invention porte sur un procédé de traitement d'échec d'établissement d'une communication de conversation chiffrée et sur un terminal d'utilisateur. Le procédé comprend les étapes suivantes : lorsqu'un premier terminal d'utilisateur ne parvient pas à établir une communication de conversation chiffrée avec un second terminal d'utilisateur sur un canal de communication pré-alloué, le premier terminal d'utilisateur transmet une demande de conversion de type de service de communication à un dispositif côté réseau ; et lors de la réception d'un message de notification, indiquant qu'un service de communication de conversation chiffrée a été converti en un service de communication de conversation en clair, transmis par le dispositif côté réseau, effectuer une communication de conversation en clair avec le second terminal d'utilisateur sur le canal de communication pré-alloué. Au moyen des modes de réalisation de la présente invention, lorsqu'un terminal d'utilisateur ne parvient pas à établir une communication de conversation chiffrée avec un autre terminal d'utilisateur, le terminal d'utilisateur peut continuer à utiliser un canal de communication pour une communication de conversation chiffrée pour effectuer une communication de conversation en clair avec un autre terminal d'utilisateur en transmettant une demande de conversion de type de service de communication, de sorte que l'occupation de ressources de canal de communication peut être réduite, la charge d'un dispositif côté réseau peut être réduite et la communication peut être rapidement établie, améliorant ainsi l'expérience utilisateur.
PCT/CN2015/088507 2015-07-31 2015-08-30 Procédé de traitement d'échec d'établissement de communication de conversation chiffrée et terminal d'utilisateur WO2017020389A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510466655.2 2015-07-31
CN201510466655.2A CN105577634B (zh) 2015-07-31 2015-07-31 一种密话通信建立失败的处理方法及用户终端

Publications (1)

Publication Number Publication Date
WO2017020389A1 true WO2017020389A1 (fr) 2017-02-09

Family

ID=55887296

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/088507 WO2017020389A1 (fr) 2015-07-31 2015-08-30 Procédé de traitement d'échec d'établissement de communication de conversation chiffrée et terminal d'utilisateur

Country Status (2)

Country Link
CN (1) CN105577634B (fr)
WO (1) WO2017020389A1 (fr)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107872792A (zh) * 2016-09-23 2018-04-03 中兴通讯股份有限公司 一种通话加密的方法、设备及系统
CN109391988B (zh) 2017-08-11 2021-11-09 华为技术有限公司 信息指示的方法和装置
WO2019029677A1 (fr) * 2017-08-11 2019-02-14 华为技术有限公司 Procédé et appareil d'indication d'informations

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1753348A (zh) * 2004-09-22 2006-03-29 华为技术有限公司 一种实现明话转密话的方法
CN1753366A (zh) * 2004-09-24 2006-03-29 华为技术有限公司 一种实现业务能力协商的方法
US20130136261A1 (en) * 2010-08-11 2013-05-30 Zte Corporation Method and System for Mobile Terminals Handing Over between Clear Session and Encrypted Session Communications
CN104486503A (zh) * 2014-12-16 2015-04-01 深圳市中兴移动通信有限公司 一种移动终端及其语音加密的方法

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100415005C (zh) * 2005-02-05 2008-08-27 华为技术有限公司 在端到端语音通信中实现明话/密话间相互切换的方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1753348A (zh) * 2004-09-22 2006-03-29 华为技术有限公司 一种实现明话转密话的方法
CN1753366A (zh) * 2004-09-24 2006-03-29 华为技术有限公司 一种实现业务能力协商的方法
US20130136261A1 (en) * 2010-08-11 2013-05-30 Zte Corporation Method and System for Mobile Terminals Handing Over between Clear Session and Encrypted Session Communications
CN104486503A (zh) * 2014-12-16 2015-04-01 深圳市中兴移动通信有限公司 一种移动终端及其语音加密的方法

Also Published As

Publication number Publication date
CN105577634A (zh) 2016-05-11
CN105577634B (zh) 2019-11-12

Similar Documents

Publication Publication Date Title
US20170034149A1 (en) Intelligent Communications Method, Terminal, and System
US11323492B2 (en) Managing data communications based on phone calls between mobile computing devices
EP2909964B1 (fr) Procédé et appareil permettant de fournir une communication sécurisée basée sur des évaluations de confiance de façon distribuée
KR101777698B1 (ko) 사용자 단말, 메시지를 송수신하는 방법 및 컴퓨터 프로그램
CN105634737B (zh) 一种数据传输方法、终端及其系统
US20160381114A1 (en) Method and system for replicating a communication application on an auxiliary computing device
WO2016045214A1 (fr) Procédé et dispositif de décision, terminal et support de stockage informatique
WO2015117352A1 (fr) Procédé de traitement de données, terminal d'envoi et de réception de données et système de transmission de données
US9942751B2 (en) Audio proximity-based mobile device data sharing
WO2017020389A1 (fr) Procédé de traitement d'échec d'établissement de communication de conversation chiffrée et terminal d'utilisateur
US8345837B2 (en) Preventing unintended users from accessing a re-routed communication
US10691818B2 (en) Secure interface for displaying of information
RU2670096C2 (ru) Способ и аппарат для завершения видеосвязи
US20090327719A1 (en) Communication authentication
JP2015095896A (ja) 電話番号を用いたファイルの暗号化及び復号化の方法
AU2013319774A1 (en) Mobile sender controlled data access and data deletion method and system
KR102041023B1 (ko) 정보 교환 방법 및 장치
CN110493022B (zh) 一种三方会话的建立方法、装置及系统
US11616742B2 (en) Methods and systems for end-to-end encrypted message history exchange
CN114222290A (zh) 通信方法、装置、设备及存储介质
US9949097B1 (en) Sharing SIM functionality between devices
US20180375994A1 (en) Method for managing at least one communication, corresponding device and software module program
TWI428762B (zh) 用以提供智慧型同步化之方法、裝置、及電腦程式產品
CN104144259B (zh) 通信方法和通信终端
CN106454830B (zh) 一种与移动终端中程序建立连接的方法及系统

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15900163

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15900163

Country of ref document: EP

Kind code of ref document: A1