WO2019184740A1 - Procédé et dispositif de chiffrement et de déchiffrement de données - Google Patents
Procédé et dispositif de chiffrement et de déchiffrement de données Download PDFInfo
- Publication number
- WO2019184740A1 WO2019184740A1 PCT/CN2019/078419 CN2019078419W WO2019184740A1 WO 2019184740 A1 WO2019184740 A1 WO 2019184740A1 CN 2019078419 W CN2019078419 W CN 2019078419W WO 2019184740 A1 WO2019184740 A1 WO 2019184740A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- key
- data
- encrypted
- hardware
- program
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/40—Network security protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/123—Applying verification of the received information received data contents, e.g. message integrity
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0643—Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3242—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
Abstract
Un mode de réalisation de la présente invention concerne un procédé et un dispositif de chiffrement et de déchiffrement de données. Le procédé de chiffrement de données consiste : à générer, à l'aide d'un dispositif de débridage logiciel de confiance, une première clé secrète correspondant de manière unique à un dispositif matériel, et à chiffrer les données en fonction de la première clé secrète. La présente invention permet de réduire la possibilité qu'un pirate informatique ou similaire acquière et obtienne directement la première clé secrète à partir d'un code, et garantit également que même si la clé secrète d'un certain dispositif matériel est déchiffrée, la clé secrète dans le dispositif matériel qui appartient à la même catégorie ou appartient à un même fabricant de matériel du dispositif matériel décrit est sécurisée. Ainsi, la sécurité des données et du dispositif matériel est efficacement améliorée. En outre, que le dispositif matériel présente des capacités de sécurité matérielle ou non, la génération d'une première clé secrète peut être garantie, ce qui permet d'améliorer la fiabilité de génération de la première clé secrète.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810274311.5 | 2018-03-29 | ||
CN201810274311.5A CN110324138B (zh) | 2018-03-29 | 2018-03-29 | 数据加密、解密方法及装置 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2019184740A1 true WO2019184740A1 (fr) | 2019-10-03 |
Family
ID=68060948
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2019/078419 WO2019184740A1 (fr) | 2018-03-29 | 2019-03-18 | Procédé et dispositif de chiffrement et de déchiffrement de données |
Country Status (3)
Country | Link |
---|---|
CN (1) | CN110324138B (fr) |
TW (1) | TWI793215B (fr) |
WO (1) | WO2019184740A1 (fr) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114828007A (zh) * | 2022-04-30 | 2022-07-29 | 佛山技研智联科技有限公司 | 基于边缘网关的数据处理方法、装置和系统、边缘网关 |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114598482A (zh) * | 2020-11-20 | 2022-06-07 | 福州数据技术研究院有限公司 | 一种服务器与智能边缘网关的加密通信方法和系统 |
CN112699393B (zh) * | 2020-12-31 | 2022-12-23 | 南方电网科学研究院有限责任公司 | 一种并行总线数据传输方法和装置 |
CN113364760A (zh) * | 2021-06-01 | 2021-09-07 | 平安科技(深圳)有限公司 | 一种数据加密处理方法、装置、计算机设备及存储介质 |
EP4145762B1 (fr) * | 2021-09-06 | 2023-10-25 | Axis AB | Procédé et système permettant le traitement sécurisé de données à l'aide d'application de traitement |
CN113973123B (zh) * | 2021-10-27 | 2023-08-29 | 广东卓维网络有限公司 | 一种多接入方式加密物联网通信方法和系统 |
CN114936365B (zh) * | 2022-01-27 | 2023-03-24 | 华为技术有限公司 | 一种机密数据的保护系统、方法以及装置 |
CN115828289B (zh) * | 2023-02-16 | 2023-05-30 | 中信天津金融科技服务有限公司 | 一种数字化档案的加密方法和系统 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102595213A (zh) * | 2012-02-22 | 2012-07-18 | 深圳创维-Rgb电子有限公司 | 可信电视终端安全认证方法和系统 |
US8839455B1 (en) * | 2009-09-23 | 2014-09-16 | Parallels IP Holdings GmbH | Security domain in virtual environment |
CN106656915A (zh) * | 2015-10-30 | 2017-05-10 | 深圳市中电智慧信息安全技术有限公司 | 基于可信计算的云安全服务器 |
Family Cites Families (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8423762B2 (en) * | 2006-07-25 | 2013-04-16 | Northrop Grumman Systems Corporation | Common access card heterogeneous (CACHET) system and method |
JP5070005B2 (ja) * | 2007-11-01 | 2012-11-07 | 株式会社日立製作所 | 演算装置および演算方法ならびにコンピュータシステム |
CN201181472Y (zh) * | 2008-02-29 | 2009-01-14 | 北京华大恒泰科技有限责任公司 | 硬件密钥装置和移动存储系统 |
US8700893B2 (en) * | 2009-10-28 | 2014-04-15 | Microsoft Corporation | Key certification in one round trip |
US8874916B2 (en) * | 2012-09-28 | 2014-10-28 | Intel Corporation | Introduction of discrete roots of trust |
CN104871167A (zh) * | 2012-10-25 | 2015-08-26 | 英特尔公司 | 固件中的防盗 |
CN103455756B (zh) * | 2013-08-02 | 2016-12-28 | 国家电网公司 | 一种基于可信计算的进程控制方法 |
EP2879327A4 (fr) * | 2013-09-30 | 2015-06-03 | Huawei Tech Co Ltd | Procédé, appareil et dispositif de traitement de chiffrement et de déchiffrement |
CN107534551B (zh) * | 2015-07-30 | 2021-02-09 | 慧与发展有限责任合伙企业 | 提供加密数据的方法、计算设备和计算机可读介质 |
CN105681032B (zh) * | 2016-01-08 | 2017-09-12 | 腾讯科技(深圳)有限公司 | 密钥存储方法、密钥管理方法及装置 |
US10268844B2 (en) * | 2016-08-08 | 2019-04-23 | Data I/O Corporation | Embedding foundational root of trust using security algorithms |
CN106533663B (zh) * | 2016-11-01 | 2019-06-25 | 广东浪潮大数据研究有限公司 | 数据加密方法、加密方设备及数据解密方法、解密方设备 |
CN106980794B (zh) * | 2017-04-01 | 2020-03-17 | 北京元心科技有限公司 | 基于TrustZone的文件加解密方法、装置及终端设备 |
CN107273738A (zh) * | 2017-06-22 | 2017-10-20 | 努比亚技术有限公司 | 一种安全控制方法、终端及计算机可读存储介质 |
CN107454590A (zh) * | 2017-07-26 | 2017-12-08 | 上海斐讯数据通信技术有限公司 | 一种数据加密方法、解密方法及无线路由器 |
CN107465504A (zh) * | 2017-08-15 | 2017-12-12 | 上海与德科技有限公司 | 一种提高密钥安全性的方法及装置 |
-
2018
- 2018-03-29 CN CN201810274311.5A patent/CN110324138B/zh active Active
- 2018-11-20 TW TW107141247A patent/TWI793215B/zh active
-
2019
- 2019-03-18 WO PCT/CN2019/078419 patent/WO2019184740A1/fr active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8839455B1 (en) * | 2009-09-23 | 2014-09-16 | Parallels IP Holdings GmbH | Security domain in virtual environment |
CN102595213A (zh) * | 2012-02-22 | 2012-07-18 | 深圳创维-Rgb电子有限公司 | 可信电视终端安全认证方法和系统 |
CN106656915A (zh) * | 2015-10-30 | 2017-05-10 | 深圳市中电智慧信息安全技术有限公司 | 基于可信计算的云安全服务器 |
Non-Patent Citations (1)
Title |
---|
"A Passing Computer Programmer. About TPM", CSDN BLOG, 24 February 2017 (2017-02-24), Retrieved from the Internet <URL:https://blog.csdn.net/lovely_girl1126/article/detai-ls/56843326> * |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114828007A (zh) * | 2022-04-30 | 2022-07-29 | 佛山技研智联科技有限公司 | 基于边缘网关的数据处理方法、装置和系统、边缘网关 |
Also Published As
Publication number | Publication date |
---|---|
CN110324138B (zh) | 2022-05-24 |
TWI793215B (zh) | 2023-02-21 |
TW201942784A (zh) | 2019-11-01 |
CN110324138A (zh) | 2019-10-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2019184740A1 (fr) | Procédé et dispositif de chiffrement et de déchiffrement de données | |
US11347857B2 (en) | Key and certificate distribution method, identity information processing method, device, and medium | |
EP2877955B1 (fr) | Fourniture d'accès à des données chiffrées | |
US10078599B2 (en) | Application access control method and electronic apparatus implementing the same | |
US10409984B1 (en) | Hierarchical data security measures for a mobile device | |
WO2016058487A1 (fr) | Procédé et appareil de traitement d'informations | |
US10073985B2 (en) | Apparatus and method for trusted execution environment file protection | |
US20220006617A1 (en) | Method and apparatus for data storage and verification | |
US20200004696A1 (en) | Techniques for multi-domain memory encryption | |
US20190286816A1 (en) | Behavior recognition, data processing method and apparatus | |
TW201530344A (zh) | 應用程式存取保護方法及應用程式存取保護裝置 | |
WO2022126644A1 (fr) | Dispositif de protection de modèle, procédé, et dispositif informatique | |
CN114629639A (zh) | 基于可信执行环境的密钥管理方法、装置和电子设备 | |
US20150227755A1 (en) | Encryption and decryption methods of a mobile storage on a file-by-file basis | |
US11934539B2 (en) | Method and apparatus for storing and processing application program information | |
US11520859B2 (en) | Display of protected content using trusted execution environment | |
CN109960935B (zh) | 确定tpm可信状态的方法、装置及存储介质 | |
WO2015154469A1 (fr) | Procédé et dispositif d'exploitation de bases de données | |
KR20210132721A (ko) | 네트워크에 액세스 시의 보안 통신 | |
KR20140088414A (ko) | 보안 데이터의 저장 검증을 위한 메모리 장치, 보안 데이터 저장 검증 시스템 및 그 검증 방법 | |
WO2016173116A1 (fr) | Procédé et dispositif d'accès à des données de stockage | |
WO2017020449A1 (fr) | Procédé et équipement d'utilisateur de lecture d'empreinte digitale | |
US20210194705A1 (en) | Certificate generation method | |
CN114244565B (zh) | 密钥分发方法、装置、设备及存储介质 | |
CN103491439A (zh) | 一种机顶盒的保护方法、系统及机顶盒和加密装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 19775810 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 19775810 Country of ref document: EP Kind code of ref document: A1 |