WO2023236972A1 - Communication environment security warning method and apparatus, terminal device, and storage medium - Google Patents

Communication environment security warning method and apparatus, terminal device, and storage medium Download PDF

Info

Publication number
WO2023236972A1
WO2023236972A1 PCT/CN2023/098756 CN2023098756W WO2023236972A1 WO 2023236972 A1 WO2023236972 A1 WO 2023236972A1 CN 2023098756 W CN2023098756 W CN 2023098756W WO 2023236972 A1 WO2023236972 A1 WO 2023236972A1
Authority
WO
WIPO (PCT)
Prior art keywords
security
communication
communication environment
application information
factor
Prior art date
Application number
PCT/CN2023/098756
Other languages
French (fr)
Chinese (zh)
Inventor
罗康
黎明德
Original Assignee
深圳Tcl新技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳Tcl新技术有限公司 filed Critical 深圳Tcl新技术有限公司
Publication of WO2023236972A1 publication Critical patent/WO2023236972A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/142Network analysis or design using statistical or mathematical methods
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Definitions

  • This application relates to the field of communication technology, and specifically relates to a communication environment security early warning method, device, electronic equipment and storage medium.
  • Embodiments of the present application provide a communication environment security early warning method, device, electronic equipment and storage medium, which can conduct a security assessment on the communication environment during the current communication process, and remind the user based on the assessment results, so that the user can control the communication.
  • the degree of privacy of communication content during the process is not limited to.
  • the embodiment of the present application provides a communication environment security early warning method, including:
  • a communication environment security prompt message is displayed.
  • embodiments of the present application also provide a communication environment security early warning device, including:
  • An information acquisition unit configured to acquire the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
  • a coefficient calculation unit configured to calculate the communication end security coefficient of the communication end according to the first security method application information; and/or,
  • a security assessment unit configured to determine the communication environment security assessment result of the current communication environment based on at least one of the communication end security factor and the cloud server security factor;
  • a message prompt unit configured to display a communication environment security prompt message if the communication environment security assessment result indicates that the current communication environment is unsafe.
  • the communication environment security early warning device provided by the embodiment of the present application also includes a fusion evaluation unit, configured to determine the communication network corresponding to the communication end in response to the user's operation of initiating communication;
  • a communication environment security prompt message is displayed.
  • the coefficient calculation unit is configured to determine unapplied security methods from the security methods applicable to the communication end according to the first security method application information;
  • the communication initiating end security factor of the communication end is calculated.
  • the coefficient calculation unit is configured to calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end based on the first security risk value and the first risk utilization value;
  • the communication environment security early warning device provided by the embodiment of the present application also includes a timing assessment unit, configured to calculate the communication environment security assessment result of the current moment and the latest determination of the current communication environment when the communication terminal is in the communication process. The time interval between moments;
  • the communication environment security early warning device provided by the embodiment of the present application also includes a weight acquisition unit for acquiring all The security assessment weights corresponding to the communication terminal, the cloud server and the communication network respectively;
  • the fusion evaluation unit is configured to perform security evaluation weights based on the communication end security factor, the network security factor, the cloud server security factor, and the security assessment weights corresponding to the communication end, the cloud server, and the communication network, respectively. Calculate the communication environment security assessment value of the current communication environment;
  • the communication environment security assessment result of the current communication environment is determined.
  • the communication environment security early warning device provided by the embodiment of the present application further includes a security level determination unit, configured to determine the communication environment security level of the current communication environment based on the communication environment security assessment result;
  • the message prompt unit is used to display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
  • embodiments of the present application also provide an electronic device, including a memory and a processor; the memory stores application programs, and the processor is used to run the application programs in the memory to execute the tasks provided by the embodiments of the present application. steps in any communication environment security early warning method.
  • embodiments of the present application also provide a computer-readable storage medium that stores a plurality of instructions, and the instructions are suitable for loading by the processor to execute any of the instructions provided by the embodiments of the present application. Steps in a communication environment security early warning method.
  • embodiments of the present application also provide a computer program product, including a computer program or instructions.
  • the steps in any communication environment security early warning method provided by the embodiments of the present application are implemented. .
  • the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end can be obtained.
  • the The communication end security factor of the communication end, and/or calculating the cloud server security factor of the cloud server based on the second security method application information, based on at least one of the communication end security factor and the cloud server security factor determine the communication environment security assessment result of the current communication environment.
  • a communication environment security prompt message is displayed; because in the embodiment of the present application, according to the first security of the communication end.
  • the method application information and the second security method application information of the cloud server can evaluate the security situation of the communication terminal and/or the cloud server, and display a prompt message when the evaluation result indicates that the communication environment is unsafe, so the current communication process can be Conduct a security assessment of the communication environment, and remind users based on the assessment results so that users can control the privacy of communication content during the communication process.
  • Figure 1 is a schematic scenario diagram of the communication environment security early warning method provided by the embodiment of the present application.
  • Figure 2 is a flow chart of a communication environment security early warning method provided by an embodiment of the present application.
  • Figure 3 is a schematic technical flow diagram of the communication environment security early warning method provided by the embodiment of the present application.
  • FIG. 4 is a schematic diagram of the evaluation proportions of different modules in the communication environment provided by the embodiment of the present application.
  • Figure 5 is a schematic structural diagram of a communication environment security early warning device provided by an embodiment of the present application.
  • Figure 6 is another structural schematic diagram of the communication environment security early warning device provided by the embodiment of the present application.
  • FIG. 7 is a schematic structural diagram of an electronic device provided by an embodiment of the present application.
  • Embodiments of the present application provide a communication environment security early warning method, device, electronic equipment and computer-readable storage medium. Specifically, embodiments of the present application provide a communication environment security early warning method suitable for a communication environment security early warning device.
  • the communication environment security early warning device can be integrated in electronic equipment.
  • the electronic device may be a terminal or other equipment, including but not limited to mobile terminals and fixed terminals.
  • mobile terminals include but are not limited to smartphones, smart watches, tablets, laptops, smart vehicles, etc.
  • fixed terminals include but are not limited to Desktop computers, smart TVs, etc.
  • the electronic device can also be a server or other equipment.
  • the server can be an independent physical server, or a server cluster or distributed system composed of multiple physical servers. It can also provide cloud services, cloud databases, cloud computing, and cloud functions. , cloud storage, network services, cloud communications, middleware services, domain name services, security services, CDN (Content Delivery Network, content distribution network), and cloud servers for basic cloud computing services such as big data and artificial intelligence platforms, but not Limited to this.
  • the communication environment security early warning method in the embodiment of the present application can be implemented by the server, or can be implemented by the terminal and the server together.
  • the method will be described below by taking the terminal and the server to jointly implement the communication environment security early warning method as an example.
  • the communication environment security early warning system includes a terminal 10 and a server 20; the terminal 10 and the server 20 are connected through a network, such as a wired or wireless network connection, where the terminal 10 It can exist as a communication initiator for users to initiate communication and conduct communication.
  • the terminal 10 may be a communication initiator used by the user for communication, and is used to send the current first security method application information to the server 20 .
  • the server 20 may be used to obtain the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end, and calculate the communication of the communication end based on the first security method application information. end security factor, and/or calculate the cloud server security factor of the cloud server based on the second security method application information, and determine the current security factor based on at least one of the communication end security factor and the cloud server security factor.
  • the communication environment security assessment result of the communication environment If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is sent to the terminal 10 .
  • the terminal 10 may display a communication environment security prompt message.
  • steps of communication environment security assessment performed by the server 20 can also be performed by the terminal 10, which is not limited in the embodiment of the present application.
  • the embodiments of this application will be described from the perspective of a communication environment security early warning device.
  • the communication environment security early warning device may be integrated in a server or a terminal.
  • the specific process of the communication environment security early warning method in this embodiment can be as follows:
  • the communication terminal is the terminal used by the user for communication.
  • the communication end may include a communication initiating end used by the communication initiating user to initiate communication, and a communication receiving end used by the communication receiving user to receive communication.
  • the communication initiating end and the communication receiving end can be smartphones, smart watches, computers, etc. used by users.
  • the first security method application information may indicate the application of the security method corresponding to the communication initiating end and/or the communication receiving end.
  • the first security method application information may include information related to the applied security method, such as method name, preset method serial number, etc.
  • the first security method application information may include information related to unapplied security methods, etc.
  • the time to obtain the first security method application information may be the time when the communication application is detected to be started, that is, if the communication application is detected to be started, the current first security method of the communication initiating end and/or the communication receiving end where the communication application is located is obtained.
  • Application information may be the time when the communication application is detected to be started, that is, if the communication application is detected to be started, the current first security method of the communication initiating end and/or the communication receiving end where the communication application is located is obtained.
  • step 201 can include:
  • the current initiating end security method application information of the communication initiating end is obtained as the current first security method application information of the communication end.
  • step 201 may include:
  • the current receiving end security method application information of the communication receiving end is obtained as the current first security method application information of the communication end.
  • the information after obtaining the security method application information of the initiating end and the security method application information of the receiving end respectively, the information can be fused, and the fusion result can be used as the current first security method application information of the communication end.
  • the information fusion method can be addition or weighted calculation, etc. If the weighted calculation method is used, the corresponding weights of the communication initiator and the communication receiver can be calculated by technicians according to actual needs.
  • the embodiments of this application are This is not limited.
  • the electronic device that obtains the application information of the first security method may be a terminal, that is to say, it may be The communication initiating end and/or the communication receiving end collect the first security method application information themselves, or it can also be obtained by the server.
  • the server may be configured to receive the first security method application information sent by the communication initiating end and/or the communication receiving end.
  • the security assessment of the cloud server during the cloud communication process can also be carried out.
  • the step "obtaining the second security method application information of the cloud server corresponding to the communication terminal" may specifically include:
  • the communication end security factor can be used to indicate the security level of the communication end. Specifically, if the first security method application information is obtained only based on the initiating end security method application information of the communication initiating end, the communication end security coefficient can be used to represent the security level of the communication initiating end; if the first security method application information is only obtained based on the communication receiving end's If the first security method application information is obtained based on the initiating end security method application information and the receiving end security method application information, then the communication end security factor can be used to represent the security level of the communication receiving end. The coefficient can be used to indicate the security level of the communication initiator and communication receiver;
  • the step "calculate the communication initiating end security factor of the communication end based on the first security method application information" may specifically include:
  • the first security method application information determine an unapplied security method from the security methods applicable to the communication terminal;
  • a communication terminal security factor of the communication terminal is calculated.
  • the security methods that can be applied by the communication end can include but are not limited to integrity check, local storage encryption, system patching, inability to connect without password/ Weak network etc.
  • the first security risk value of each security method can be used to describe the possible risk impact if the corresponding security method is applied, and the first risk utilization value of each security method can be used to describe The ease of use of the risks that may arise if the corresponding security method is applied.
  • the first security risk value and the first risk utilization value of each unapplied security method can be directly integrated to calculate the risk brought by each unapplied security method, and this risk can be used as the communication end.
  • Safety factor when calculating the safety factor of the communication end, the first security risk value and the first risk utilization value of each unapplied security method can be directly integrated to calculate the risk brought by each unapplied security method, and this risk can be used as the communication end. Safety factor.
  • the safety impact of the applied safety methods can be added to the calculation of the safety factor. That is, the step "calculate the communication terminal security factor of the communication terminal based on the first security risk value and the first risk utilization value" includes:
  • D is the first risk utilization value of the security method
  • E is the first security risk value of the security method.
  • the calculation can be directly based on the number of applied security methods, for example, the security factor of the communication initiator N represents the number of applied security methods on the communication side, and n represents the number of unapplied security methods.
  • the security impact value of each applied security method may be determined, and based on the security impact value of the applied security method and the risk coefficient corresponding to each of the unapplied security methods, the calculated Describe the communication end security factor of the communication end.
  • the calculation method of the security factor of the cloud server is similar to the calculation method of the security factor of the communication sending end, which will not be described in detail in the embodiments of this application.
  • applicable security methods for cloud servers can include but are not limited to system patches, installing and opening firewalls, closing unnecessary services and ports, regular backups, monitoring system logs, local storage encryption, identity authentication, access control, etc. .
  • the communication environment security assessment result of the current communication environment can be determined to be the communication environment safety; when the communication end security factor is not greater than the preset security threshold, It is determined that the communication environment security assessment result of the current communication environment is that the communication environment is unsafe.
  • the communication environment security prompt message may only include content indicating that the current communication environment is unsafe, or the communication environment security prompt message may also include a selection control for the user to choose whether to continue using the communication application or whether to continue communicating, etc.
  • the communication receiving end and the communication network between the communication initiating end and the communication receiving end can be determined according to the communication initiating operation of the communication initiating user.
  • communication The network also conducts communication security assessment to facilitate users to understand the security of the overall communication environment. That is to say, after the step "display communication environment security prompt message", the communication environment security early warning method provided by the embodiment of the present application may also include:
  • a communication environment security prompt message is displayed.
  • the calculation method of the network security factor is similar to the calculation method of the communication sending end security factor, which will not be described in detail in the embodiments of this application.
  • applicable security methods of the communication network may include but are not limited to secure network protocols, transmission content encryption, PKI encryption, and so on.
  • the applicable security methods of the communication receiving end may be the same as or different from those of the communication initiating end, and this is not limited in the embodiments of the present application.
  • the step "determine the communication environment security assessment result of the current communication environment based on at least one of the communication terminal security factor and the cloud server security factor” may specifically include:
  • the communication environment security assessment result of the current communication environment is determined according to the communication end security factor, the cloud server security factor and the network security factor.
  • the current communication environment can be determined when any one of the communication initiating end security factor, the cloud server security factor, the network security factor and the communication receiving end security factor is not greater than a preset security threshold.
  • the communication environment security assessment result is unsafe.
  • Communication environment security early warning methods can also include:
  • the step "determine the communication environment security assessment result of the current communication environment based on the communication end security factor, the network security factor and the cloud server security factor” includes:
  • the communication environment security assessment result of the current communication environment is determined.
  • the security assessment weight of the communication end (communication initiator and communication receiver) be P1 and the security coefficient be C1; let the security assessment weight of the cloud server be P2 and the security coefficient be C2; let the security assessment weight ratio of the communication network be is P3 and the safety factor is C3.
  • the communication environment security assessment value S can be calculated by the following formula:
  • the entire communication system can be divided into three parts.
  • the cloud computer room (cloud server), as the core of this system, is not only related to the normal progress of video calls, but also affects the privacy content security of video calls and cloud security.
  • the security assessment weight for the assessment can be 45%.
  • the communication network serves as the link between the cloud and users to transmit data. If security measures are not taken, it may lead to the risk of the video call content being monitored.
  • the weight of the security assessment for network security assessment can be 35%.
  • the security assessment weight ratio for evaluating terminal security can be 30%.
  • the communication environment security early warning method provided by the embodiments of the present application may also include:
  • the safety factor calculation of each part of the communication system can be repeated regularly, the communication environment security of the current communication environment can be evaluated, and the user can be reminded of the communication security situation in real time until the call is ended.
  • step "Display communication environment security prompt message” may specifically include:
  • the embodiment of the present application can obtain the current first security method application information of the communication initiator, and calculate the communication initiator security factor of the communication initiator based on the first security method application information.
  • the safety factor determines the communication environment security assessment result of the current communication environment. If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed; because in the embodiment of the present application, according to the communication initiating end
  • the first security method applies information to evaluate the security situation of the communication initiator, and displays a prompt message when the evaluation result indicates that the communication environment is unsafe. Therefore, the security of the communication environment during the current communication process can be evaluated. According to the evaluation result Remind users so that they can control the privacy of communication content during the communication process.
  • the device includes:
  • the information acquisition unit 501 is used to obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
  • the message prompt unit 504 is configured to display a communication environment security prompt message if the communication environment security assessment result indicates that the current communication environment is unsafe.
  • the communication environment security early warning device provided by the embodiment of the present application also includes a fusion evaluation unit 505, configured to determine the communication network corresponding to the communication end in response to the user's operation of initiating communication;
  • the communication environment security early warning device provided by the embodiment of the present application also includes a timing evaluation unit 506 for When the communication terminal is in the communication process, calculate the time interval between the current moment and the latest moment when the communication environment security assessment result of the current communication environment is determined;
  • the communication environment security early warning device provided by the embodiment of the present application also includes a weight acquisition unit 507, which is used to obtain the security assessments corresponding to the communication terminal, the cloud server, and the communication network. Weights;
  • the fusion evaluation unit 505 is configured to perform security evaluation weights based on the communication end security factor, the network security factor, the cloud server security factor, and the security assessment weights corresponding to the communication end, the cloud server, and the communication network. , calculate the communication environment security assessment value of the current communication environment;
  • the communication environment security assessment result of the current communication environment is determined.
  • the communication environment security early warning device provided by the embodiment of the present application also includes a security level determination unit 508, configured to determine the communication environment security level of the current communication environment based on the communication environment security assessment result;
  • the message prompt unit is used to display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
  • the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end can be obtained.
  • the first security method application information Calculate the communication end security factor of the communication end, and/or calculate the cloud server security factor of the cloud server based on the second security method application information, based on the communication end security factor and the cloud server security factor.
  • At least one method is to determine the communication environment security assessment result of the current communication environment.
  • the communication environment security assessment result indicates that the current communication environment is unsafe
  • display a communication environment security prompt message because in the embodiment of the present application, according to the communication end
  • the first security method application information and the second security method application information of the cloud server can evaluate the security situation of the communication terminal and/or the cloud server, and display a prompt message when the evaluation result indicates that the communication environment is unsafe, so the current The communication environment during the communication process is evaluated for security, and the user is reminded based on the evaluation results so that the user can control the privacy of the communication content during the communication process.
  • the embodiment of the present application also provides an electronic device, which may be a terminal or a server, etc., as shown in Figure 7, which shows a schematic structural diagram of the electronic device involved in the embodiment of the present application. Specifically, :
  • the electronic device may include a radio frequency (RF, Radio Frequency) circuit 701, a memory 702 including one or more computer-readable storage media, an input unit 703, a display unit 704, a sensor 705, an audio circuit 706, a wireless fidelity (WiFi) , Wireless Fidelity) module 707, including a processor 708 with one or more processing cores, a power supply 709 and other components.
  • RF Radio Frequency
  • RF Radio Frequency
  • the RF circuit 701 can be used to receive and send signals during sending and receiving information or during calls. In particular, it can be used to transmit and receive signals from the base station. After the uplink information is received, it is handed over to one or more processors 708 for processing; in addition, uplink-related data is sent to the base station.
  • the RF circuit 701 includes, but is not limited to, an antenna, at least one amplifier, a tuner, one or more oscillators, a Subscriber Identity Module (SIM) card, a transceiver, a coupler, a low noise amplifier (LNA, Low Noise Amplifier), duplexer, etc.
  • SIM Subscriber Identity Module
  • RF circuit 701 can also communicate with networks and other devices through wireless communications.
  • Wireless communication can use any communication standard or protocol, including but not limited to Global System of Mobile communication (GSM, Global System of Mobile communication), General Packet Radio Service (GPRS, General Packet Radio Service), Code Division Multiple Access (CDMA, Code Division Multiple Access), Wideband Code Division Multiple Access (WCDMA), Long Term Evolution (LTE), email, Short Messaging Service (SMS), etc.
  • GSM Global System of Mobile communication
  • GPRS General Packet Radio Service
  • CDMA Code Division Multiple Access
  • WCDMA Wideband Code Division Multiple Access
  • LTE Long Term Evolution
  • SMS Short Messaging Service
  • the memory 702 can be used to store software programs and modules.
  • the processor 708 executes various functional applications and data processing by running the software programs and modules stored in the memory 702 .
  • the memory 702 may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function (such as a sound playback function, an image playback function, etc.), etc.; the storage data area may store a program based on Data created by the use of electronic devices (such as audio data, phone books, etc.), etc.
  • memory 702 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid-state storage device. Accordingly, the memory 702 may also include a memory controller to provide the processor 708 and the input unit 703 with access to the memory 702 .
  • the input unit 703 may be used to receive input numeric or character information, and to generate keyboard, mouse, joystick, optical or trackball signal input related to user settings and function control.
  • the input unit 703 may include a touch-sensitive surface as well as other input devices.
  • a touch-sensitive surface also known as a touch display or trackpad, can collect the user's touch operations on or near it (such as the user using a finger, stylus, or any suitable object or accessory on or near the touch-sensitive surface). operations near the surface), and drive the corresponding connection device according to the preset program.
  • the touch-sensitive surface may include two parts: a touch detection device and a touch controller.
  • the touch detection device detects the user's touch orientation, detects the signal brought by the touch operation, and transmits the signal to the touch controller; the touch controller receives the touch information from the touch detection device, converts it into contact point coordinates, and then sends it to the touch controller. to the processor 708, and can receive commands sent by the processor 708 and execute them.
  • touch-sensitive surfaces can be implemented using a variety of types including resistive, capacitive, infrared, and surface acoustic waves.
  • the input unit 703 may also include other input devices. Specifically, other input devices may include, but are not limited to, one or more of a physical keyboard, function keys (such as volume control keys, switch keys, etc.), trackball, mouse, joystick, etc.
  • the display unit 704 may be used to display information input by the user or information provided to the user as well as various graphical user interfaces of the electronic device. These graphical user interfaces may be composed of graphics, text, icons, videos, and any combination thereof.
  • the display unit 704 may include a display panel, which may optionally be configured in the form of a liquid crystal display (LCD), an organic light-emitting diode (OLED), or the like.
  • the touch-sensitive surface can cover the display panel, and when the touch-sensitive surface detects a touch operation on or near it, the information is sent to the processor. 708 to determine the type of touch event, and then the processor 708 provides corresponding visual output on the display panel according to the type of touch event.
  • the touch-sensitive surface and the display panel are used as two independent components to implement the input and input functions, in some embodiments, the touch-sensitive surface and the display panel can be integrated to implement the input and output functions.
  • the electronic device may also include at least one sensor 705, such as a light sensor, a motion sensor, and other sensors.
  • the light sensor may include an ambient light sensor and a proximity sensor.
  • the ambient light sensor may adjust the brightness of the display panel according to the brightness of the ambient light.
  • the proximity sensor may close the display panel and/or when the electronic device moves to the ear. Backlight.
  • the gravity acceleration sensor can detect the magnitude of acceleration in various directions (usually three axes). It can detect the magnitude and direction of gravity when stationary.
  • the audio circuit 706, speaker, and microphone can provide an audio interface between the user and the electronic device.
  • the audio circuit 706 can transmit the electrical signal converted from the received audio data to the speaker, which converts it into a sound signal and outputs it; on the other hand, the microphone converts the collected sound signal into an electrical signal, which is received and converted by the audio circuit 706
  • the audio data is processed by the audio data output processor 708 and then sent to, for example, another electronic device through the RF circuit 701, or the audio data is output to the memory 702 for further processing.
  • Audio circuitry 706 may also include an earphone jack to provide communication between peripheral earphones and electronic devices.
  • WiFi is a short-distance wireless transmission technology. Electronic devices can help users send and receive emails, browse web pages, and access streaming media through the WiFi module 707. It provides users with wireless broadband Internet access.
  • FIG. 7 shows the WiFi module 707, it can be understood that it is not a necessary component of the electronic device and can be omitted as needed without changing the essence of the invention.
  • the processor 708 is the control center of the electronic device, using various interfaces and lines to connect various parts of the entire mobile phone, by running or executing software programs and/or modules stored in the memory 702, and calling data stored in the memory 702, Perform various functions of electronic devices and process data.
  • the processor 708 may include one or more processing cores; preferably, the processor 708 may integrate an application processor and a modem processor, where the application processor mainly processes the operating system, user interface, application programs, etc. , the modem processor mainly handles wireless communications. It can be understood that the above-mentioned modem processor may not be integrated into the processor 708.
  • the electronic device also includes a power supply 709 (such as a battery) that supplies power to various components.
  • a power supply 709 (such as a battery) that supplies power to various components.
  • the power supply can be logically connected to the processor 708 through a power management system, so that functions such as charging, discharging, and power consumption management can be implemented through the power management system.
  • Power supply 709 may also include one or more DC or AC power supplies, recharging systems, power failure detection circuits, power converters or inverters, power status indicators, and other arbitrary components.
  • the electronic device may also include a camera, a Bluetooth module, etc., which will not be described again here.
  • the processor 708 in the electronic device will load the executable files corresponding to the processes of one or more application programs into the memory 702 according to the following instructions, and the processor 708 will run the executable files stored in Applications in memory 702 program to achieve various functions, as follows:
  • a communication environment security prompt message is displayed.
  • embodiments of the present application provide a computer-readable storage medium in which a plurality of instructions are stored, and the instructions can be loaded by the processor to execute any of the communication environment security early warning methods provided by the embodiments of the present application.
  • a step of. For example, this command can perform the following steps:
  • a communication environment security prompt message is displayed.
  • the computer-readable storage medium may include: read-only memory (ROM, Read Only Memory), random access memory (RAM, Random Access Memory), magnetic disk or optical disk, etc.
  • a computer program product or computer program is also provided.
  • the computer program product or computer program includes computer instructions, and the computer instructions are stored in a computer-readable storage medium.
  • the processor of the electronic device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the electronic device performs the methods provided in various optional implementations in the above embodiments.

Abstract

Embodiments of the present application disclose a communication environment security warning method and apparatus, an electronic device, and a storage medium. In an embodiment of the present application, current first security method application information of a communication end and second security method application information of a cloud server corresponding to the communication end may be obtained; a communication end security coefficient of the communication end is calculated according to the first security method application information, and/or a cloud server security coefficient of the cloud server is calculated according to the second security method application information; a communication environment security evaluation result of the current communication environment is determined on the basis of at least one among the communication end security coefficient and the cloud server security coefficient; and if the communication environment security evaluation result indicates that the current communication environment is not secure, a communication environment security prompt message is displayed. By means of an embodiment of the present application, a security evaluation can be carried out on a communication environment during a current communication process, and a user can be notified according to an evaluation result, facilitating the user in controlling the degree confidentiality of communicated content during communication.

Description

一种通信环境安全预警方法、装置、终端设备及存储介质A communication environment security early warning method, device, terminal equipment and storage medium
本申请要求于2022年6月9日提交中国专利局、申请号为202210651312.3发明名称为“一种通信环境安全预警方法、装置、电子设备和存储介质”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application submitted to the China Patent Office on June 9, 2022, with the application number 202210651312.3 and the invention name is "A communication environment security early warning method, device, electronic equipment and storage medium", and its entire content incorporated herein by reference.
技术领域Technical field
本申请涉及通讯技术领域,具体涉及一种通信环境安全预警方法、装置、电子设备和存储介质。This application relates to the field of communication technology, and specifically relates to a communication environment security early warning method, device, electronic equipment and storage medium.
背景技术Background technique
随着当前通信技术的快速发展,人们的通信形式越来越多样化,例如,人们可以通过即时通讯应用进行文字、语音、视频通信。With the rapid development of current communication technology, people's communication forms are becoming more and more diversified. For example, people can communicate through text, voice, and video through instant messaging applications.
目前,各类通信终端或者通信应用程序虽然会对通信过程进行安全性建设,但并没有对通信环境进行安全性的评估,也无法向用户展示当前通信过程的安全程度。At present, although various communication terminals or communication applications will build security in the communication process, they do not conduct a security assessment of the communication environment and cannot show users the security level of the current communication process.
技术问题technical problem
相关技术会导致用户并不了解在进行通信时的安全状况,无法把握在通信时的通信内容是否安全。Related technologies will cause users to not understand the security status of communications and be unable to grasp whether the communication content during communications is safe.
技术解决方案Technical solutions
本申请实施例提供一种通信环境安全预警方法、装置、电子设备和存储介质,可以对当前通信过程中的通信环境进行安全性评估,根据评估结果对用户进行提醒,以便于用户把控在通信过程中通信内容的隐私程度。Embodiments of the present application provide a communication environment security early warning method, device, electronic equipment and storage medium, which can conduct a security assessment on the communication environment during the current communication process, and remind the user based on the assessment results, so that the user can control the communication. The degree of privacy of communication content during the process.
本申请实施例提供一种通信环境安全预警方法,包括:The embodiment of the present application provides a communication environment security early warning method, including:
获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,Calculate the communication terminal security factor of the communication terminal according to the first security method application information; and/or,
根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;Calculate the cloud server security factor of the cloud server according to the second security method application information; determine the communication environment security assessment of the current communication environment based on at least one of the communication end security factor and the cloud server security factor. result;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
相应的,本申请实施例还提供一种通信环境安全预警装置,包括:Correspondingly, embodiments of the present application also provide a communication environment security early warning device, including:
信息获取单元,用于获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;An information acquisition unit, configured to acquire the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
系数计算单元,用于根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或, A coefficient calculation unit configured to calculate the communication end security coefficient of the communication end according to the first security method application information; and/or,
根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;Calculate the cloud server security factor of the cloud server according to the second security method application information;
安全评估单元,用于基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;A security assessment unit configured to determine the communication environment security assessment result of the current communication environment based on at least one of the communication end security factor and the cloud server security factor;
消息提示单元,用于若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。A message prompt unit configured to display a communication environment security prompt message if the communication environment security assessment result indicates that the current communication environment is unsafe.
可选的,本申请实施例提供的通信环境安全预警装置还包括融合评估单元,用于响应于用户发起通信的操作,确定所述通信端对应的通信网络;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a fusion evaluation unit, configured to determine the communication network corresponding to the communication end in response to the user's operation of initiating communication;
获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数;Obtain the third security method application information of the communication network, and calculate the network security coefficient of the communication network based on the third security method application information;
获取所述通信端当前的第一安全方法应用信息以及所述云服务器当前的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the current second security method application information of the cloud server;
根据所述第一安全方法应用信息和所述第二安全方法应用信息,计算所述通信端的通信端安全系数和所述云服务器的云服务器安全系数;Calculate the communication terminal security factor of the communication terminal and the cloud server security factor of the cloud server according to the first security method application information and the second security method application information;
根据所述通信端安全系数、所述网络安全系数和所述通信接收端安全系数,确定当前通信环境的通信环境安全评估结果;Determine the communication environment security assessment result of the current communication environment according to the communication end security factor, the network security factor and the communication receiving end security factor;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
可选的,所述系数计算单元,用于根据所述第一安全方法应用信息,从所述通信端可应用的安全方法中确定未应用的安全方法;Optionally, the coefficient calculation unit is configured to determine unapplied security methods from the security methods applicable to the communication end according to the first security method application information;
获取所述未应用的安全方法对应的第一安全风险值以及第一风险利用值;Obtain the first security risk value and the first risk utilization value corresponding to the unapplied security method;
基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信发起端安全系数。Based on the first security risk value and the first risk utilization value, the communication initiating end security factor of the communication end is calculated.
可选的,所述系数计算单元,用于基于所述第一安全风险值和所述第一风险利用值,计算所述通信端各所述未应用的安全方法对应的风险系数;Optionally, the coefficient calculation unit is configured to calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end based on the first security risk value and the first risk utilization value;
解析所述第一安全方法应用信息,确定所述通信端已应用的安全方法;Parse the first security method application information to determine the security method applied by the communication end;
根据所述已应用的安全方法和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。Calculate the communication end security factor of the communication end based on the risk coefficient corresponding to the applied security method and each of the unapplied security methods.
可选的,本申请实施例提供的通信环境安全预警装置还包括定时评估单元,用于当所述通信端处于通信过程中时,计算当前时刻与最近一次确定当前通信环境的通信环境安全评估结果时刻之间的时间间隔;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a timing assessment unit, configured to calculate the communication environment security assessment result of the current moment and the latest determination of the current communication environment when the communication terminal is in the communication process. The time interval between moments;
当所述时间间隔大于预设的检测时间间隔,执行所述获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数的步骤,直至所述通信过程结束。When the time interval is greater than the preset detection time interval, perform the steps of obtaining the third security method application information of the communication network, and calculating the network security coefficient of the communication network based on the third security method application information. , until the communication process ends.
可选的,本申请实施例提供的通信环境安全预警装置还包括权重获取单元,用于获取所 述通信端、所述云服务器和所述通信网络分别对应的安全评估权重;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a weight acquisition unit for acquiring all The security assessment weights corresponding to the communication terminal, the cloud server and the communication network respectively;
所述融合评估单元,用于根据所述通信端安全系数、所述网络安全系数、所述云服务器安全系数以及所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重,计算当前通信环境的通信环境安全评估值;The fusion evaluation unit is configured to perform security evaluation weights based on the communication end security factor, the network security factor, the cloud server security factor, and the security assessment weights corresponding to the communication end, the cloud server, and the communication network, respectively. Calculate the communication environment security assessment value of the current communication environment;
基于所述通信环境安全评估值,确定当前通信环境的通信环境安全评估结果。Based on the communication environment security assessment value, the communication environment security assessment result of the current communication environment is determined.
可选的,本申请实施例提供的通信环境安全预警装置还包括安全级别确定单元,用于根据所述通信环境安全评估结果,确定所述当前通信环境的通信环境安全级别;Optionally, the communication environment security early warning device provided by the embodiment of the present application further includes a security level determination unit, configured to determine the communication environment security level of the current communication environment based on the communication environment security assessment result;
所述消息提示单元,用于显示通信环境安全提示信息,所述通信环境安全提示信息包括所述通信环境安全级别。The message prompt unit is used to display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
相应的,本申请实施例还提供一种电子设备,包括存储器和处理器;所述存储器存储有应用程序,所述处理器用于运行所述存储器内的应用程序,以执行本申请实施例所提供的任一种通信环境安全预警方法中的步骤。Correspondingly, embodiments of the present application also provide an electronic device, including a memory and a processor; the memory stores application programs, and the processor is used to run the application programs in the memory to execute the tasks provided by the embodiments of the present application. steps in any communication environment security early warning method.
相应的,本申请实施例还提供一种计算机可读存储介质,所述计算机可读存储介质存储有多条指令,所述指令适于处理器进行加载,以执行本申请实施例所提供的任一种通信环境安全预警方法中的步骤。Correspondingly, embodiments of the present application also provide a computer-readable storage medium that stores a plurality of instructions, and the instructions are suitable for loading by the processor to execute any of the instructions provided by the embodiments of the present application. Steps in a communication environment security early warning method.
此外,本申请实施例还提供一种计算机程序产品,包括计算机程序或指令,所述计算机程序或指令被处理器执行时实现本申请实施例所提供的任一种通信环境安全预警方法中的步骤。In addition, embodiments of the present application also provide a computer program product, including a computer program or instructions. When the computer program or instructions are executed by a processor, the steps in any communication environment security early warning method provided by the embodiments of the present application are implemented. .
有益效果beneficial effects
采用本申请实施例的方案,可以获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息,根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数,和/或根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数,基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果,若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息;由于在本申请实施例中,根据通信端的第一安全方法应用信息和云服务器的第二安全方法应用信息,可以对通信端和/或云服务器的安全情况进行评估,并在评估结果指示通信环境不安全时显示提示消息,因此可以对当前通信过程中的通信环境进行安全性评估,根据评估结果对用户进行提醒,以便于用户把控在通信过程中通信内容的隐私程度。Using the solution of the embodiment of the present application, the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end can be obtained. According to the first security method application information, the The communication end security factor of the communication end, and/or calculating the cloud server security factor of the cloud server based on the second security method application information, based on at least one of the communication end security factor and the cloud server security factor , determine the communication environment security assessment result of the current communication environment. If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed; because in the embodiment of the present application, according to the first security of the communication end The method application information and the second security method application information of the cloud server can evaluate the security situation of the communication terminal and/or the cloud server, and display a prompt message when the evaluation result indicates that the communication environment is unsafe, so the current communication process can be Conduct a security assessment of the communication environment, and remind users based on the assessment results so that users can control the privacy of communication content during the communication process.
附图说明Description of the drawings
为了更清楚地说明本申请实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本申请的一些实施例,对于本领域技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present application, the drawings needed to be used in the description of the embodiments will be briefly introduced below. Obviously, the drawings in the following description are only some embodiments of the present application. For those skilled in the art, other drawings can also be obtained based on these drawings without exerting creative efforts.
图1是本申请实施例提供的通信环境安全预警方法的场景示意图;Figure 1 is a schematic scenario diagram of the communication environment security early warning method provided by the embodiment of the present application;
图2是本申请实施例提供的通信环境安全预警方法的流程图; Figure 2 is a flow chart of a communication environment security early warning method provided by an embodiment of the present application;
图3是本申请实施例提供的通信环境安全预警方法的技术流程示意图;Figure 3 is a schematic technical flow diagram of the communication environment security early warning method provided by the embodiment of the present application;
图4是本申请实施例提供的通信环境中不同模块评估占比的示意图;Figure 4 is a schematic diagram of the evaluation proportions of different modules in the communication environment provided by the embodiment of the present application;
图5是本申请实施例提供的通信环境安全预警装置的结构示意图;Figure 5 is a schematic structural diagram of a communication environment security early warning device provided by an embodiment of the present application;
图6是本申请实施例提供的通信环境安全预警装置的另一结构示意图;Figure 6 is another structural schematic diagram of the communication environment security early warning device provided by the embodiment of the present application;
图7是本申请实施例提供的电子设备的结构示意图。FIG. 7 is a schematic structural diagram of an electronic device provided by an embodiment of the present application.
本发明的实施方式Embodiments of the invention
下面将结合本申请实施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present application. Obviously, the described embodiments are only some of the embodiments of the present application, rather than all of the embodiments. Based on the embodiments in this application, all other embodiments obtained by those skilled in the art without making creative efforts fall within the scope of protection of this application.
本申请实施例提供一种通信环境安全预警方法、装置、电子设备和计算机可读存储介质。具体地,本申请实施例提供适用于通信环境安全预警装置的通信环境安全预警方法,该通信环境安全预警装置可以集成在电子设备中。Embodiments of the present application provide a communication environment security early warning method, device, electronic equipment and computer-readable storage medium. Specifically, embodiments of the present application provide a communication environment security early warning method suitable for a communication environment security early warning device. The communication environment security early warning device can be integrated in electronic equipment.
该电子设备可以为终端等设备,包括但不限于移动终端和固定终端,例如移动终端包括但不限于智能手机、智能手表、平板电脑、笔记本电脑、智能车载等,其中,固定终端包括但不限于台式电脑、智能电视等。The electronic device may be a terminal or other equipment, including but not limited to mobile terminals and fixed terminals. For example, mobile terminals include but are not limited to smartphones, smart watches, tablets, laptops, smart vehicles, etc., wherein fixed terminals include but are not limited to Desktop computers, smart TVs, etc.
该电子设备还可以为服务器等设备,该服务器可以是独立的物理服务器,也可以是多个物理服务器构成的服务器集群或者分布式系统,还可以是提供云服务、云数据库、云计算、云函数、云存储、网络服务、云通信、中间件服务、域名服务、安全服务、CDN(Content Delivery Network,内容分发网络)、以及大数据和人工智能平台等基础云计算服务的云服务器,但并不局限于此。The electronic device can also be a server or other equipment. The server can be an independent physical server, or a server cluster or distributed system composed of multiple physical servers. It can also provide cloud services, cloud databases, cloud computing, and cloud functions. , cloud storage, network services, cloud communications, middleware services, domain name services, security services, CDN (Content Delivery Network, content distribution network), and cloud servers for basic cloud computing services such as big data and artificial intelligence platforms, but not Limited to this.
本申请实施例的通信环境安全预警方法,可以由服务器实现,也可以由终端和服务器共同实现。The communication environment security early warning method in the embodiment of the present application can be implemented by the server, or can be implemented by the terminal and the server together.
下面以终端和服务器共同实现该通信环境安全预警方法为例,对该方法进行说明。The method will be described below by taking the terminal and the server to jointly implement the communication environment security early warning method as an example.
如图1所示,本申请实施例提供的通信环境安全预警系统包括终端10和服务器20等;终端10与服务器20之间通过网络连接,比如,通过有线或无线网络连接等,其中,终端10可以作为用户发起通信以及进行通信的通信发起端存在。As shown in Figure 1, the communication environment security early warning system provided by the embodiment of the present application includes a terminal 10 and a server 20; the terminal 10 and the server 20 are connected through a network, such as a wired or wireless network connection, where the terminal 10 It can exist as a communication initiator for users to initiate communication and conduct communication.
其中,终端10可以为用户用于通信的通信发起端,用于向服务器20发送当前的第一安全方法应用信息。The terminal 10 may be a communication initiator used by the user for communication, and is used to send the current first security method application information to the server 20 .
服务器20,可以用于获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息,根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数,和/或根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数,基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果,若所述通信环境安全评估结果指示所述当前通信环境不安全,向终端10发送通信环境安全提示消息。 The server 20 may be used to obtain the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end, and calculate the communication of the communication end based on the first security method application information. end security factor, and/or calculate the cloud server security factor of the cloud server based on the second security method application information, and determine the current security factor based on at least one of the communication end security factor and the cloud server security factor. The communication environment security assessment result of the communication environment. If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is sent to the terminal 10 .
终端10可以显示通信环境安全提示消息。The terminal 10 may display a communication environment security prompt message.
可以理解的是,由服务器20执行的通信环境安全评估的步骤,也可以由终端10执行,本申请实施例对此不做限定。It can be understood that the steps of communication environment security assessment performed by the server 20 can also be performed by the terminal 10, which is not limited in the embodiment of the present application.
以下分别进行详细说明。需要说明的是,以下实施例的描述顺序不作为对实施例优选顺序的限定。Each is explained in detail below. It should be noted that the order of description of the following embodiments does not limit the preferred order of the embodiments.
本申请实施例将从通信环境安全预警装置的角度进行描述,该通信环境安全预警装置具体可以集成在服务器或终端中。The embodiments of this application will be described from the perspective of a communication environment security early warning device. The communication environment security early warning device may be integrated in a server or a terminal.
如图2所示,本实施例的通信环境安全预警方法的具体流程可以如下:As shown in Figure 2, the specific process of the communication environment security early warning method in this embodiment can be as follows:
201、获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息。201. Obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal.
其中,通信端为用户用于通信的终端。具体的,通信端可以包括通信发起用户用于发起通信的通信发起端,以及通信接收用户用于接收通信的通信接收端。例如通信发起端和通信接收端可以是用户使用的智能手机、智能手表、电脑等。Among them, the communication terminal is the terminal used by the user for communication. Specifically, the communication end may include a communication initiating end used by the communication initiating user to initiate communication, and a communication receiving end used by the communication receiving user to receive communication. For example, the communication initiating end and the communication receiving end can be smartphones, smart watches, computers, etc. used by users.
其中,第一安全方法应用信息可以指示通信发起端和/或通信接收端对应的安全方法的应用情况。例如,第一安全方法应用信息中可以包括已应用的安全方法的相关信息,比如方法名称、预设的方法序号等。或者,第一安全方法应用信息中可以包括未应用的安全方法的相关信息等。The first security method application information may indicate the application of the security method corresponding to the communication initiating end and/or the communication receiving end. For example, the first security method application information may include information related to the applied security method, such as method name, preset method serial number, etc. Alternatively, the first security method application information may include information related to unapplied security methods, etc.
具体的,获取第一安全方法应用信息的时刻可以是检测到通信应用启动的时刻,即若检测到通信应用启动,获取通信应用所在的通信发起端和/或通信接收端当前的第一安全方法应用信息。Specifically, the time to obtain the first security method application information may be the time when the communication application is detected to be started, that is, if the communication application is detected to be started, the current first security method of the communication initiating end and/or the communication receiving end where the communication application is located is obtained. Application information.
或者,也可以是用户发起通信的时刻,即步骤201可以包括:Alternatively, it can also be the moment when the user initiates communication, that is, step 201 can include:
响应于用户发起通信的操作,生成通信环境安全评估请求;In response to a user-initiated communication operation, generate a communication environment security assessment request;
基于所述通信环境安全评估请求,获取通信发起端当前的发起端安全方法应用信息作为通信端当前的第一安全方法应用信息。Based on the communication environment security assessment request, the current initiating end security method application information of the communication initiating end is obtained as the current first security method application information of the communication end.
或者,还可以是用户发起通信的时刻,即步骤201可以包括:Alternatively, it may also be the moment when the user initiates communication, that is, step 201 may include:
响应于用户接受通信的操作,生成通信环境安全评估请求;In response to the user's operation of accepting the communication, generate a communication environment security assessment request;
基于所述通信环境安全评估请求,获取通信接收端当前的接收端安全方法应用信息作为通信端当前的第一安全方法应用信息。Based on the communication environment security assessment request, the current receiving end security method application information of the communication receiving end is obtained as the current first security method application information of the communication end.
在一些可选的示例中,可以分别获取发起端安全方法应用信息以及接收端安全方法应用信息之后,进行信息融合,将融合结果作为通信端当前的第一安全方法应用信息。In some optional examples, after obtaining the security method application information of the initiating end and the security method application information of the receiving end respectively, the information can be fused, and the fusion result can be used as the current first security method application information of the communication end.
具体的,信息融合的方式可以是进行相加或者加权计算等等,如果采用加权计算的方式,通信发起端和通信接收端对应的权重可以由技术人员根据实际需求进行计算,本申请实施例对此不做限定。Specifically, the information fusion method can be addition or weighted calculation, etc. If the weighted calculation method is used, the corresponding weights of the communication initiator and the communication receiver can be calculated by technicians according to actual needs. The embodiments of this application are This is not limited.
可以理解的是,获取第一安全方法应用信息的电子设备可以是终端,也就是说可以由通 信发起端和/或通信接收端自身收集得到第一安全方法应用信息,或者,也可以由服务器获取。具体的,服务器可以是接收通信发起端和/或通信接收端发送的第一安全方法应用信息。It can be understood that the electronic device that obtains the application information of the first security method may be a terminal, that is to say, it may be The communication initiating end and/or the communication receiving end collect the first security method application information themselves, or it can also be obtained by the server. Specifically, the server may be configured to receive the first security method application information sent by the communication initiating end and/or the communication receiving end.
在实际应用过程中,如果用户采用云通信的方式,例如远程会议、视频通话等方式,可以对云通信过程中的云服务器也进行安全评估。此时,步骤“获取所述通信端对应的云服务器的第二安全方法应用信息”之前具体可以包括:In actual applications, if users use cloud communication methods, such as remote meetings, video calls, etc., the security assessment of the cloud server during the cloud communication process can also be carried out. At this time, the step "obtaining the second security method application information of the cloud server corresponding to the communication terminal" may specifically include:
响应于用户发起云通信的操作,确定所述通信端对应的云服务器;In response to the user initiating a cloud communication operation, determine the cloud server corresponding to the communication end;
获取所述云服务器的第二安全方法应用信息。Obtain the second security method application information of the cloud server.
202、根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数。202. Calculate the communication end security factor of the communication end based on the first security method application information; and/or calculate the cloud server security factor of the cloud server based on the second security method application information.
其中,通信端安全系数可以用于表示通信端的安全程度。具体的,如果第一安全方法应用信息仅根据通信发起端的发起端安全方法应用信息得到,则通信端安全系数可以用于表示通信发起端的安全程度;如果第一安全方法应用信息仅根据通信接收端的接收端安全方法应用信息得到,则通信端安全系数可以用于表示通信接收端的安全程度;如果第一安全方法应用信息根据发起端安全方法应用信息以及接收端安全方法应用信息得到,则通信端安全系数可以用于表示通信发起端和通信接收端的安全程度;Among them, the communication end security factor can be used to indicate the security level of the communication end. Specifically, if the first security method application information is obtained only based on the initiating end security method application information of the communication initiating end, the communication end security coefficient can be used to represent the security level of the communication initiating end; if the first security method application information is only obtained based on the communication receiving end's If the first security method application information is obtained based on the initiating end security method application information and the receiving end security method application information, then the communication end security factor can be used to represent the security level of the communication receiving end. The coefficient can be used to indicate the security level of the communication initiator and communication receiver;
在一些可选的示例中,可以通过判断通信端当前有哪些可以应用但未应用的安全方法,确定未应用这些安全方法可能存在的风险的危险程度,以及可能存在的风险可能被恶意利用的程度。也就是说,步骤“根据所述第一安全方法应用信息,计算所述通信端的通信发起端安全系数”,具体可以包括:In some optional examples, you can determine the degree of danger that may exist if these security methods are not applied, and the degree to which the risks that may exist may be maliciously exploited by determining which security methods are currently available but not applied at the communication end. . That is to say, the step "calculate the communication initiating end security factor of the communication end based on the first security method application information" may specifically include:
根据所述第一安全方法应用信息,从所述通信端可应用的安全方法中确定未应用的安全方法;According to the first security method application information, determine an unapplied security method from the security methods applicable to the communication terminal;
获取所述未应用的安全方法对应的第一安全风险值以及第一风险利用值;Obtain the first security risk value and the first risk utilization value corresponding to the unapplied security method;
基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信端安全系数。Based on the first security risk value and the first risk utilization value, a communication terminal security factor of the communication terminal is calculated.
在实际应用过程中,通信端可应用的安全方法可以有至少一种,比如,通信端可应用的安全方法可以包括但不限于完整性校验、本地存储加密、系统补丁、不能连接无口令/弱网络等等。In the actual application process, there can be at least one security method that can be applied by the communication end. For example, the security methods that can be applied by the communication end can include but are not limited to integrity check, local storage encryption, system patching, inability to connect without password/ Weak network etc.
未应用的安全方法也可以有至少一种,可以理解的是,不同的安全方法如果未应用,对通信端带来的风险一般也是不同的。There may be at least one unapplied security method. It is understandable that if different security methods are not applied, the risks they bring to the communication end are generally different.
在本申请实施例中,各安全方法的第一安全风险值可以分别用于描述对应的安全方法若为被应用可能带来的风险影响,各安全方法的第一风险利用值可以分别用于描述对应的安全方法若为被应用可能带来的风险的利用容易度。In the embodiment of this application, the first security risk value of each security method can be used to describe the possible risk impact if the corresponding security method is applied, and the first risk utilization value of each security method can be used to describe The ease of use of the risks that may arise if the corresponding security method is applied.
具体的,在计算通信端的安全系数时,可以直接综合各未应用的安全方法的第一安全风险值和第一风险利用值计算各未应用的安全方法带来的风险,将该风险作为通信端的安全系数。 Specifically, when calculating the safety factor of the communication end, the first security risk value and the first risk utilization value of each unapplied security method can be directly integrated to calculate the risk brought by each unapplied security method, and this risk can be used as the communication end. Safety factor.
或者,还可以将已应用的安全方法带来的安全影响加入到安全系数的计算过程中。即,步骤“基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信端安全系数”,包括:Alternatively, the safety impact of the applied safety methods can be added to the calculation of the safety factor. That is, the step "calculate the communication terminal security factor of the communication terminal based on the first security risk value and the first risk utilization value" includes:
基于所述第一安全风险值和所述第一风险利用值,计算所述通信端各所述未应用的安全方法对应的风险系数;Based on the first security risk value and the first risk utilization value, calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end;
解析所述第一安全方法应用信息,确定所述通信端已应用的安全方法;Parse the first security method application information to determine the security method applied by the communication end;
根据所述已应用的安全方法和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。Calculate the communication end security factor of the communication end based on the risk coefficient corresponding to the applied security method and each of the unapplied security methods.
例如,某个安全方法未应用带来的风险可以用风险系数进行表示,风险系数R=D*E,0<=D<=1,0<=E<=1。其中,D为该安全方法的第一风险利用值,E为该安全方法的第一安全风险值。For example, the risk caused by not applying a certain safety method can be expressed by a risk coefficient, risk coefficient R=D*E, 0<=D<=1, 0<=E<=1. Among them, D is the first risk utilization value of the security method, and E is the first security risk value of the security method.
在一些可选的实施例中,计算安全系数时,可以直接根据已应用的安全方法的数量进行计算,例如,通信发起端安全系数N表示通信端的已应用的安全方法的数量,n表示未应用的安全方法的数量。In some optional embodiments, when calculating the security factor, the calculation can be directly based on the number of applied security methods, for example, the security factor of the communication initiator N represents the number of applied security methods on the communication side, and n represents the number of unapplied security methods.
在另一些可选的实施例中,可以确定各已应用的安全方法的安全影响值,根据所述已应用的安全方法的安全影响值和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。In some other optional embodiments, the security impact value of each applied security method may be determined, and based on the security impact value of the applied security method and the risk coefficient corresponding to each of the unapplied security methods, the calculated Describe the communication end security factor of the communication end.
其中,云服务器安全系数的计算方法与前述通信发送端安全系数的计算方法相似,本申请实施例对此不再赘述。The calculation method of the security factor of the cloud server is similar to the calculation method of the security factor of the communication sending end, which will not be described in detail in the embodiments of this application.
具体的,云服务器的可应用的安全方法可以包括但不限于系统补丁、安装并开启防火墙、关闭不必要的服务和端口、定期备份、监测系统日志、本地存储加密、身份认证、访问控制等等。Specifically, applicable security methods for cloud servers can include but are not limited to system patches, installing and opening firewalls, closing unnecessary services and ports, regular backups, monitoring system logs, local storage encryption, identity authentication, access control, etc. .
203、基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果。203. Based on at least one of the communication end security factor and the cloud server security factor, determine the communication environment security assessment result of the current communication environment.
在本申请实施例中,可以当通信端安全系数大于预设的安全阈值时,确定当前通信环境的通信环境安全评估结果为通信环境安全;当通信端安全系数不大于预设的安全阈值时,确定当前通信环境的通信环境安全评估结果为通信环境不安全。In the embodiment of the present application, when the communication end security factor is greater than the preset security threshold, the communication environment security assessment result of the current communication environment can be determined to be the communication environment safety; when the communication end security factor is not greater than the preset security threshold, It is determined that the communication environment security assessment result of the current communication environment is that the communication environment is unsafe.
204、若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。204. If the communication environment security assessment result indicates that the current communication environment is unsafe, display a communication environment security prompt message.
其中,通信环境安全提示消息中可以只包括指示当前通信环境不安全的内容,或者,通信环境安全提示消息中还可以包括选择控件以供用户选择是否继续使用通信应用或者是否继续通信等。The communication environment security prompt message may only include content indicating that the current communication environment is unsafe, or the communication environment security prompt message may also include a selection control for the user to choose whether to continue using the communication application or whether to continue communicating, etc.
在一些可选的实施例中,如图3所示,当用户选择进行通信时,可以根据通信发起用户的通信发起操作确定通信接收端以及通信发起端和通信接收端之间的通信网络,可以对通信 网络也进行通信安全评估,便于用户了解整体通信环境的安全性。也就是说,步骤“显示通信环境安全提示消息”之后,本申请实施例提供的通信环境安全预警方法还可以包括:In some optional embodiments, as shown in Figure 3, when the user chooses to communicate, the communication receiving end and the communication network between the communication initiating end and the communication receiving end can be determined according to the communication initiating operation of the communication initiating user. communication The network also conducts communication security assessment to facilitate users to understand the security of the overall communication environment. That is to say, after the step "display communication environment security prompt message", the communication environment security early warning method provided by the embodiment of the present application may also include:
响应于用户发起通信的操作,确定所述通信端对应的通信网络;In response to the user's operation of initiating communication, determine the communication network corresponding to the communication terminal;
获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数;Obtain the third security method application information of the communication network, and calculate the network security coefficient of the communication network based on the third security method application information;
获取所述通信端当前的第一安全方法应用信息以及所述云服务器当前的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the current second security method application information of the cloud server;
根据所述第一安全方法应用信息和所述第二安全方法应用信息,计算所述通信端的通信端安全系数和所述云服务器的云服务器安全系数;Calculate the communication terminal security factor of the communication terminal and the cloud server security factor of the cloud server according to the first security method application information and the second security method application information;
根据所述通信端安全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果;Determine the communication environment security assessment result of the current communication environment according to the communication end security factor, the network security factor and the cloud server security factor;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
其中,网络安全系数的计算方法与前述通信发送端安全系数的计算方法相似,本申请实施例对此不再赘述。The calculation method of the network security factor is similar to the calculation method of the communication sending end security factor, which will not be described in detail in the embodiments of this application.
具体的,通信网络的可应用的安全方法可以包括但不限于安全网络协议、传输内容加密、PKI加密等等。通信接收端的可应用的安全方法可以与通信发起端的相同或者不同,本申请实施例对此不作限定。Specifically, applicable security methods of the communication network may include but are not limited to secure network protocols, transmission content encryption, PKI encryption, and so on. The applicable security methods of the communication receiving end may be the same as or different from those of the communication initiating end, and this is not limited in the embodiments of the present application.
对应的,步骤“基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果”,具体可以包括:Correspondingly, the step "determine the communication environment security assessment result of the current communication environment based on at least one of the communication terminal security factor and the cloud server security factor" may specifically include:
根据所述通信端安全系数、所述云服务器安全系数和所述网络安全系数确定当前通信环境的通信环境安全评估结果。The communication environment security assessment result of the current communication environment is determined according to the communication end security factor, the cloud server security factor and the network security factor.
具体的,可以在所述通信发起端安全系数、所述云服务器安全系数、所述网络安全系数和所述通信接收端安全系数中的任意一个不大于预设的安全阈值时,确定当前通信环境的通信环境安全评估结果为不安全。Specifically, the current communication environment can be determined when any one of the communication initiating end security factor, the cloud server security factor, the network security factor and the communication receiving end security factor is not greater than a preset security threshold. The communication environment security assessment result is unsafe.
或者,如图4所示,步骤“根据所述通信端安全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果”之前,本申请实施例提供的通信环境安全预警方法还可以包括:Or, as shown in Figure 4, before the step "determine the communication environment security assessment result of the current communication environment based on the communication end security factor, the network security factor and the cloud server security factor", the embodiment of the present application provides Communication environment security early warning methods can also include:
获取所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重;Obtain the security assessment weights corresponding to the communication terminal, the cloud server and the communication network respectively;
步骤“根据所述通信端安全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果”,包括:The step "determine the communication environment security assessment result of the current communication environment based on the communication end security factor, the network security factor and the cloud server security factor" includes:
根据所述通信端安全系数、所述网络安全系数、所述云服务器安全系数以及所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重,计算当前通信环境的通信环境安全评估值; Calculate the communication environment security of the current communication environment based on the communication end security factor, the network security factor, the cloud server security factor and the security assessment weights corresponding to the communication end, the cloud server and the communication network respectively. The assessed value;
基于所述通信环境安全评估值,确定当前通信环境的通信环境安全评估结果。Based on the communication environment security assessment value, the communication environment security assessment result of the current communication environment is determined.
例如,设通信端(通信发起端和通信接收端)的安全评估权重为P1、安全系数为C1;设云服务器的安全评估权重为P2、安全系数为C2;设通信网络的安全评估权重占比为P3、安全系数为C3。则通信环境安全评估值S可通过如下公式计算:For example, let the security assessment weight of the communication end (communication initiator and communication receiver) be P1 and the security coefficient be C1; let the security assessment weight of the cloud server be P2 and the security coefficient be C2; let the security assessment weight ratio of the communication network be is P3 and the safety factor is C3. Then the communication environment security assessment value S can be calculated by the following formula:
S=P1*C1+P2*C2+P3*C3S=P1*C1+P2*C2+P3*C3
比如,可以将整个通信系统分为三个部分,其中,云端机房(云服务器)作为这个系统的核心,不仅关系着视频通话的正常进行,还会影响到视频通话的隐私内容安全,对云端安全进行评估的安全评估权重可以占比为45%。For example, the entire communication system can be divided into three parts. Among them, the cloud computer room (cloud server), as the core of this system, is not only related to the normal progress of video calls, but also affects the privacy content security of video calls and cloud security. The security assessment weight for the assessment can be 45%.
通信网络(IP网)作为云端和用户传输数据的纽带,如果不做好安全措施,可能会导致视频通话内容被监听的风险,对网络安全进行评估的安全评估权重占比可以为35%。The communication network (IP network) serves as the link between the cloud and users to transmit data. If security measures are not taken, it may lead to the risk of the video call content being monitored. The weight of the security assessment for network security assessment can be 35%.
通信发起端和通信接收端(用户端)的终端系统如果存在漏洞等安全问题,可能也会造成视频通话内容等通信内容被盗取的风险,对终端安全进行评估的安全评估权重占比可以为30%。If there are security issues such as vulnerabilities in the terminal systems of the communication initiator and the communication receiving end (user), it may also cause the risk of video call content and other communication content being stolen. The security assessment weight ratio for evaluating terminal security can be 30%.
在一些实施例中,本申请实施例提供的通信环境安全预警方法还可以包括:In some embodiments, the communication environment security early warning method provided by the embodiments of the present application may also include:
当所述通信端处于通信过程中时,计算当前时刻与最近一次确定当前通信环境的通信环境安全评估结果时刻之间的时间间隔;When the communication terminal is in the communication process, calculate the time interval between the current moment and the latest moment when the communication environment security assessment result of the current communication environment is determined;
当所述时间间隔大于预设的检测时间间隔,执行所述获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数的步骤,直至所述通信过程结束。When the time interval is greater than the preset detection time interval, perform the steps of obtaining the third security method application information of the communication network, and calculating the network security coefficient of the communication network based on the third security method application information. , until the communication process ends.
也就是说,如果用户持续进行通信,可以定时重复对通信系统中的各部分进行安全系数计算,评估当前通信环境的通信环境安全,实时提示用户通信安全情况,直到结束通话。That is to say, if the user continues to communicate, the safety factor calculation of each part of the communication system can be repeated regularly, the communication environment security of the current communication environment can be evaluated, and the user can be reminded of the communication security situation in real time until the call is ended.
在一些可选的实施例中,为了便于用户了解当前通信环境的具体安全程度,可以根据通信环境安全评估结果划分相应的安全级别,步骤“显示通信环境安全提示消息”之前,本申请实施例提供的通信环境安全预警方法还可以包括:In some optional embodiments, in order to facilitate the user to understand the specific security level of the current communication environment, corresponding security levels can be divided according to the communication environment security assessment results. Before the step "display the communication environment security prompt message", the embodiment of the present application provides Communication environment security early warning methods can also include:
根据所述通信环境安全评估结果,确定所述当前通信环境的通信环境安全级别;Determine the communication environment security level of the current communication environment according to the communication environment security assessment result;
相应的,步骤“显示通信环境安全提示消息”,具体可以包括:Correspondingly, the step "Display communication environment security prompt message" may specifically include:
显示通信环境安全提示信息,所述通信环境安全提示信息包括所述通信环境安全级别。Display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
由上可知,本申请实施例可以获取通信发起端当前的第一安全方法应用信息,根据所述第一安全方法应用信息,计算所述通信发起端的通信发起端安全系数,基于所述通信发起端安全系数,确定当前通信环境的通信环境安全评估结果,若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息;由于在本申请实施例中,根据通信发起端的第一安全方法应用信息,对通信发起端的安全情况进行了评估,并在评估结果指示通信环境不安全时显示了提示消息,因此可以对当前通信过程中的通信环境进行安全性评估,根据评估结果对用户进行提醒,以便于用户把控在通信过程中通信内容的隐私程度。 It can be seen from the above that the embodiment of the present application can obtain the current first security method application information of the communication initiator, and calculate the communication initiator security factor of the communication initiator based on the first security method application information. The safety factor determines the communication environment security assessment result of the current communication environment. If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed; because in the embodiment of the present application, according to the communication initiating end The first security method applies information to evaluate the security situation of the communication initiator, and displays a prompt message when the evaluation result indicates that the communication environment is unsafe. Therefore, the security of the communication environment during the current communication process can be evaluated. According to the evaluation result Remind users so that they can control the privacy of communication content during the communication process.
为了更好地实施以上方法,相应的,本申请实施例还提供一种通信环境安全预警装置。In order to better implement the above method, correspondingly, embodiments of the present application also provide a communication environment security early warning device.
参考图5,该装置包括:Referring to Figure 5, the device includes:
信息获取单元501,用于获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;The information acquisition unit 501 is used to obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
系数计算单元502,用于根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,Coefficient calculation unit 502, configured to calculate the communication terminal security coefficient of the communication terminal according to the first security method application information; and/or,
根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;Calculate the cloud server security factor of the cloud server according to the second security method application information;
安全评估单元503,用于基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;The security assessment unit 503 is configured to determine the communication environment security assessment result of the current communication environment based on at least one of the communication end security factor and the cloud server security factor;
消息提示单元504,用于若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。The message prompt unit 504 is configured to display a communication environment security prompt message if the communication environment security assessment result indicates that the current communication environment is unsafe.
可选的,本申请实施例提供的通信环境安全预警装置还包括融合评估单元505,用于响应于用户发起通信的操作,确定所述通信端对应的通信网络;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a fusion evaluation unit 505, configured to determine the communication network corresponding to the communication end in response to the user's operation of initiating communication;
获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数;Obtain the third security method application information of the communication network, and calculate the network security coefficient of the communication network based on the third security method application information;
获取所述通信端当前的第一安全方法应用信息以及所述云服务器当前的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the current second security method application information of the cloud server;
根据所述第一安全方法应用信息和所述第二安全方法应用信息,计算所述通信端的通信端安全系数和所述云服务器的云服务器安全系数;Calculate the communication terminal security factor of the communication terminal and the cloud server security factor of the cloud server according to the first security method application information and the second security method application information;
根据所述通信端安全系数、所述网络安全系数和所述通信接收端安全系数,确定当前通信环境的通信环境安全评估结果;Determine the communication environment security assessment result of the current communication environment according to the communication end security factor, the network security factor and the communication receiving end security factor;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
可选的,所述系数计算单元502,用于根据所述第一安全方法应用信息,从所述通信端可应用的安全方法中确定未应用的安全方法;Optionally, the coefficient calculation unit 502 is configured to determine unapplied security methods from the security methods applicable to the communication end according to the first security method application information;
获取所述未应用的安全方法对应的第一安全风险值以及第一风险利用值;Obtain the first security risk value and the first risk utilization value corresponding to the unapplied security method;
基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信发起端安全系数。Based on the first security risk value and the first risk utilization value, the communication initiating end security factor of the communication end is calculated.
可选的,所述系数计算单元502,用于基于所述第一安全风险值和所述第一风险利用值,计算所述通信端各所述未应用的安全方法对应的风险系数;Optionally, the coefficient calculation unit 502 is configured to calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end based on the first security risk value and the first risk utilization value;
解析所述第一安全方法应用信息,确定所述通信端已应用的安全方法;Parse the first security method application information to determine the security method applied by the communication end;
根据所述已应用的安全方法和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。Calculate the communication end security factor of the communication end based on the risk coefficient corresponding to the applied security method and each of the unapplied security methods.
可选的,本申请实施例提供的通信环境安全预警装置还包括定时评估单元506,用于当 所述通信端处于通信过程中时,计算当前时刻与最近一次确定当前通信环境的通信环境安全评估结果时刻之间的时间间隔;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a timing evaluation unit 506 for When the communication terminal is in the communication process, calculate the time interval between the current moment and the latest moment when the communication environment security assessment result of the current communication environment is determined;
当所述时间间隔大于预设的检测时间间隔,执行所述获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数的步骤,直至所述通信过程结束。When the time interval is greater than the preset detection time interval, perform the steps of obtaining the third security method application information of the communication network, and calculating the network security coefficient of the communication network based on the third security method application information. , until the communication process ends.
可选的,如图6所示,本申请实施例提供的通信环境安全预警装置还包括权重获取单元507,用于获取所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重;Optionally, as shown in Figure 6, the communication environment security early warning device provided by the embodiment of the present application also includes a weight acquisition unit 507, which is used to obtain the security assessments corresponding to the communication terminal, the cloud server, and the communication network. Weights;
所述融合评估单元505,用于根据所述通信端安全系数、所述网络安全系数、所述云服务器安全系数以及所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重,计算当前通信环境的通信环境安全评估值;The fusion evaluation unit 505 is configured to perform security evaluation weights based on the communication end security factor, the network security factor, the cloud server security factor, and the security assessment weights corresponding to the communication end, the cloud server, and the communication network. , calculate the communication environment security assessment value of the current communication environment;
基于所述通信环境安全评估值,确定当前通信环境的通信环境安全评估结果。Based on the communication environment security assessment value, the communication environment security assessment result of the current communication environment is determined.
可选的,本申请实施例提供的通信环境安全预警装置还包括安全级别确定单元508,用于根据所述通信环境安全评估结果,确定所述当前通信环境的通信环境安全级别;Optionally, the communication environment security early warning device provided by the embodiment of the present application also includes a security level determination unit 508, configured to determine the communication environment security level of the current communication environment based on the communication environment security assessment result;
所述消息提示单元,用于显示通信环境安全提示信息,所述通信环境安全提示信息包括所述通信环境安全级别。The message prompt unit is used to display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
由上可知,通过通信环境安全预警装置,可以获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息,根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数,和/或根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数,基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果,若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息;由于在本申请实施例中,根据通信端的第一安全方法应用信息和云服务器的第二安全方法应用信息,可以对通信端和/或云服务器的安全情况进行评估,并在评估结果指示通信环境不安全时显示提示消息,因此可以对当前通信过程中的通信环境进行安全性评估,根据评估结果对用户进行提醒,以便于用户把控在通信过程中通信内容的隐私程度。It can be seen from the above that through the communication environment security early warning device, the current first security method application information of the communication end and the second security method application information of the cloud server corresponding to the communication end can be obtained. According to the first security method application information, Calculate the communication end security factor of the communication end, and/or calculate the cloud server security factor of the cloud server based on the second security method application information, based on the communication end security factor and the cloud server security factor. At least one method is to determine the communication environment security assessment result of the current communication environment. If the communication environment security assessment result indicates that the current communication environment is unsafe, display a communication environment security prompt message; because in the embodiment of the present application, according to the communication end The first security method application information and the second security method application information of the cloud server can evaluate the security situation of the communication terminal and/or the cloud server, and display a prompt message when the evaluation result indicates that the communication environment is unsafe, so the current The communication environment during the communication process is evaluated for security, and the user is reminded based on the evaluation results so that the user can control the privacy of the communication content during the communication process.
此外,本申请实施例还提供一种电子设备,该电子设备可以为终端或者服务器等等,如图7所示,其示出了本申请实施例所涉及的电子设备的结构示意图,具体来讲:In addition, the embodiment of the present application also provides an electronic device, which may be a terminal or a server, etc., as shown in Figure 7, which shows a schematic structural diagram of the electronic device involved in the embodiment of the present application. Specifically, :
该电子设备可以包括射频(RF,Radio Frequency)电路701、包括有一个或一个以上计算机可读存储介质的存储器702、输入单元703、显示单元704、传感器705、音频电路706、无线保真(WiFi,Wireless Fidelity)模块707、包括有一个或者一个以上处理核心的处理器708、以及电源709等部件。本领域技术人员可以理解,图7中示出的电子设备结构并不构成对电子设备的限定,可以包括比图示更多或更少的部件,或者组合某些部件,或者不同的部件布置。其中:The electronic device may include a radio frequency (RF, Radio Frequency) circuit 701, a memory 702 including one or more computer-readable storage media, an input unit 703, a display unit 704, a sensor 705, an audio circuit 706, a wireless fidelity (WiFi) , Wireless Fidelity) module 707, including a processor 708 with one or more processing cores, a power supply 709 and other components. Those skilled in the art can understand that the structure of the electronic device shown in FIG. 7 does not constitute a limitation of the electronic device, and may include more or fewer components than shown in the figure, or combine certain components, or arrange different components. in:
RF电路701可用于收发信息或通话过程中,信号的接收和发送,特别地,将基站的下 行信息接收后,交由一个或者一个以上处理器708处理;另外,将涉及上行的数据发送给基站。通常,RF电路701包括但不限于天线、至少一个放大器、调谐器、一个或多个振荡器、用户身份模块(SIM,Subscriber Identity Module)卡、收发信机、耦合器、低噪声放大器(LNA,Low Noise Amplifier)、双工器等。此外,RF电路701还可以通过无线通信与网络和其他设备通信。无线通信可以使用任一通信标准或协议,包括但不限于全球移动通讯系统(GSM,Global System of Mobile communication)、通用分组无线服务(GPRS,General Packet Radio Service)、码分多址(CDMA,Code Division Multiple Access)、宽带码分多址(WCDMA,Wideband Code Division Multiple Access)、长期演进(LTE,Long Term Evolution)、电子邮件、短消息服务(SMS,Short Messaging Service)等。The RF circuit 701 can be used to receive and send signals during sending and receiving information or during calls. In particular, it can be used to transmit and receive signals from the base station. After the uplink information is received, it is handed over to one or more processors 708 for processing; in addition, uplink-related data is sent to the base station. Typically, the RF circuit 701 includes, but is not limited to, an antenna, at least one amplifier, a tuner, one or more oscillators, a Subscriber Identity Module (SIM) card, a transceiver, a coupler, a low noise amplifier (LNA, Low Noise Amplifier), duplexer, etc. In addition, RF circuit 701 can also communicate with networks and other devices through wireless communications. Wireless communication can use any communication standard or protocol, including but not limited to Global System of Mobile communication (GSM, Global System of Mobile communication), General Packet Radio Service (GPRS, General Packet Radio Service), Code Division Multiple Access (CDMA, Code Division Multiple Access), Wideband Code Division Multiple Access (WCDMA), Long Term Evolution (LTE), email, Short Messaging Service (SMS), etc.
存储器702可用于存储软件程序以及模块,处理器708通过运行存储在存储器702的软件程序以及模块,从而执行各种功能应用以及数据处理。存储器702可主要包括存储程序区和存储数据区,其中,存储程序区可存储操作系统、至少一个功能所需的应用程序(比如声音播放功能、图像播放功能等)等;存储数据区可存储根据电子设备的使用所创建的数据(比如音频数据、电话本等)等。此外,存储器702可以包括高速随机存取存储器,还可以包括非易失性存储器,例如至少一个磁盘存储器件、闪存器件、或其他易失性固态存储器件。相应地,存储器702还可以包括存储器控制器,以提供处理器708和输入单元703对存储器702的访问。The memory 702 can be used to store software programs and modules. The processor 708 executes various functional applications and data processing by running the software programs and modules stored in the memory 702 . The memory 702 may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function (such as a sound playback function, an image playback function, etc.), etc.; the storage data area may store a program based on Data created by the use of electronic devices (such as audio data, phone books, etc.), etc. In addition, memory 702 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid-state storage device. Accordingly, the memory 702 may also include a memory controller to provide the processor 708 and the input unit 703 with access to the memory 702 .
输入单元703可用于接收输入的数字或字符信息,以及产生与用户设置以及功能控制有关的键盘、鼠标、操作杆、光学或者轨迹球信号输入。具体地,在一个具体的实施例中,输入单元703可包括触敏表面以及其他输入设备。触敏表面,也称为触摸显示屏或者触控板,可收集用户在其上或附近的触摸操作(比如用户使用手指、触笔等任何适合的物体或附件在触敏表面上或在触敏表面附近的操作),并根据预先设定的程式驱动相应的连接装置。可选的,触敏表面可包括触摸检测装置和触摸控制器两个部分。其中,触摸检测装置检测用户的触摸方位,并检测触摸操作带来的信号,将信号传送给触摸控制器;触摸控制器从触摸检测装置上接收触摸信息,并将它转换成触点坐标,再送给处理器708,并能接收处理器708发来的命令并加以执行。此外,可以采用电阻式、电容式、红外线以及表面声波等多种类型实现触敏表面。除了触敏表面,输入单元703还可以包括其他输入设备。具体地,其他输入设备可以包括但不限于物理键盘、功能键(比如音量控制按键、开关按键等)、轨迹球、鼠标、操作杆等中的一种或多种。The input unit 703 may be used to receive input numeric or character information, and to generate keyboard, mouse, joystick, optical or trackball signal input related to user settings and function control. Specifically, in a specific embodiment, the input unit 703 may include a touch-sensitive surface as well as other input devices. A touch-sensitive surface, also known as a touch display or trackpad, can collect the user's touch operations on or near it (such as the user using a finger, stylus, or any suitable object or accessory on or near the touch-sensitive surface). operations near the surface), and drive the corresponding connection device according to the preset program. Optionally, the touch-sensitive surface may include two parts: a touch detection device and a touch controller. Among them, the touch detection device detects the user's touch orientation, detects the signal brought by the touch operation, and transmits the signal to the touch controller; the touch controller receives the touch information from the touch detection device, converts it into contact point coordinates, and then sends it to the touch controller. to the processor 708, and can receive commands sent by the processor 708 and execute them. In addition, touch-sensitive surfaces can be implemented using a variety of types including resistive, capacitive, infrared, and surface acoustic waves. In addition to touch-sensitive surfaces, the input unit 703 may also include other input devices. Specifically, other input devices may include, but are not limited to, one or more of a physical keyboard, function keys (such as volume control keys, switch keys, etc.), trackball, mouse, joystick, etc.
显示单元704可用于显示由用户输入的信息或提供给用户的信息以及电子设备的各种图形用户接口,这些图形用户接口可以由图形、文本、图标、视频和其任意组合来构成。显示单元704可包括显示面板,可选的,可以采用液晶显示器(LCD,Liquid Crystal Display)、有机发光二极管(OLED,Organic Light-Emitting Diode)等形式来配置显示面板。进一步的,触敏表面可覆盖显示面板,当触敏表面检测到在其上或附近的触摸操作后,传送给处理器 708以确定触摸事件的类型,随后处理器708根据触摸事件的类型在显示面板上提供相应的视觉输出。虽然在图7中,触敏表面与显示面板是作为两个独立的部件来实现输入和输入功能,但是在某些实施例中,可以将触敏表面与显示面板集成而实现输入和输出功能。The display unit 704 may be used to display information input by the user or information provided to the user as well as various graphical user interfaces of the electronic device. These graphical user interfaces may be composed of graphics, text, icons, videos, and any combination thereof. The display unit 704 may include a display panel, which may optionally be configured in the form of a liquid crystal display (LCD), an organic light-emitting diode (OLED), or the like. Further, the touch-sensitive surface can cover the display panel, and when the touch-sensitive surface detects a touch operation on or near it, the information is sent to the processor. 708 to determine the type of touch event, and then the processor 708 provides corresponding visual output on the display panel according to the type of touch event. Although in FIG. 7 , the touch-sensitive surface and the display panel are used as two independent components to implement the input and input functions, in some embodiments, the touch-sensitive surface and the display panel can be integrated to implement the input and output functions.
电子设备还可包括至少一种传感器705,比如光传感器、运动传感器以及其他传感器。具体地,光传感器可包括环境光传感器及接近传感器,其中,环境光传感器可根据环境光线的明暗来调节显示面板的亮度,接近传感器可在电子设备移动到耳边时,关闭显示面板和/或背光。作为运动传感器的一种,重力加速度传感器可检测各个方向上(一般为三轴)加速度的大小,静止时可检测出重力的大小及方向,可用于识别手机姿态的应用(比如横竖屏切换、相关游戏、磁力计姿态校准)、振动识别相关功能(比如计步器、敲击)等;至于电子设备还可配置的陀螺仪、气压计、湿度计、温度计、红外线传感器等其他传感器,在此不再赘述。The electronic device may also include at least one sensor 705, such as a light sensor, a motion sensor, and other sensors. Specifically, the light sensor may include an ambient light sensor and a proximity sensor. The ambient light sensor may adjust the brightness of the display panel according to the brightness of the ambient light. The proximity sensor may close the display panel and/or when the electronic device moves to the ear. Backlight. As a kind of motion sensor, the gravity acceleration sensor can detect the magnitude of acceleration in various directions (usually three axes). It can detect the magnitude and direction of gravity when stationary. It can be used to identify applications of mobile phone posture (such as horizontal and vertical screen switching, related Games, magnetometer attitude calibration), vibration recognition related functions (such as pedometer, knock), etc.; as for other sensors such as gyroscopes, barometers, hygrometers, thermometers, infrared sensors, etc. that can also be configured in electronic devices, they are not mentioned here. Again.
音频电路706、扬声器,传声器可提供用户与电子设备之间的音频接口。音频电路706可将接收到的音频数据转换后的电信号,传输到扬声器,由扬声器转换为声音信号输出;另一方面,传声器将收集的声音信号转换为电信号,由音频电路706接收后转换为音频数据,再将音频数据输出处理器708处理后,经RF电路701以发送给比如另一电子设备,或者将音频数据输出至存储器702以便进一步处理。音频电路706还可能包括耳塞插孔,以提供外设耳机与电子设备的通信。The audio circuit 706, speaker, and microphone can provide an audio interface between the user and the electronic device. The audio circuit 706 can transmit the electrical signal converted from the received audio data to the speaker, which converts it into a sound signal and outputs it; on the other hand, the microphone converts the collected sound signal into an electrical signal, which is received and converted by the audio circuit 706 The audio data is processed by the audio data output processor 708 and then sent to, for example, another electronic device through the RF circuit 701, or the audio data is output to the memory 702 for further processing. Audio circuitry 706 may also include an earphone jack to provide communication between peripheral earphones and electronic devices.
WiFi属于短距离无线传输技术,电子设备通过WiFi模块707可以帮助用户收发电子邮件、浏览网页和访问流式媒体等,它为用户提供了无线的宽带互联网访问。虽然图7示出了WiFi模块707,但是可以理解的是,其并不属于电子设备的必须构成,完全可以根据需要在不改变发明的本质的范围内而省略。WiFi is a short-distance wireless transmission technology. Electronic devices can help users send and receive emails, browse web pages, and access streaming media through the WiFi module 707. It provides users with wireless broadband Internet access. Although FIG. 7 shows the WiFi module 707, it can be understood that it is not a necessary component of the electronic device and can be omitted as needed without changing the essence of the invention.
处理器708是电子设备的控制中心,利用各种接口和线路连接整个手机的各个部分,通过运行或执行存储在存储器702内的软件程序和/或模块,以及调用存储在存储器702内的数据,执行电子设备的各种功能和处理数据。可选的,处理器708可包括一个或多个处理核心;优选的,处理器708可集成应用处理器和调制解调处理器,其中,应用处理器主要处理操作系统、用户界面和应用程序等,调制解调处理器主要处理无线通信。可以理解的是,上述调制解调处理器也可以不集成到处理器708中。The processor 708 is the control center of the electronic device, using various interfaces and lines to connect various parts of the entire mobile phone, by running or executing software programs and/or modules stored in the memory 702, and calling data stored in the memory 702, Perform various functions of electronic devices and process data. Optionally, the processor 708 may include one or more processing cores; preferably, the processor 708 may integrate an application processor and a modem processor, where the application processor mainly processes the operating system, user interface, application programs, etc. , the modem processor mainly handles wireless communications. It can be understood that the above-mentioned modem processor may not be integrated into the processor 708.
电子设备还包括给各个部件供电的电源709(比如电池),优选的,电源可以通过电源管理系统与处理器708逻辑相连,从而通过电源管理系统实现管理充电、放电、以及功耗管理等功能。电源709还可以包括一个或一个以上的直流或交流电源、再充电系统、电源故障检测电路、电源转换器或者逆变器、电源状态指示器等任意组件。The electronic device also includes a power supply 709 (such as a battery) that supplies power to various components. Preferably, the power supply can be logically connected to the processor 708 through a power management system, so that functions such as charging, discharging, and power consumption management can be implemented through the power management system. Power supply 709 may also include one or more DC or AC power supplies, recharging systems, power failure detection circuits, power converters or inverters, power status indicators, and other arbitrary components.
尽管未示出,电子设备还可以包括摄像头、蓝牙模块等,在此不再赘述。具体在本实施例中,电子设备中的处理器708会按照如下的指令,将一个或一个以上的应用程序的进程对应的可执行文件加载到存储器702中,并由处理器708来运行存储在存储器702中的应用 程序,从而实现各种功能,如下:Although not shown, the electronic device may also include a camera, a Bluetooth module, etc., which will not be described again here. Specifically in this embodiment, the processor 708 in the electronic device will load the executable files corresponding to the processes of one or more application programs into the memory 702 according to the following instructions, and the processor 708 will run the executable files stored in Applications in memory 702 program to achieve various functions, as follows:
获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,Calculate the communication terminal security factor of the communication terminal according to the first security method application information; and/or,
根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;Calculate the cloud server security factor of the cloud server according to the second security method application information; determine the communication environment security assessment of the current communication environment based on at least one of the communication end security factor and the cloud server security factor. result;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
本领域普通技术人员可以理解,上述实施例的各种方法中的全部或部分步骤可以通过指令来完成,或通过指令控制相关的硬件来完成,该指令可以存储于一计算机可读存储介质中,并由处理器进行加载和执行。Those of ordinary skill in the art can understand that all or part of the steps in the various methods of the above embodiments can be completed by instructions, or by controlling relevant hardware through instructions. The instructions can be stored in a computer-readable storage medium, and loaded and executed by the processor.
为此,本申请实施例提供一种计算机可读存储介质,其中存储有多条指令,该指令能够被处理器进行加载,以执行本申请实施例所提供的任一种通信环境安全预警方法中的步骤。例如,该指令可以执行如下步骤:To this end, embodiments of the present application provide a computer-readable storage medium in which a plurality of instructions are stored, and the instructions can be loaded by the processor to execute any of the communication environment security early warning methods provided by the embodiments of the present application. A step of. For example, this command can perform the following steps:
获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,Calculate the communication terminal security factor of the communication terminal according to the first security method application information; and/or,
根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;Calculate the cloud server security factor of the cloud server according to the second security method application information; determine the communication environment security assessment of the current communication environment based on at least one of the communication end security factor and the cloud server security factor. result;
若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
以上各个操作的具体实施可参见前面的实施例,在此不再赘述。For the specific implementation of each of the above operations, please refer to the previous embodiments and will not be described again here.
其中,该计算机可读存储介质可以包括:只读存储器(ROM,Read Only Memory)、随机存取记忆体(RAM,Random Access Memory)、磁盘或光盘等。Among them, the computer-readable storage medium may include: read-only memory (ROM, Read Only Memory), random access memory (RAM, Random Access Memory), magnetic disk or optical disk, etc.
由于该计算机可读存储介质中所存储的指令,可以执行本申请实施例所提供的任一种通信环境安全预警方法中的步骤,因此,可以实现本申请实施例所提供的任一种通信环境安全预警方法所能实现的有益效果,详见前面的实施例,在此不再赘述。Since the instructions stored in the computer-readable storage medium can execute the steps in any communication environment security early warning method provided by the embodiments of the present application, therefore, any communication environment provided by the embodiments of the present application can be implemented. The beneficial effects that can be achieved by the security early warning method are detailed in the previous embodiments and will not be described again here.
根据本申请的一个方面,还提供了一种计算机程序产品或计算机程序,该计算机程序产品或计算机程序包括计算机指令,该计算机指令存储在计算机可读存储介质中。电子设备的处理器从计算机可读存储介质读取该计算机指令,处理器执行该计算机指令,使得该电子设备执行上述实施例中的各种可选实现方式中提供的方法。According to one aspect of the present application, a computer program product or computer program is also provided. The computer program product or computer program includes computer instructions, and the computer instructions are stored in a computer-readable storage medium. The processor of the electronic device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the electronic device performs the methods provided in various optional implementations in the above embodiments.
以上对本申请实施例所提供的一种通信环境安全预警方法、装置、电子设备和存储介 质进行了详细介绍,本文中应用了具体个例对本申请的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本申请的方法及其核心思想;同时,对于本领域的技术人员,依据本申请的思想,在具体实施方式及应用范围上均会有改变之处,综上所述,本说明书内容不应理解为对本申请的限制。 The above is a communication environment security early warning method, device, electronic device and storage medium provided by the embodiments of the present application. The nature of the present application is introduced in detail. Specific examples are used in this article to illustrate the principles and implementation methods of the present application. The description of the above embodiments is only used to help understand the method of the present application and its core ideas; at the same time, for the technology in this field According to the ideas of this application, there will be changes in the specific implementation mode and application scope. In summary, the content of this description should not be understood as a limitation of this application.

Claims (20)

  1. 一种通信环境安全预警方法,其特征在于,包括:A communication environment security early warning method, which is characterized by including:
    获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
    根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,Calculate the communication terminal security factor of the communication terminal according to the first security method application information; and/or,
    根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;Calculate the cloud server security factor of the cloud server according to the second security method application information;
    基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;Based on at least one of the communication end security factor and the cloud server security factor, determine the communication environment security assessment result of the current communication environment;
    若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
  2. 根据权利要求1所述的通信环境安全预警方法,其特征在于,所述显示通信环境安全提示消息之后,所述方法还包括:The communication environment security early warning method according to claim 1, characterized in that after the communication environment security prompt message is displayed, the method further includes:
    响应于用户发起通信的操作,确定所述通信端对应的通信网络;In response to the user's operation of initiating communication, determine the communication network corresponding to the communication terminal;
    获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数;Obtain the third security method application information of the communication network, and calculate the network security coefficient of the communication network based on the third security method application information;
    获取所述通信端当前的第一安全方法应用信息以及所述云服务器当前的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the current second security method application information of the cloud server;
    根据所述第一安全方法应用信息和所述第二安全方法应用信息,计算所述通信端的通信端安全系数和所述云服务器的云服务器安全系数;Calculate the communication terminal security factor of the communication terminal and the cloud server security factor of the cloud server according to the first security method application information and the second security method application information;
    根据所述通信端安全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果;Determine the communication environment security assessment result of the current communication environment according to the communication end security factor, the network security factor and the cloud server security factor;
    若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
  3. 根据权利要求1-2任一项所述的通信环境安全预警方法,其特征在于,所述根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数,包括:The communication environment security early warning method according to any one of claims 1-2, characterized in that, calculating the communication terminal security factor of the communication terminal according to the first security method application information includes:
    根据所述第一安全方法应用信息,从所述通信端可应用的安全方法中确定未应用的安全方法;According to the first security method application information, determine an unapplied security method from the security methods applicable to the communication end;
    获取所述未应用的安全方法对应的第一安全风险值以及第一风险利用值; Obtain the first security risk value and the first risk utilization value corresponding to the unapplied security method;
    基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信端安全系数。Based on the first security risk value and the first risk utilization value, a communication terminal security factor of the communication terminal is calculated.
  4. 根据权利要求3所述的通信环境安全预警方法,其特征在于,所述基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信端安全系数,包括:The communication environment security early warning method according to claim 3, wherein calculating the communication end security factor of the communication end based on the first security risk value and the first risk utilization value includes:
    基于所述第一安全风险值和所述第一风险利用值,计算所述通信端各所述未应用的安全方法对应的风险系数;Based on the first security risk value and the first risk utilization value, calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end;
    解析所述第一安全方法应用信息,确定所述通信端已应用的安全方法;Parse the first security method application information to determine the security method applied by the communication end;
    根据所述已应用的安全方法和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。Calculate the communication end security factor of the communication end based on the risk coefficient corresponding to the applied security method and each of the unapplied security methods.
  5. 根据权利要求4所述的通信环境安全预警方法,其特征在于,通信发起端安全系数其中,R表示风险系数,N表示通信端的已应用的安全方法的数量,n表示未应用的安全方法的数量。The communication environment security early warning method according to claim 4, characterized in that the communication initiating end security factor Among them, R represents the risk coefficient, N represents the number of applied security methods at the communication end, and n represents the number of unapplied security methods.
  6. 根据权利要求4所述的通信环境安全预警方法,其特征在于,风险系数R=D*E,0<=D<=1,0<=E<=1,其中,D为所述安全方法的第一风险利用值,E为所述安全方法的第一安全风险值。The communication environment security early warning method according to claim 4, characterized in that the risk coefficient R=D*E, 0<=D<=1, 0<=E<=1, where D is the value of the security method The first risk utilization value, E is the first security risk value of the security method.
  7. 根据权利要求3所述的通信环境安全预警方法,其特征在于,所述基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信端安全系数,包括:The communication environment security early warning method according to claim 3, wherein calculating the communication end security factor of the communication end based on the first security risk value and the first risk utilization value includes:
    基于所述第一安全风险值和所述第一风险利用值,计算所述通信端各所述未应用的安全方法对应的风险系数;Based on the first security risk value and the first risk utilization value, calculate the risk coefficient corresponding to each of the unapplied security methods at the communication end;
    解析所述第一安全方法应用信息,确定所述通信端已应用的安全方法;Parse the first security method application information to determine the security method applied by the communication end;
    确定各所述已应用的安全方法的安全影响值;Determine the security impact value of each described applied security method;
    根据所述已应用的安全方法的安全影响值和各所述未应用安全方法对应的风险系数,计算所述通信端的通信端安全系数。The communication end security factor of the communication end is calculated based on the security impact value of the applied security method and the risk coefficient corresponding to each of the unapplied security methods.
  8. 根据权利要求2所述的通信环境安全预警方法,其特征在于,所述方法还包括:The communication environment security early warning method according to claim 2, characterized in that the method further includes:
    当所述通信端处于通信过程中时,计算当前时刻与最近一次确定当前通信环境的通信环境安全评估结果时刻之间的时间间隔;;When the communication terminal is in the communication process, calculate the time interval between the current moment and the latest moment when the communication environment security assessment result of the current communication environment is determined;;
    当所述时间间隔大于预设的检测时间间隔,执行所述获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数的步骤,直至所述通信过程结束。When the time interval is greater than the preset detection time interval, perform the steps of obtaining the third security method application information of the communication network, and calculating the network security coefficient of the communication network based on the third security method application information. , until the communication process ends.
  9. 根据权利要求2所述的通信环境安全预警方法,其特征在于,所述根据所述通信端安 全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果之前,所述方法还包括:The communication environment security early warning method according to claim 2, characterized in that: according to the communication end security Before determining the communication environment security assessment result of the current communication environment, the method further includes:
    获取所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重;Obtain the security assessment weights corresponding to the communication terminal, the cloud server and the communication network respectively;
    所述根据所述通信端安全系数、所述网络安全系数和所述云服务器安全系数,确定当前通信环境的通信环境安全评估结果,包括:Determining the communication environment security assessment result of the current communication environment based on the communication terminal security factor, the network security factor and the cloud server security factor includes:
    根据所述通信端安全系数、所述网络安全系数、所述云服务器安全系数以及所述通信端、所述云服务器和所述通信网络分别对应的安全评估权重,计算当前通信环境的通信环境安全评估值;Calculate the communication environment security of the current communication environment based on the communication end security factor, the network security factor, the cloud server security factor and the security assessment weights corresponding to the communication end, the cloud server and the communication network respectively. The assessed value;
    基于所述通信环境安全评估值,确定当前通信环境的通信环境安全评估结果。Based on the communication environment security assessment value, the communication environment security assessment result of the current communication environment is determined.
  10. 根据权利要求1所述的通信环境安全预警方法,其特征在于,所述获取通信端当前的第一安全方法应用信息,包括:The communication environment security early warning method according to claim 1, characterized in that said obtaining the current first security method application information of the communication end includes:
    若检测到通信应用启动,获取通信应用所在的通信发起端和/或通信接收端当前的第一安全方法应用信息;或,If it is detected that the communication application is started, obtain the current first security method application information of the communication initiating end and/or the communication receiving end where the communication application is located; or,
    响应于用户发起通信的操作,生成通信环境安全评估请求;In response to a user-initiated communication operation, generate a communication environment security assessment request;
    基于所述通信环境安全评估请求,获取通信发起端当前的发起端安全方法应用信息作为通信端当前的第一安全方法应用信息;或,Based on the communication environment security assessment request, obtain the current initiating end security method application information of the communication initiating end as the current first security method application information of the communication end; or,
    响应于用户接受通信的操作,生成通信环境安全评估请求;In response to the user's operation of accepting the communication, generate a communication environment security assessment request;
    基于所述通信环境安全评估请求,获取通信接收端当前的接收端安全方法应用信息作为通信端当前的第一安全方法应用信息。Based on the communication environment security assessment request, the current receiving end security method application information of the communication receiving end is obtained as the current first security method application information of the communication end.
  11. 根据权利要求1所述的通信环境安全预警方法,其特征在于,所述获取所述通信端对应的云服务器的第二安全方法应用信息之前,所述方法还包括:The communication environment security early warning method according to claim 1, characterized in that before obtaining the second security method application information of the cloud server corresponding to the communication end, the method further includes:
    响应于用户发起云通信的操作,确定所述通信端对应的云服务器;In response to the user initiating a cloud communication operation, determine the cloud server corresponding to the communication end;
    获取所述云服务器的第二安全方法应用信息。Obtain the second security method application information of the cloud server.
  12. 根据权利要求1-9任一项所述的通信环境安全预警方法,其特征在于,所述显示通信环境安全提示消息之前,所述方法还包括:The communication environment security early warning method according to any one of claims 1 to 9, characterized in that before displaying the communication environment security prompt message, the method further includes:
    根据所述通信环境安全评估结果,确定所述当前通信环境的通信环境安全级别;Determine the communication environment security level of the current communication environment according to the communication environment security assessment result;
    所述显示通信环境安全提示消息,包括:The displayed communication environment security prompt message includes:
    显示通信环境安全提示信息,所述通信环境安全提示信息包括所述通信环境安全级别。Display communication environment security prompt information, where the communication environment security prompt information includes the communication environment security level.
  13. 根据权利要求1-12任一项所述的通信环境安全预警方法,其特征在于,所述基于 所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果,包括:The communication environment security early warning method according to any one of claims 1-12, characterized in that the At least one of the communication terminal security factor and the cloud server security factor determines the communication environment security assessment result of the current communication environment, including:
    当所述通信端安全系数大于预设的安全阈值时,确定当前通信环境的通信环境安全评估结果为通信环境安全。When the communication end security factor is greater than the preset security threshold, the communication environment security assessment result of the current communication environment is determined to be the communication environment safety.
  14. 根据权利要求1-12任一项所述的通信环境安全预警方法,其特征在于,所述基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果,包括:The communication environment security early warning method according to any one of claims 1 to 12, characterized in that the communication of the current communication environment is determined based on at least one of the communication terminal security factor and the cloud server security factor. Environmental safety assessment results, including:
    当所述通信端安全系数不大于预设的安全阈值时,确定当前通信环境的通信环境安全评估结果为通信环境不安全。When the security factor of the communication end is not greater than the preset security threshold, it is determined that the communication environment security assessment result of the current communication environment is that the communication environment is unsafe.
  15. 一种通信环境安全预警装置,其特征在于,包括:A communication environment security early warning device, which is characterized by including:
    信息获取单元,用于获取通信端当前的第一安全方法应用信息以及所述通信端对应的云服务器的第二安全方法应用信息;An information acquisition unit, configured to acquire the current first security method application information of the communication terminal and the second security method application information of the cloud server corresponding to the communication terminal;
    系数计算单元,用于根据所述第一安全方法应用信息,计算所述通信端的通信端安全系数;和/或,A coefficient calculation unit configured to calculate the communication end security coefficient of the communication end according to the first security method application information; and/or,
    根据所述第二安全方法应用信息,计算所述云服务器的云服务器安全系数;Calculate the cloud server security factor of the cloud server according to the second security method application information;
    安全评估单元,用于基于所述通信端安全系数和所述云服务器安全系数中的至少一种,确定当前通信环境的通信环境安全评估结果;A security assessment unit configured to determine the communication environment security assessment result of the current communication environment based on at least one of the communication end security factor and the cloud server security factor;
    消息提示单元,用于若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。A message prompt unit configured to display a communication environment security prompt message if the communication environment security assessment result indicates that the current communication environment is unsafe.
  16. 根据权利要求15所述的通信环境安全预警装置,其特征在于,所述装置还包括融合评估单元,用于响应于用户发起通信的操作,确定所述通信端对应的通信网络;The communication environment security early warning device according to claim 15, characterized in that the device further includes a fusion evaluation unit configured to determine the communication network corresponding to the communication end in response to a user's operation of initiating communication;
    获取所述通信网络的第三安全方法应用信息,基于所述第三安全方法应用信息,计算所述通信网络的网络安全系数;Obtain the third security method application information of the communication network, and calculate the network security coefficient of the communication network based on the third security method application information;
    获取所述通信端当前的第一安全方法应用信息以及所述云服务器当前的第二安全方法应用信息;Obtain the current first security method application information of the communication terminal and the current second security method application information of the cloud server;
    根据所述第一安全方法应用信息和所述第二安全方法应用信息,计算所述通信端的通信端安全系数和所述云服务器的云服务器安全系数;Calculate the communication terminal security factor of the communication terminal and the cloud server security factor of the cloud server according to the first security method application information and the second security method application information;
    根据所述通信端安全系数、所述网络安全系数和所述通信接收端安全系数,确定当前通信环境的通信环境安全评估结果;Determine the communication environment security assessment result of the current communication environment according to the communication end security factor, the network security factor and the communication receiving end security factor;
    若所述通信环境安全评估结果指示所述当前通信环境不安全,显示通信环境安全提示消息。 If the communication environment security assessment result indicates that the current communication environment is unsafe, a communication environment security prompt message is displayed.
  17. 根据权利要求15-16任一项所述的通信环境安全预警装置,其特征在于,所述系数计算单元,用于根据所述第一安全方法应用信息,从所述通信端可应用的安全方法中确定未应用的安全方法;The communication environment security early warning device according to any one of claims 15-16, characterized in that the coefficient calculation unit is used to obtain the applicable security method from the communication end according to the first security method application information. identify unapplied security methods;
    获取所述未应用的安全方法对应的第一安全风险值以及第一风险利用值;Obtain the first security risk value and the first risk utilization value corresponding to the unapplied security method;
    基于所述第一安全风险值和所述第一风险利用值,计算所述通信端的通信发起端安全系数。Based on the first security risk value and the first risk utilization value, the communication initiating end security factor of the communication end is calculated.
  18. 一种电子设备,其特征在于,包括存储器和处理器;所述存储器存储有应用程序,所述处理器用于运行所述存储器内的应用程序,以执行权利要求1至14任一项所述的通信环境安全预警方法中的步骤。An electronic device, characterized in that it includes a memory and a processor; the memory stores an application program, and the processor is used to run the application program in the memory to execute the method described in any one of claims 1 to 14 Steps in the communication environment security early warning method.
  19. 一种计算机可读存储介质,其特征在于,所述计算机可读存储介质存储有多条指令,所述指令适于处理器进行加载,以执行权利要求1至14任一项所述的通信环境安全预警方法中的步骤。A computer-readable storage medium, characterized in that the computer-readable storage medium stores a plurality of instructions, and the instructions are suitable for loading by a processor to execute the communication environment described in any one of claims 1 to 14 Steps in the security alert approach.
  20. 一种计算机程序产品,包括计算机程序或指令,其特征在于,所述计算机程序或指令被处理器执行时实现如权利要求1至14中任一项所述的通信环境安全预警方法的步骤。 A computer program product, including a computer program or instructions, characterized in that when the computer program or instructions are executed by a processor, the steps of the communication environment security early warning method according to any one of claims 1 to 14 are implemented.
PCT/CN2023/098756 2022-06-09 2023-06-07 Communication environment security warning method and apparatus, terminal device, and storage medium WO2023236972A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202210651312.3A CN115174418A (en) 2022-06-09 2022-06-09 Communication environment safety early warning method and device, electronic equipment and storage medium
CN202210651312.3 2022-06-09

Publications (1)

Publication Number Publication Date
WO2023236972A1 true WO2023236972A1 (en) 2023-12-14

Family

ID=83484736

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2023/098756 WO2023236972A1 (en) 2022-06-09 2023-06-07 Communication environment security warning method and apparatus, terminal device, and storage medium

Country Status (2)

Country Link
CN (1) CN115174418A (en)
WO (1) WO2023236972A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115174418A (en) * 2022-06-09 2022-10-11 深圳Tcl新技术有限公司 Communication environment safety early warning method and device, electronic equipment and storage medium
CN115758373B (en) * 2022-10-28 2023-08-29 南方电网数字平台科技(广东)有限公司 Method for unifying nanotubes by multiple cloud servers for cloud management

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060129810A1 (en) * 2004-12-14 2006-06-15 Electronics And Telecommunications Research Institute Method and apparatus for evaluating security of subscriber network
CN109379373A (en) * 2018-11-23 2019-02-22 中国电子科技网络信息安全有限公司 A kind of cloud security assessment system and method
CN111031003A (en) * 2019-11-21 2020-04-17 中国电子科技集团公司第三十研究所 Intelligent evaluation system of cross-network isolation safety system
CN115174418A (en) * 2022-06-09 2022-10-11 深圳Tcl新技术有限公司 Communication environment safety early warning method and device, electronic equipment and storage medium

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060129810A1 (en) * 2004-12-14 2006-06-15 Electronics And Telecommunications Research Institute Method and apparatus for evaluating security of subscriber network
CN109379373A (en) * 2018-11-23 2019-02-22 中国电子科技网络信息安全有限公司 A kind of cloud security assessment system and method
CN111031003A (en) * 2019-11-21 2020-04-17 中国电子科技集团公司第三十研究所 Intelligent evaluation system of cross-network isolation safety system
CN115174418A (en) * 2022-06-09 2022-10-11 深圳Tcl新技术有限公司 Communication environment safety early warning method and device, electronic equipment and storage medium

Also Published As

Publication number Publication date
CN115174418A (en) 2022-10-11

Similar Documents

Publication Publication Date Title
WO2015090248A1 (en) Server overload protection method and device
WO2023236972A1 (en) Communication environment security warning method and apparatus, terminal device, and storage medium
US11937111B2 (en) Measurement configuration method, device, and system
CN110166439B (en) Equipment sharing method, terminal, router and server
WO2018161353A1 (en) Photo sharing method and device
CN107465841B (en) Fault information reporting method and terminal
CN107786424B (en) Audio and video communication method, terminal and server
WO2017206915A1 (en) Method for determining kernel running configuration in processor and related product
CN105094501B (en) Method, device and system for displaying messages in mobile terminal
WO2014000632A1 (en) Method, device and apparatus for acquiring security state of mobile terminal
WO2018049971A1 (en) Hotspot network switching method and terminals
WO2016192511A1 (en) Method and apparatus for remotely deleting information
US20160142431A1 (en) Session processing method and device, server and storage medium
WO2018049970A1 (en) Hotspot network switching method and terminal
CN111107223B (en) Message processing method and electronic equipment
US20220110036A1 (en) Random access method and terminal
CN109639738B (en) Voice data transmission method and terminal equipment
CN109151741B (en) Multimedia message receiving method and terminal
WO2020063240A1 (en) Channel access method, configuration method, terminal and network side device
CN108307075B (en) Incoming call processing method and mobile terminal
JP7114747B2 (en) Random access resource selection method and terminal device
CN110891262A (en) Bluetooth pairing method, system and terminal equipment
CN108429805B (en) File downloading processing method, sending terminal and receiving terminal
CN107786423A (en) A kind of method and system of instant messaging
CN111885591A (en) Network connection method, device, storage medium and terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23819137

Country of ref document: EP

Kind code of ref document: A1