CN101765105B - Method for realizing communication encryption as well as system and mobile terminal therefor - Google Patents
Method for realizing communication encryption as well as system and mobile terminal therefor Download PDFInfo
- Publication number
- CN101765105B CN101765105B CN 200910242824 CN200910242824A CN101765105B CN 101765105 B CN101765105 B CN 101765105B CN 200910242824 CN200910242824 CN 200910242824 CN 200910242824 A CN200910242824 A CN 200910242824A CN 101765105 B CN101765105 B CN 101765105B
- Authority
- CN
- China
- Prior art keywords
- smart card
- certificate
- portable terminal
- communication channel
- public key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000004891 communication Methods 0.000 title claims abstract description 94
- 238000000034 method Methods 0.000 title claims abstract description 30
- 230000006870 function Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 5
- VBMOHECZZWVLFJ-GXTUVTBFSA-N (2s)-2-[[(2s)-6-amino-2-[[(2s)-6-amino-2-[[(2s,3r)-2-[[(2s,3r)-2-[[(2s)-6-amino-2-[[(2s)-2-[[(2s)-6-amino-2-[[(2s)-2-[[(2s)-2-[[(2s)-2,6-diaminohexanoyl]amino]-5-(diaminomethylideneamino)pentanoyl]amino]propanoyl]amino]hexanoyl]amino]propanoyl]amino]hexan Chemical compound NC(N)=NCCC[C@@H](C(O)=O)NC(=O)[C@H](CCCCN)NC(=O)[C@H](CCCCN)NC(=O)[C@H]([C@@H](C)O)NC(=O)[C@H]([C@H](O)C)NC(=O)[C@H](CCCCN)NC(=O)[C@H](C)NC(=O)[C@H](CCCCN)NC(=O)[C@H](C)NC(=O)[C@H](CCCN=C(N)N)NC(=O)[C@@H](N)CCCCN VBMOHECZZWVLFJ-GXTUVTBFSA-N 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 4
- 108010068904 lysyl-arginyl-alanyl-lysyl-alanyl-lysyl-threonyl-threonyl-lysyl-lysyl-arginine Proteins 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 101000896740 Solanum tuberosum Cysteine protease inhibitor 9 Proteins 0.000 description 1
- 238000004590 computer program Methods 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 238000012163 sequencing technique Methods 0.000 description 1
- 238000010200 validation analysis Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Landscapes
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The embodiment of the invention discloses a method for realizing communication encryption as well as a system and a mobile terminal therefor. The method comprises: obtaining a user digital certificate of an intelligent card in the mobile terminal by a security proxy module arranged in the mobile terminal; obtaining a public key encrypted data from an authentication server by the user digital certificate by encrypting a communication channel encryption key generated by the authentication server in random with a public key in the user digital certificate through the authentication server; obtaining the communication channel encryption key sent by the intelligent card through the security proxy module by utilizing the public key encrypted data by decrypting the public key encrypted data with a private key through the intelligent card; and performing a security encrypted communication through the communication channel encryption key and the communication channel encryption key. The invention is suitable for communication encryption between the mobile terminal and the authentication server.
Description
Technical field
The present invention relates to communication technical field, particularly a kind of method and system, portable terminal of realizing communication encryption.
Background technology
At present, in E-Government and Web bank's activity, online authentication is essential.The user at first will carry out identity validation when login system.With CA (Certificate Authority, e-business certification authorized organization) authentication system, be each user's system generating sub-key or digital certificate file, by the form of issuing licence down, carrying out user identification confirmation is the security kernel of E-Government and Web bank.
PKI (Public Key Infrastructure, PKIX) is a kind of key management platform of following set standard, and it can use cryptographic service and necessary key and the certificate management systems such as encryption and digital signature are provided for all-network.In simple terms, PKI is exactly the infrastructure that security service is provided of utilizing the PKI theory and technology to set up.The PKI technology is the core of information security technology, also is key and the basic technology of E-Government and Web bank.
Along with improving constantly and popularizing that smart mobile phone is used of cell phone network speed, use the application demand of surfing Internet with cell phone day by day strong, owing to also do not have perfect mobile phone to call the communication protocol that SIM card is signed and encrypted at present, instruction and standard, there is not to set up the authentication system based on customer digital certificate between mobile phone and the certificate server, can't finish mutual with the security information of certificate server and realize the communication encryption of mobile phone and certificate server, so the higher application of many security requiremenies such as E-Government and Web bank's mobile payment can't realize at mobile phone terminal.
Summary of the invention
Embodiments of the invention provide a kind of method and system, portable terminal of realizing communication encryption, can realize at portable terminal the various functions of E-Government and Web bank, for the user provide safety, efficiently, easily service.
The technical scheme that the embodiment of the invention adopts is:
A kind of method that realizes communication encryption comprises:
Obtain the customer digital certificate of smart card in the portable terminal by the TSM Security Agent module, described TSM Security Agent module is positioned at portable terminal;
Utilize described customer digital certificate to obtain the public key encryption data from certificate server, obtain after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
Utilize described public key encryption data, obtain the communication channel encryption key that described smart card sends by described TSM Security Agent module, described communication channel encryption key obtains after using private key that described public key encryption data are decrypted by described smart card;
Using described communication channel encryption key and certificate server to carry out safety encipher communicates by letter.
A kind of portable terminal comprises:
The first acquisition module is for the customer digital certificate that obtains smart card by the TSM Security Agent module;
The second acquisition module, be used for utilizing described customer digital certificate to obtain the public key encryption data from certificate server, obtain after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
The 3rd acquisition module is used for utilizing described public key encryption data, obtains the communication channel encryption key that smart card sends by described TSM Security Agent module;
Smart card is used for using private key that described public key encryption data are decrypted, and obtains the communication channel encryption key;
The TSM Security Agent module is used for the customer digital certificate of described smart card is passed to described the first acquisition module, and the communication channel encryption key that described smart card is sent passes to described the 3rd acquisition module;
Communication module is used for using described communication channel encryption key and certificate server to carry out safety encipher and communicates by letter.
A kind of system that realizes communication encryption, this system comprises above-mentioned portable terminal.
The embodiment of the invention realizes method and system, the portable terminal of communication encryption, utilize the customer digital certificate of smart card to obtain the public key encryption data from certificate server, utilize described public key encryption data, pass through the TSM Security Agent module by smart card acquisition of communication channels encryption key, use described communication channel encryption key and certificate server to carry out safety encipher and communicate by letter.Compared with prior art, be provided with the TSM Security Agent module in the portable terminal, by the TSM Security Agent module, can obtain customer digital certificate and communication channel encryption key by smart card, thereby realize the various functions of E-Government and Web bank at portable terminal; Portable terminal can obtain the communication channel encryption key that certificate server generates, and use this communication channel encryption key and certificate server to communicate, guaranteed the consistency of the transmission of data between certificate server and the portable terminal and the fail safe of data communication, thus for the user provide safety, efficiently, easily the service.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, the below will do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art, apparently, accompanying drawing in the following describes only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The method flow diagram of the realization communication encryption that Fig. 1 provides for the embodiment of the invention one;
The method flow diagram of the realization communication encryption that Fig. 2 provides for the embodiment of the invention two;
The mobile terminal structure schematic diagram that Fig. 3 provides for the embodiment of the invention three.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making all other embodiment that obtain under the creative work prerequisite.
For the advantage that makes technical solution of the present invention is clearer, below in conjunction with drawings and Examples the present invention is elaborated.
Embodiment one
Present embodiment provides a kind of method that realizes communication encryption, and as shown in Figure 1, described method comprises:
101, obtain the customer digital certificate of smart card in the portable terminal by the TSM Security Agent module, described TSM Security Agent module is positioned at portable terminal;
102, utilize described customer digital certificate to obtain the public key encryption data from certificate server, obtain after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
103, utilize described public key encryption data, obtain the communication channel encryption key that described smart card sends by described TSM Security Agent module, described communication channel encryption key obtains after using private key that described public key encryption data are decrypted by described smart card;
104, using described communication channel encryption key to carry out safety encipher with certificate server communicates by letter.
The embodiment of the invention realizes the method for communication encryption, utilize the customer digital certificate of smart card to obtain the public key encryption data from certificate server, utilize described public key encryption data, pass through the TSM Security Agent module by smart card acquisition of communication channels encryption key, use described communication channel encryption key and certificate server to carry out safety encipher and communicate by letter.Compared with prior art, be provided with the TSM Security Agent module in the portable terminal, by the TSM Security Agent module, can obtain customer digital certificate and communication channel encryption key by smart card, thereby realize the various functions of E-Government and Web bank at portable terminal; Portable terminal can obtain the communication channel encryption key that certificate server generates, and use this communication channel encryption key and certificate server to communicate, guaranteed the consistency of the transmission of data between certificate server and the portable terminal and the fail safe of data communication, thus for the user provide safety, efficiently, easily the service.
Embodiment two
In the present embodiment, take smart mobile phone as example, the smart card that arranges in the described smart mobile phone is the PKSIM card.
As shown in Figure 2, the method for described realization communication encryption comprises:
201, the PKSIM card in the smart mobile phone calculates PKI and the private key that generates this PKSIM card according to Digital Signature Algorithm.
Above-mentioned Digital Signature Algorithm can adopt the RSA Algorithm that satisfies public key cryptography standards PKCS#1 (Public KeyCryptography Standards) or PKCS#11, and the PKSIM card can be supported 1024 RSA Algorithm.
The PKSIM Cali generates PKI and the private key of this PKSIM card with the RSA Algorithm that presets.Wherein, PKI is to derive the outer information of card, and private key is stored in the card and can not derives outside the card.Use private key to carry out computing according to Digital Signature Algorithm when carrying out digital signature; During the validity of certifying digital signature, use public-key and carry out computing according to identical Digital Signature Algorithm.
202, utilize the PKI of PKSIM card from CA (digital certificate is issued) system acquisition customer digital certificate.
PKS IM card is to CA system application digital certificate, corresponding digital certificate is presented to the PKSIM card and is write in the card by the CA system.
Wherein, the described PKSIM card process of obtaining customer digital certificate mainly comprises following operation:
202a, PKSIM card send certificate request information to the CA server, and described certificate request information is carried the PKI of PKSIM card;
Can also carry the proprietary identification information of PKSIM card in the above-mentioned certificate request information, this proprietary identification information can comprise: integrated circuit card identification code (ICCID), perhaps, international mobile subscriber identifier (IMSI), perhaps comprise simultaneously ICCID and IMSI, so that user's identity is confirmed and record, prevent that the disabled user from stealing digital certificate, guarantee digital certificate is presented to legal user.The PKI of the PKSIM card that the CA server by utilizing receives, generation user's digital certificate authenticates the information from the PKSIM card with the digital certificate that utilizes this user in follow-up verification process.
Perhaps, initiate this digital certificate by the CA server and issue process, the PKSIM card sends above-mentioned certificate request information according to the reading order of CA server, at this moment, also comprised before step 202a: the CA server sends reading order, requires to read PKI and/or the proprietary identification information of PKSIM card.
The customer digital certificate that the CA server sends according to described certificate request information is received in 202b, PKSIM clamping.
Certificate server writes corresponding customer digital certificate in the PKSIM card according to PKI and the proprietary identification information of PKSIM card.In embodiments of the present invention, described customer digital certificate can be the digital certificate of X509V3 version.
203, the user installs the TSM Security Agent module at smart mobile phone, can realize digital signature, certifying digital signature, rsa encryption and the deciphering of PKSIM card end and read customer digital certificate by this module.
204, smart mobile phone end application program is used the modes such as HTTP, sets up real-time online by 3G radio channel and certificate server and is connected.
Wherein, described step 203 can not be restricted with the sequencing of step 205 other step before, as long as carried out before step 205.
205, smart mobile phone end application program is obtained the customer digital certificate of PKSIM card by described TSM Security Agent module.
206, smart mobile phone end application program sends to certificate server by the 3G radio channel with this customer digital certificate.
207, after certificate server receives the customer digital certificate that smart mobile phone end application program sends, generate at random the communication channel encryption key, PKI in user's digital certificate is encrypted this communication channel encryption key, obtain the public key encryption data, this public key encryption data communication device is crossed the 3G radio channel send to smart mobile phone end application program.
208, smart mobile phone end application program sends to the PKSIM card by the TSM Security Agent module with these public key encryption data.
209, the PKSIM card uses the private key of self that these public key encryption data are decrypted, the acquisition of communication channels encryption key, and this communication channel encryption key sent to smart mobile phone end application program by the TSM Security Agent module.
210, after smart mobile phone end application program receives the communication channel encryption key, use this communication channel encryption key to finish with the safety encipher of certificate server and communicate by letter.
The embodiment of the invention realizes the method for communication encryption, be provided with PKSIM card and TSM Security Agent module in the smart mobile phone, smart mobile phone utilizes the customer digital certificate of PKSIM card to obtain the public key encryption data from certificate server, utilize described public key encryption data, pass through the TSM Security Agent module by PKSIM card acquisition of communication channels encryption key, use described communication channel encryption key and certificate server to carry out safety encipher and communicate by letter.Compared with prior art, be provided with the TSM Security Agent module in the smart mobile phone, by the TSM Security Agent module, can obtain customer digital certificate and communication channel encryption key by the PKSIM card, thereby realize the various functions of E-Government and Web bank at smart mobile phone; Smart mobile phone can obtain the communication channel encryption key that certificate server generates, and use this communication channel encryption key and certificate server to communicate, guaranteed the consistency of the transmission of data between certificate server and the smart mobile phone and the fail safe of data communication, thus for the user provide safety, efficiently, easily the service.
Embodiment three
Present embodiment provides a kind of portable terminal, and as shown in Figure 3, described portable terminal comprises:
The first acquisition module 301 is for the customer digital certificate that obtains smart card 304 by TSM Security Agent module 305;
The second acquisition module 302, be used for utilizing described customer digital certificate to obtain the public key encryption data from certificate server, obtain after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
The 3rd acquisition module 303 is used for utilizing described public key encryption data, obtains the communication channel encryption key that smart card 304 sends by described TSM Security Agent module 305;
Smart card 304 is used for using private key that described public key encryption data are decrypted, and obtains the communication channel encryption key;
TSM Security Agent module 305 is used for the customer digital certificate of described smart card 304 is passed to described the first acquisition module 301, and the communication channel encryption key that described smart card 304 is sent passes to described the 3rd acquisition module 303;
Communication module 306 is used for using described communication channel encryption key and certificate server to carry out safety encipher and communicates by letter.
Wherein, described smart card 304 also is used for calculating generation PKI and private key according to Digital Signature Algorithm; Utilize described PKI to obtain customer digital certificate from the CA server.Described Digital Signature Algorithm can adopt the RSA Algorithm that satisfies public key cryptography standards PKCS#1 or PKCS#11; Described smart card can be the PKSIM card, but is not limited only to this; Described PKSIM card can be supported 1024 RSA Algorithm.
Further, described smart card 304, concrete being used for sends certificate request information to the CA server, and described certificate request information is carried the PKI of described smart card; Receive the customer digital certificate that the CA server sends according to described certificate request information.
Wherein, described the second acquisition module 302, concrete being used for sends to certificate server with described customer digital certificate; Receive the public key encryption data that certificate server returns.
Wherein, described the 3rd acquisition module 303, concrete being used for sends to described smart card 304 by described TSM Security Agent module 305 with described public key encryption data; Receive the communication channel encryption key that described smart card 304 sends by described TSM Security Agent module 305.
Embodiment of the invention portable terminal, utilize the customer digital certificate of smart card to obtain the public key encryption data from certificate server, utilize described public key encryption data, pass through the TSM Security Agent module by smart card acquisition of communication channels encryption key, use described communication channel encryption key and certificate server to carry out safety encipher and communicate by letter.Compared with prior art, be provided with the TSM Security Agent module in the portable terminal, by the TSM Security Agent module, can obtain customer digital certificate and communication channel encryption key by smart card, thereby realize the various functions of E-Government and Web bank at portable terminal; Portable terminal can obtain the communication channel encryption key that certificate server generates, and use this communication channel encryption key and certificate server to communicate, guaranteed the consistency of the transmission of data between certificate server and the portable terminal and the fail safe of data communication, thus for the user provide safety, efficiently, easily the service.
The embodiment of the invention also provides a kind of system that realizes communication encryption, and this system comprises the portable terminal with above-mentioned functions, by the mutual realization communication encryption of this portable terminal and corresponding certificate server.
The above-mentioned embodiment of the method that provides can be provided in the system of the portable terminal that the embodiment of the invention provides, realization communication encryption.Method and system, the portable terminal of the realization communication encryption that the embodiment of the invention provides go for the portable terminals such as smart mobile phone, but are not limited only to this.
One of ordinary skill in the art will appreciate that all or part of flow process that realizes in above-described embodiment method, to come the relevant hardware of instruction to finish by computer program, described program can be stored in the computer read/write memory medium, this program can comprise the flow process such as the embodiment of above-mentioned each side method when carrying out.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or store-memory body (Random Access Memory, RAM) etc. at random.
The above; be the specific embodiment of the present invention only, but protection scope of the present invention is not limited to this, anyly is familiar with those skilled in the art in the technical scope that the present invention discloses; the variation that can expect easily or replacement all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of claim.
Claims (11)
1. a method that realizes communication encryption is characterized in that, comprising:
Portable terminal obtains the customer digital certificate of smart card in the portable terminal by the TSM Security Agent module, and described TSM Security Agent module is positioned at portable terminal;
Portable terminal utilizes described customer digital certificate to obtain the public key encryption data from certificate server, obtains after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
Portable terminal utilizes described public key encryption data and obtains the communication channel encryption key that described smart card sends by described TSM Security Agent module, and described communication channel encryption key obtains after using private key that described public key encryption data are decrypted by described smart card;
Portable terminal uses described communication channel encryption key and certificate server to carry out safety encipher and communicates by letter.
2. method according to claim 1 is characterized in that, before described portable terminal obtained the customer digital certificate of smart card in the portable terminal by the TSM Security Agent module, described method also comprised:
Described smart card calculates according to Digital Signature Algorithm and generates PKI and private key;
Described smart card utilizes described PKI from CA system acquisition customer digital certificate.
3. method according to claim 2 is characterized in that, described smart card utilizes described PKI to comprise from CA system acquisition customer digital certificate:
Described smart card sends certificate request information to the CA server, and described certificate request information is carried the PKI of described smart card;
Described smart card receives the customer digital certificate that the CA server sends according to described certificate request information.
4. method according to claim 1 is characterized in that, described portable terminal utilizes described customer digital certificate to obtain the public key encryption data from certificate server to comprise:
Portable terminal sends to certificate server with described customer digital certificate;
Portable terminal receives the public key encryption data that certificate server returns.
5. method according to claim 1 is characterized in that, described portable terminal utilizes described public key encryption data, obtain the communication channel encryption key that described smart card sends by described TSM Security Agent module comprises:
Portable terminal sends to described smart card by described TSM Security Agent module with described public key encryption data;
Portable terminal receives the communication channel encryption key that described smart card sends by described TSM Security Agent module.
6. a portable terminal is characterized in that, comprising:
The first acquisition module is for the customer digital certificate that obtains smart card by the TSM Security Agent module;
The second acquisition module, be used for utilizing described customer digital certificate to obtain the public key encryption data from certificate server, obtain after the communication channel encryption key that described public key encryption data utilize the PKI in the described customer digital certificate that described certificate server is generated at random by described certificate server is encrypted;
The 3rd acquisition module is used for utilizing described public key encryption data and obtains the communication channel encryption key that smart card sends by described TSM Security Agent module;
Smart card is used for using private key that described public key encryption data are decrypted, and obtains the communication channel encryption key;
The TSM Security Agent module is used for the customer digital certificate of described smart card is passed to described the first acquisition module, and the communication channel encryption key that described smart card is sent passes to described the 3rd acquisition module;
Communication module is used for using described communication channel encryption key and certificate server to carry out safety encipher and communicates by letter.
7. portable terminal according to claim 6 is characterized in that, described smart card also is used for calculating generation PKI and private key according to Digital Signature Algorithm; Utilize described PKI to obtain customer digital certificate from the CA server.
8. portable terminal according to claim 7 is characterized in that, described smart card, and concrete being used for sends certificate request information to the CA server, and described certificate request information is carried the PKI of described smart card; Receive the customer digital certificate that the CA server sends according to described certificate request information.
9. portable terminal according to claim 6 is characterized in that, described the second acquisition module, and concrete being used for sends to certificate server with described customer digital certificate; Receive the public key encryption data that certificate server returns.
10. portable terminal according to claim 6 is characterized in that, described the 3rd acquisition module, and concrete being used for sends to described smart card by described TSM Security Agent module with described public key encryption data; Receive the communication channel encryption key that described smart card sends by described TSM Security Agent module.
11. a system that realizes communication encryption is characterized in that, described system comprises such as each described portable terminal of claim 6 to 10.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910242824 CN101765105B (en) | 2009-12-17 | 2009-12-17 | Method for realizing communication encryption as well as system and mobile terminal therefor |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910242824 CN101765105B (en) | 2009-12-17 | 2009-12-17 | Method for realizing communication encryption as well as system and mobile terminal therefor |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101765105A CN101765105A (en) | 2010-06-30 |
| CN101765105B true CN101765105B (en) | 2013-04-24 |
Family
ID=42496062
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910242824 Expired - Fee Related CN101765105B (en) | 2009-12-17 | 2009-12-17 | Method for realizing communication encryption as well as system and mobile terminal therefor |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101765105B (en) |
Families Citing this family (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101964805B (en) * | 2010-10-28 | 2013-07-31 | 北京握奇数据系统有限公司 | Method, equipment and system for safely sending and receiving data |
| CN103108323B (en) * | 2011-11-11 | 2017-08-11 | 中兴通讯股份有限公司 | Safety operation execution system and execution method |
| CN103107881B (en) * | 2011-11-11 | 2017-02-08 | 中兴通讯股份有限公司 | Access method, device and system of smart card |
| CN102547688B (en) * | 2012-02-13 | 2014-04-09 | 江苏博智软件科技有限公司 | Virtual-dedicated-channel-based establishment method for high-credibility mobile security communication channel |
| CN103546886B (en) * | 2012-07-17 | 2016-09-07 | 中国移动通信集团公司 | The data configuration method of Universal Integrated Circuit Card, Apparatus and system |
| CN103546289B (en) * | 2013-09-29 | 2017-01-11 | 北京握奇智能科技有限公司 | USB (universal serial bus) Key based secure data transmission method and system |
| CN104636666A (en) * | 2013-11-07 | 2015-05-20 | 中国移动通信集团公司 | Method and safety device for safely processing information of mobile terminal |
| CN103577983B (en) * | 2013-11-25 | 2017-01-18 | 成都中联信通科技股份有限公司 | Load method of electronic currency for off-line consumption |
| CN104754581B (en) * | 2015-03-24 | 2018-01-19 | 河海大学 | A kind of safety certifying method of the LTE wireless networks based on public-key cryptosystem |
| CN105357012A (en) * | 2015-10-26 | 2016-02-24 | 上海易码信息科技有限公司 | Authentication method for mobile application not depending on local private key |
| CN105307163B (en) * | 2015-12-01 | 2019-03-19 | 恒宝股份有限公司 | A kind of safety communicating method and device |
| CN105681279A (en) * | 2015-12-28 | 2016-06-15 | 上海瀚银信息技术有限公司 | Application data transmission method and mobile terminal |
| CN105763325A (en) * | 2016-05-10 | 2016-07-13 | 中国联合网络通信集团有限公司 | Encryption authentication method and device |
| CN107508673A (en) * | 2017-09-11 | 2017-12-22 | 金蝶软件(中国)有限公司 | Method and related device for key acquisition between ERP and third-party components |
| CN112511504B (en) * | 2020-11-13 | 2023-06-06 | 南京工业大学 | A Kubernetes Pod Communication Encryption Method |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1681242A (en) * | 2004-04-07 | 2005-10-12 | 华为技术有限公司 | A method for user registration and authentication in an end-to-end wireless encrypted communication system |
| KR20060020303A (en) * | 2004-08-31 | 2006-03-06 | 인천대학교 산학협력단 | Electronic Payment Authentication Method |
| CN101136743A (en) * | 2006-08-31 | 2008-03-05 | 普天信息技术研究院 | Method and system for updating digital certificate |
| CN101370248A (en) * | 2007-08-15 | 2009-02-18 | 中国移动通信集团公司 | Key update method, third-party server and system for activating third-party applications |
-
2009
- 2009-12-17 CN CN 200910242824 patent/CN101765105B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1681242A (en) * | 2004-04-07 | 2005-10-12 | 华为技术有限公司 | A method for user registration and authentication in an end-to-end wireless encrypted communication system |
| KR20060020303A (en) * | 2004-08-31 | 2006-03-06 | 인천대학교 산학협력단 | Electronic Payment Authentication Method |
| CN101136743A (en) * | 2006-08-31 | 2008-03-05 | 普天信息技术研究院 | Method and system for updating digital certificate |
| CN101370248A (en) * | 2007-08-15 | 2009-02-18 | 中国移动通信集团公司 | Key update method, third-party server and system for activating third-party applications |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101765105A (en) | 2010-06-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101765105B (en) | Method for realizing communication encryption as well as system and mobile terminal therefor | |
| KR101786177B1 (en) | Method and apparatus for performing secure bluetooth communication | |
| JP5508428B2 (en) | Key distribution method and system | |
| US8724819B2 (en) | Credential provisioning | |
| RU2258324C2 (en) | Method for activation of pki functions on intellectual card | |
| CN101777978B (en) | Method and system based on wireless terminal for applying digital certificate and wireless terminal | |
| EP1610202B1 (en) | Using a portable security token to facilitate public key certification for devices in a network | |
| WO2017150270A1 (en) | Communication system, hardware security module, terminal device, communication method, and program | |
| CN103297403A (en) | Method and system for achieving dynamic password authentication | |
| CN102036236A (en) | Method and device for authenticating mobile terminal | |
| CN103731266B (en) | Method and system for authenticating electronic certificate | |
| US20120124378A1 (en) | Method for personal identity authentication utilizing a personal cryptographic device | |
| US10305878B2 (en) | Virtual device authorization method and device | |
| CN101557588B (en) | User certificate management and use method and mobile terminal thereof | |
| CN102694818B (en) | The online distribution method of online private key and system | |
| CN103260157A (en) | User management system based on satellite communication services and application method thereof | |
| Yoon et al. | Security enhancement scheme for mobile device using H/W cryptographic module | |
| CN112861108B (en) | Alliance chain data processing method and system | |
| KR102149313B1 (en) | Method for Processing Electronic Signature based on Universal Subscriber Identity Module | |
| EP2693788A1 (en) | A method for communicating data and corresponding system | |
| CN105915549A (en) | Secure communication system and method for online read of physical identity card | |
| CN117749384A (en) | Collaborative signature security opening method and system based on client device matching | |
| KR102104094B1 (en) | Authentication device, program for controlling authentication between a mobile communication device and recording media for the program | |
| KR101561691B1 (en) | Method for Providing Transaction based on Media Division Authentication | |
| CN113905368A (en) | Mobile terminal secure communication method, device, equipment and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130424 Termination date: 20211217 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |