[go: up one dir, main page]

CN101977073A - Bidirectional authentication system for satellite receiving terminal and receiving antenna - Google Patents

Bidirectional authentication system for satellite receiving terminal and receiving antenna Download PDF

Info

Publication number
CN101977073A
CN101977073A CN2010105317429A CN201010531742A CN101977073A CN 101977073 A CN101977073 A CN 101977073A CN 2010105317429 A CN2010105317429 A CN 2010105317429A CN 201010531742 A CN201010531742 A CN 201010531742A CN 101977073 A CN101977073 A CN 101977073A
Authority
CN
China
Prior art keywords
data
receiving terminal
module
satellite receiving
reception antenna
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2010105317429A
Other languages
Chinese (zh)
Other versions
CN101977073B (en
Inventor
朱兆勋
陈宗圣
李勇
雷环利
成战刚
蔡向阳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Hualu Group Co Ltd
Original Assignee
China Hualu Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Hualu Group Co Ltd filed Critical China Hualu Group Co Ltd
Priority to CN2010105317429A priority Critical patent/CN101977073B/en
Publication of CN101977073A publication Critical patent/CN101977073A/en
Application granted granted Critical
Publication of CN101977073B publication Critical patent/CN101977073B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Radio Relay Systems (AREA)
  • Input Circuits Of Receivers And Coupling Of Receivers And Audio Equipment (AREA)

Abstract

The invention discloses a system for bidirectional authentication of a satellite receiving terminal and a receiving antenna, which is characterized in that the satellite receiving terminal and the receiving antenna are connected through a coaxial cable for data communication, and the satellite receiving terminal supplies power to the receiving antenna through the coaxial cable; the satellite receiving terminal internal authentication module generates random numbers according to a set period, encrypts the random numbers and sends the encrypted random numbers to a receiving antenna, the receiving antenna internal authentication module receives the encrypted data, decrypts the encrypted data and returns the decrypted data to the satellite receiving terminal, the satellite receiving terminal receives the data and then decrypts the data and judges whether the data is consistent with the random data sent before, the satellite receiving terminal stops supplying power to the receiving antenna if the data is inconsistent with the random data, and the receiving antenna performs primary authentication according to the mode if the data is consistent with the random data; if the authentication is successful, the antenna normally works in the set period, otherwise, the antenna stops working. The system has the advantages of small influence on both receiving parties, high safety, simple structure, easy realization, low cost and suitability for wide popularization.

Description

卫星接收终端与接收天线的双向认证系统 Two-way Authentication System of Satellite Receiving Terminal and Receiving Antenna

技术领域technical field

本发明涉及一种卫星接收终端与接收天线的双向认证系统。The invention relates to a two-way authentication system for a satellite receiving terminal and a receiving antenna.

背景技术Background technique

中星9号直播卫星的发射升空和广播电视“村村通”工程的建设,代表着中国第一代电视卫星直播系统的建成,也预示着我国电视卫星直播进入了一个崭新的阶段并将得到蓬勃的发展。如何有效的控制和利用卫星资源和相关设备成为了课题。例如“村村通”工程的公益普及性质,决定了接收终端和卫星天线都是由政府出资采购。现有技术方法不能保证上述设备的专用性,尤其是卫星天线,这就需要一种终端与天线的相互认证的方法及装置。The launch of the ChinaSat 9 live broadcast satellite and the construction of the radio and television "Village to Village" project represent the completion of China's first-generation TV satellite live broadcast system, and also indicate that my country's TV satellite live broadcast has entered a new stage and will get vigorous development. How to effectively control and utilize satellite resources and related equipment has become a topic. For example, the public welfare nature of the "Village Access" project determines that the receiving terminals and satellite antennas are all purchased by the government. The methods in the prior art cannot guarantee the specificity of the above equipment, especially the satellite antenna, which requires a method and device for mutual authentication between the terminal and the antenna.

现有的卫星接收系统中实现接收天线专用的常用方法有采用非标准下变频LNB(下变频器又称高频头,接收天线的主要组成部分)、特殊LNB供电电压等,这些方法都有一些缺点。非标准下变频导致了现有产业中的大量标准器件无法使用,天线的LNB和终端的TUNER(调谐器)都需要定制。特殊LNB供电电压很容易改造供电电路越过限制。所以这些都不是最佳的解决方法。In the existing satellite receiving system, the commonly used methods for realizing the dedicated receiving antenna include the use of non-standard down-conversion LNB (the down-converter is also called high-frequency head, the main component of the receiving antenna), special LNB power supply voltage, etc. These methods have some shortcoming. Non-standard down-conversion makes a large number of standard devices in the existing industry unusable, and both the LNB of the antenna and the TUNER (tuner) of the terminal need to be customized. Special LNB supply voltage is easy to modify the supply circuit to cross the limit. So these are not optimal solutions.

发明内容Contents of the invention

本发明的目的是针对目前卫星接收终端将走进普通用户中,为了保证接收天线设备使用的专用性、更好地维护国家的法规和市场的秩序,提供一种卫星接收终端与接收天线之间基于规定协议相互认证系统。本发明采用的技术方案如下:The purpose of the present invention is to provide a satellite receiving terminal and receiving antenna between the satellite receiving terminal and the receiving antenna in order to ensure the specificity of the use of the receiving antenna equipment and better maintain the order of the country's regulations and the market, aiming at the fact that the current satellite receiving terminal will enter ordinary users. Mutual authentication system based on specified protocol. The technical scheme that the present invention adopts is as follows:

一种卫星接收终端与接收天线的双向认证的装置,其特征在于卫星接收终端和接收天线通过同轴电缆连接进行数据通讯,同时卫星接收终端通过同轴电缆为接收天线供电;A device for two-way authentication between a satellite receiving terminal and a receiving antenna, characterized in that the satellite receiving terminal and the receiving antenna are connected through a coaxial cable for data communication, and at the same time, the satellite receiving terminal supplies power to the receiving antenna through the coaxial cable;

所述卫星接收终端包括认证模块A;所述认证模块A包括随机数产生器A、加密模块A、解密模块B和比较认证模块A;The satellite receiving terminal includes an authentication module A; the authentication module A includes a random number generator A, an encryption module A, a decryption module B and a comparison authentication module A;

所述随机数产生器A,用于卫星接收终端产生验证过程中使用的随机数;The random number generator A is used for the satellite receiving terminal to generate the random number used in the verification process;

所述加密模块A,用于对随机数产生器A产生的随机数或解密模块B解密的数据进行加密处理;The encryption module A is used to encrypt the random number generated by the random number generator A or the data decrypted by the decryption module B;

所述解密模块B,用于对卫星接收终端接收到的接收天线传回的加密数据进行解密处理;The decryption module B is used to decrypt the encrypted data sent back by the receiving antenna received by the satellite receiving terminal;

所述比较认证模块A,用于对随机数产生器A产生的随机数同解密模块B解密数据进行比较,同时将比较结果发送给卫星接收终端进行处理;The comparison authentication module A is used to compare the random number generated by the random number generator A with the decrypted data of the decryption module B, and simultaneously send the comparison result to the satellite receiving terminal for processing;

所述接收天线包括认证模块B、可控电源和高频头;The receiving antenna includes an authentication module B, a controllable power supply and a tuner;

所述高频头,用于接收卫星信号并变频放大后通过同轴电缆传送给卫星接收终端;The high-frequency head is used to receive satellite signals and transmit them to satellite receiving terminals through coaxial cables after frequency conversion and amplification;

所述认证模块B包括随机数产生器B、加密模块B、解密模块A和比较认证模块B;The authentication module B includes a random number generator B, an encryption module B, a decryption module A and a comparison authentication module B;

所述随机数产生器B,用于接收天线产生验证过程中使用的随机数;The random number generator B is used for receiving antennas to generate random numbers used in the verification process;

所述加密模块B,用于对随机数产生器B产生的随机数或解密模块A解密的随机数进行加密处理;The encryption module B is used to encrypt the random number generated by the random number generator B or the random number decrypted by the decryption module A;

所述解密模块A,用于对接收天线接收到的加密数据进行解密处理;The decryption module A is used to decrypt the encrypted data received by the receiving antenna;

所述比较认证模块B,用于对随机数产生器B产生的随机数与解密模块A还原的数据进行比较,并将比较结果发送给可控电源;The comparison authentication module B is used to compare the random number generated by the random number generator B with the data restored by the decryption module A, and send the comparison result to the controllable power supply;

所述可控电源,用于接收比较验证单元的结果来决定对高频头按设定时间供电还是断电;The controllable power supply is used to receive the result of the comparison and verification unit to decide whether to supply power to the tuner according to the set time or to cut off the power;

所述卫星接收终端内认证模块A中的随机数产生器A按设定周期产生随机数传送给加密模块A进行加密,然后将此数据通过同轴电缆发送给接收天线,所述接收天线内认证模块B接收到加密的数据后,通过解密模块A将数据解密,解密的数据通过加密模块B加密后传给卫星接收终端,所述卫星接收终端收到数据后,通过认证模块A中的解密模块B将收到的数据解密后送给比较认证模块A,比较认证模块A判断此数据与之前发送的随机数据是否一致,不一致卫星接收终端停止向接收天线供电,一致则接收天线内认证模块B中的随机数产生器B产生随机数传送给加密模块B进行加密,然后将此数据通过同轴电缆发送给卫星接收终端,所述卫星接收终端内认证模块A接收到加密的数据后,通过解密模块B将数据解密,解密的数据通过加密模块A加密后传给接收天线,所述接收天线收到数据后,通过认证模块B中的解密模块A将收到的数据解密后送给比较认证模块B,比较认证模块B判断此数据与之前发送给卫星接收终端的随机数据是否一致,不一致接收天线控制可控电源停止对高频头供电;一致则接收天线控制可控电源在上述周期时间内对高频头进行供电。The random number generator A in the authentication module A in the satellite receiving terminal generates a random number according to a set period and transmits it to the encryption module A for encryption, and then sends this data to the receiving antenna through a coaxial cable, and the authentication in the receiving antenna After the module B receives the encrypted data, it decrypts the data through the decryption module A, and the decrypted data is encrypted by the encryption module B and then transmitted to the satellite receiving terminal. After the satellite receiving terminal receives the data, it passes the decryption module in the authentication module A B decrypts the received data and sends it to comparison authentication module A. Comparison authentication module A judges whether the data is consistent with the random data sent before. If it is inconsistent, the satellite receiving terminal stops supplying power to the receiving antenna. If it is consistent, the authentication module B in the receiving antenna The random number generator B generates random numbers and transmits them to the encryption module B for encryption, and then sends the data to the satellite receiving terminal through the coaxial cable. After the authentication module A in the satellite receiving terminal receives the encrypted data, it passes the decryption module B decrypts the data, and the decrypted data is encrypted by the encryption module A and transmitted to the receiving antenna. After the receiving antenna receives the data, the decryption module A in the authentication module B decrypts the received data and sends it to the comparison authentication module B. , comparing the authentication module B to judge whether this data is consistent with the random data sent to the satellite receiving terminal before. If it is inconsistent, the receiving antenna controls the controllable power supply to stop supplying power to the tuner; frequency head for power supply.

一种卫星接收终端与接收天线的双向认证的方法,其特征在于包括如下步骤:A method for two-way authentication of a satellite receiving terminal and a receiving antenna, characterized in that it comprises the following steps:

步骤一:验证由卫星接收终端发起;Step 1: The verification is initiated by the satellite receiving terminal;

步骤二:卫星接收终端和接收天线之间的通讯协议提前指定,卫星接收终端按照该协议经认证模块产生符合协议的随机数字并采用加密算法进行加密,并且将该数据周期性地发送给接收天线;Step 2: The communication protocol between the satellite receiving terminal and the receiving antenna is specified in advance, and the satellite receiving terminal generates a random number conforming to the protocol through the authentication module according to the protocol and encrypts it with an encryption algorithm, and periodically sends the data to the receiving antenna ;

步骤三:接收天线中的认证模块将卫星接收终端发过来的数据进行解密,然后再将此数据加密并返回给卫星接收终端;Step 3: The authentication module in the receiving antenna decrypts the data sent by the satellite receiving terminal, and then encrypts the data and returns it to the satellite receiving terminal;

步骤四:卫星接收终端收到接收天线发回的数据,并进行解密,然后将解密后的数据同该周期产生的随机数字进行比较,如果数据一致,则进行步骤五,否则提示天线设备认证失败;Step 4: The satellite receiving terminal receives the data sent back by the receiving antenna, and decrypts it, and then compares the decrypted data with the random number generated in this period. If the data is consistent, go to step 5, otherwise it prompts that the antenna device authentication fails ;

步骤五:接收天线按照上述协议经认证模块产生符合协议的随机数并采用加密算法进行加密,并且将该数据发送给卫星接收终端;Step 5: The receiving antenna generates a random number conforming to the protocol through the authentication module according to the above protocol and encrypts it with an encryption algorithm, and sends the data to the satellite receiving terminal;

步骤六:卫星接收终端中的认证模块将接收天线发过来的数据进行解密,然后再将此数据加密发送给接收天线;Step 6: The authentication module in the satellite receiving terminal decrypts the data sent by the receiving antenna, and then encrypts the data and sends it to the receiving antenna;

步骤七:接收天线接收卫星接收终端发回的数据,解密后将其与步骤五产生的随机数进行比较,如果数据一致,则进行步骤八,否则切断接收天线中高频头电源;Step 7: The receiving antenna receives the data sent back by the satellite receiving terminal, and compares it with the random number generated in step 5 after decryption. If the data is consistent, proceed to step 8, otherwise cut off the power supply of the LNB in the receiving antenna;

步骤八:接收天线认证成功,高频头在该周期时间内获得供电后,继续进行步骤二。Step 8: The receiving antenna is authenticated successfully, and after the LNB receives power within this period, proceed to Step 2.

所述步骤四还包括卫星接收终端获知天线设备认证失败后,停止向介绍天线供电的步骤。The fourth step also includes the step of stopping power supply to the introduction antenna after the satellite receiving terminal learns that the authentication of the antenna device fails.

所述步骤二和步骤五中的加密算法采用DES、AES或RSA加密算法。The encryption algorithm in the step 2 and step 5 adopts DES, AES or RSA encryption algorithm.

同现有技术相比本发明的优点是显而易见的,具体如下:Compared with the prior art, the advantages of the present invention are obvious, specifically as follows:

1)现有一些技术,很容易被破解,而本发明相互传递的是随机变化的信息,不可模仿,增加了破解难度。1) Some existing technologies are easy to be cracked, but the present invention transmits randomly changing information to each other, which cannot be imitated and increases the difficulty of cracking.

2)周期性的身份认证,对卫星接收终端和接收天线性能的影响降至最小。2) Periodic identity authentication minimizes the impact on the performance of satellite receiving terminals and receiving antennas.

3)极大地保证了卫星接收终端和接收天线之间的专用性。3) Greatly guarantee the specificity between the satellite receiving terminal and the receiving antenna.

4)本发明只需要在LNB上增加一个安全微控制器,终端上硬件做极小的改变,易于实现。4) The present invention only needs to add a safety microcontroller on the LNB, and the hardware on the terminal needs to be changed very little, which is easy to realize.

另外,由于其结构简单,不仅便于生产,而且成本低廉适于广泛推广。In addition, because of its simple structure, it is not only convenient for production, but also low in cost and suitable for wide popularization.

附图说明Description of drawings

图1为本发明所述的系统结构示意图;Fig. 1 is a schematic diagram of the system structure of the present invention;

图2为本发明所述认证模块组成结构示意图;Fig. 2 is a schematic diagram of the composition and structure of the authentication module of the present invention;

图3为本发明所述认证过程流程图。Fig. 3 is a flowchart of the authentication process of the present invention.

图中:1、卫星接收终端,2、接收天线,3、同轴电缆,5、认证模块A,501、随机数产生器A,502、加密模块A,503、解密模块B,504、比较认证模块A,6、认证模块B,601、随机数产生器B,602、加密模块B,603、解密模块A,604、比较认证模块B,7、可控电源,8、高频头。In the figure: 1. Satellite receiving terminal, 2. Receiving antenna, 3. Coaxial cable, 5. Authentication module A, 501, random number generator A, 502, encryption module A, 503, decryption module B, 504, comparative authentication Module A, 6, authentication module B, 601, random number generator B, 602, encryption module B, 603, decryption module A, 604, comparison authentication module B, 7, controllable power supply, 8, tuner.

具体实施方式Detailed ways

结合附图及具体实施方式对本发明做进一步的阐述:In conjunction with accompanying drawing and specific embodiment, the present invention is further elaborated:

如图1和图2所示,卫星接收终端1和接收天线2通过同轴电缆3连接进行数据通讯,同时卫星接收终端1通过同轴电缆3为接收天线2供电;As shown in Figure 1 and Figure 2, the satellite receiving terminal 1 and the receiving antenna 2 are connected through the coaxial cable 3 for data communication, and the satellite receiving terminal 1 supplies power to the receiving antenna 2 through the coaxial cable 3;

所述卫星接收终端1包括认证模块A5;所述认证模块A5包括随机数产生器A501、加密模块A502、解密模块B503和比较认证模块A504;The satellite receiving terminal 1 includes an authentication module A5; the authentication module A5 includes a random number generator A501, an encryption module A502, a decryption module B503 and a comparison authentication module A504;

所述随机数产生器A501,用于卫星接收终端1产生验证过程中使用的随机数;The random number generator A501 is used for the satellite receiving terminal 1 to generate random numbers used in the verification process;

所述加密模块A502,用于对随机数产生器A501产生的随机数或解密模块B解密的数据进行加密处理;The encryption module A502 is used to encrypt the random number generated by the random number generator A501 or the data decrypted by the decryption module B;

所述解密模块B503,用于对卫星接收终端1接收到的接收天线2传回的加密数据进行解密处理;The decryption module B503 is used to decrypt the encrypted data sent back by the receiving antenna 2 received by the satellite receiving terminal 1;

所述比较认证模块A504,用于对随机数产生器A501产生的随机数同解密模块B503解密数据进行比对,同时将比对结果发送给卫星接收终端进行处理;The comparison authentication module A504 is used to compare the random number generated by the random number generator A501 with the decrypted data of the decryption module B503, and send the comparison result to the satellite receiving terminal for processing;

所述接收天线2包括认证模块B6、可控电源7和高频头8;The receiving antenna 2 includes an authentication module B6, a controllable power supply 7 and a tuner 8;

所述高频头8,用于接收卫星信号并变频放大后通过同轴电缆3传送给卫星接收终端1;The tuner 8 is used to receive the satellite signal and transmit it to the satellite receiving terminal 1 through the coaxial cable 3 after frequency conversion and amplification;

所述认证模块B6包括随机数产生器B601、加密模块B602、解密模块A603和比较认证模块B604;The authentication module B6 includes a random number generator B601, an encryption module B602, a decryption module A603 and a comparison authentication module B604;

所述随机数产生器B601,用于接收天线2产生验证过程中使用的随机数;The random number generator B601 is used for the receiving antenna 2 to generate the random number used in the verification process;

所述加密模块B602,用于对随机数产生器B601产生的随机数或解密模块A603解密的随机数进行加密处理;The encryption module B602 is used to encrypt the random number generated by the random number generator B601 or the random number decrypted by the decryption module A603;

所述解密模块A603,用于对接收天线2接收到的加密数据进行解密处理;The decryption module A603 is used to decrypt the encrypted data received by the receiving antenna 2;

所述比较认证模块B604,用于对随机数产生器B601产生的随机数与解密模块A603还原的数据进行比较,并将比较结果发送给可控电源;The comparison authentication module B604 is used to compare the random number generated by the random number generator B601 with the data restored by the decryption module A603, and send the comparison result to the controllable power supply;

所述可控电源7,用于接收比较验证单元的结果来决定对高频头8按设定时间供电还是断电;The controllable power supply 7 is used to receive the result of the comparison and verification unit to decide whether to supply power to the tuner 8 according to the set time or to cut off the power;

所述卫星接收终端1内认证模块A5中的随机数产生器A501按设定周期产生随机数传送给加密模块A502进行加密,然后将此数据通过同轴电缆3发送给接收天线2,所述接收天线2内认证模块B6接收到加密的数据后,通过解密模块A603将数据解密,解密的数据通过加密模块B602加密后传给卫星接收终端1,所述卫星接收终端1收到数据后,通过认证模块A5中的解密模块B503将收到的数据解密后送给比较认证模块A504,比较认证模块A504判断此数据与之前发送的随机数据是否一致,不一致卫星接收终端1停止向接收天线2供电;一致则接收天线2内认证模块B6中的随机数产生器B601产生随机数传送给加密模块B602进行加密,然后将此数据通过同轴电缆3发送给卫星接收终端1,所述卫星接收终端1内认证模块A5接收到加密的数据后,通过解密模块B503将数据解密,解密的数据通过加密模块A502加密后传给接收天线2,所述接收天线2收到数据后,通过认证模块B6中的解密模块A603将收到的数据解密后送给比较认证模块B604,比较认证模块B604判断此数据与之前发送给卫星接收终端1的随机数据是否一致,不一致接收天线2控制可控电源7停止对高频头8供电;一致则接收天线2控制可控电源7在上述周期时间内对高频头8进行供电。其中终端与天线的通信可以采用DISEQC(Digital Satellite Equipment Control)2.0协议,也可以自定义通讯协议将数据调制到同轴电缆上。一般终端的认证模块作为通讯中的主设备,天线作为通讯中的从设备。天线认证终端可以根据事先约定好的间隔周期来进行。终端请求天线对其进行认证,如果在约定的周期内终端没有请求认证,则天线可以采取相应的限制使用的措施,如切断信号。认证模块A5可以利用卫星接收终端1的CPU用软件实现,也可以使用独立的认证模块如采用安全微控制器或其它专用电路。认证模块B6和可控电源采用安全微控制器实现,内置于LNB中。同时随机数、密钥长度和加密算法可以根据硬件的性能及安全性的要求灵活选择。The random number generator A501 in the authentication module A5 in the satellite receiving terminal 1 generates a random number according to a set period and transmits it to the encryption module A502 for encryption, and then sends this data to the receiving antenna 2 through the coaxial cable 3, and the receiving After the authentication module B6 in the antenna 2 receives the encrypted data, it decrypts the data through the decryption module A603, and the decrypted data is encrypted by the encryption module B602 and then transmitted to the satellite receiving terminal 1. After the satellite receiving terminal 1 receives the data, it passes the authentication. The decryption module B503 in the module A5 decrypts the received data and sends it to the comparison and authentication module A504, and the comparison and authentication module A504 judges whether the data is consistent with the random data sent before, and if it is inconsistent, the satellite receiving terminal 1 stops supplying power to the receiving antenna 2; Then the random number generator B601 in the authentication module B6 in the receiving antenna 2 generates a random number and transmits it to the encryption module B602 for encryption, and then sends this data to the satellite receiving terminal 1 through the coaxial cable 3, and the authentication in the satellite receiving terminal 1 After the module A5 receives the encrypted data, it decrypts the data through the decryption module B503, and the decrypted data is encrypted by the encryption module A502 and then transmitted to the receiving antenna 2. After the receiving antenna 2 receives the data, it passes the decryption module in the authentication module B6 A603 decrypts the received data and sends it to the comparison and authentication module B604. The comparison and authentication module B604 judges whether the data is consistent with the random data sent to the satellite receiving terminal 1 before. 8 power supply; if consistent, the receiving antenna 2 controls the controllable power supply 7 to supply power to the tuner 8 within the above cycle time. Among them, the communication between the terminal and the antenna can adopt the DISEQC (Digital Satellite Equipment Control) 2.0 protocol, or you can customize the communication protocol to modulate the data onto the coaxial cable. Generally, the authentication module of the terminal is used as the master device in the communication, and the antenna is used as the slave device in the communication. The antenna authentication terminal may be performed according to a pre-agreed interval period. The terminal requests the antenna to authenticate it. If the terminal does not request authentication within the agreed period, the antenna can take corresponding measures to limit usage, such as cutting off the signal. The authentication module A5 can be realized by using the CPU of the satellite receiving terminal 1 with software, or an independent authentication module such as a safety microcontroller or other special circuits can be used. The authentication module B6 and the controllable power supply are implemented with a secure microcontroller, built into the LNB. At the same time, random numbers, key lengths and encryption algorithms can be flexibly selected according to hardware performance and security requirements.

如图3所示流程图结合现有以下假设对本发明做进一步说明:The flow chart shown in Figure 3 further describes the present invention in conjunction with the existing following assumptions:

1)假设随机数为64位,密钥A、B也为64位,分别置于两个认证模块中;1) Assume that the random number is 64 bits, and the keys A and B are also 64 bits, which are respectively placed in two authentication modules;

2)假设加密算法采用DES、AES或RSA加密算法;2) Suppose the encryption algorithm adopts DES, AES or RSA encryption algorithm;

3)假设每5分钟认证一次(即周期为5分钟),且先是终端对天线进行认证,而后是天线对终端进行认证。每认证通过一次终端向天线供电5分钟,可控电源向高频头供电5分钟;3) It is assumed that authentication is performed every 5 minutes (that is, the period is 5 minutes), and the terminal authenticates the antenna first, and then the antenna authenticates the terminal. Every time the authentication is passed, the terminal supplies power to the antenna for 5 minutes, and the controllable power supply supplies power to the tuner for 5 minutes;

4)假设通讯协议采用22KHz的DISEQC 2.0协议;4) Assume that the communication protocol adopts the 22KHz DISEQC 2.0 protocol;

5)假设等待数据返回时间为10秒,超时表示相应设备不符合要求,认证天线失败直接对天线设备停止供电,认证终端失败可控电源对高频头停止供电。5) Assuming that the waiting time for data return is 10 seconds, the timeout indicates that the corresponding equipment does not meet the requirements, the authentication antenna fails to directly stop power supply to the antenna equipment, and the controllable power supply stops power supply to the LNB if the authentication terminal fails.

结合图3,本方法实现如下:Combined with Figure 3, this method is implemented as follows:

S100:卫星接收终端开机,并对天线系统进行供电,接收天线进入工作状态。S100: The satellite receiving terminal starts up, and supplies power to the antenna system, and the receiving antenna enters a working state.

S200:卫星接收终端产生随机数R,使用DES算法和密钥A加密后得到A(R),并通过同轴电缆使用DISEQC 2.0协议发送给接收天线。S200: The satellite receiving terminal generates a random number R, encrypts it with the DES algorithm and the key A to obtain A(R), and sends it to the receiving antenna through the coaxial cable using the DISEQC 2.0 protocol.

S300:接收天线接收到上述加密数据,利用密钥A解密得到R’,再用密钥B加密得到B(R’),并将此数回传给卫星接收终端。S300: The receiving antenna receives the above-mentioned encrypted data, uses the key A to decrypt to obtain R', and then uses the key B to encrypt to obtain B(R'), and sends this number back to the satellite receiving terminal.

S400:卫星接收终端接收天线发回的数据,用密钥B解密得到R”,通过比较器将其与原来的数据R进行比较,如果数据一致,则进行接收天线对卫星接收终端的认证,进行S500,否则卫星接收终端将停止对接收天线供电并提示认证失败。S400: The satellite receiving terminal receives the data sent back by the antenna, decrypts it with the key B to obtain R", and compares it with the original data R through the comparator. If the data is consistent, the receiving antenna authenticates the satellite receiving terminal, and proceeds S500, otherwise, the satellite receiving terminal will stop supplying power to the receiving antenna and prompt that the authentication fails.

S500:因为是主从通讯机制,卫星接收终端对接收天线发送认证请求,接收天线产生随机数r,用密钥B加密得到B(r),发送给卫星接收终端。S500: Because it is a master-slave communication mechanism, the satellite receiving terminal sends an authentication request to the receiving antenna, and the receiving antenna generates a random number r, encrypts it with the key B to obtain B(r), and sends it to the satellite receiving terminal.

S600:卫星接收终端接收到上述加密数据,用密钥B解密得到r’,用密钥A加密得到A(r’),将此数回传给接收天线。S600: The satellite receiving terminal receives the above-mentioned encrypted data, decrypts it with the key B to obtain r', encrypts it with the key A to obtain A(r'), and sends this number back to the receiving antenna.

S700:接收天线接收到卫星接收终端发回的数据后,用密钥A解密得到r”,通过比较器将其与原来的数据r进行比较,如果数据一致,则进行S800,否则接收天线的可控电源停止对高频头供电并且卫星接收终端提示认证失败。S700: After the receiving antenna receives the data sent back by the satellite receiving terminal, decrypt it with the key A to obtain r", compare it with the original data r through the comparator, if the data is consistent, go to S800, otherwise the receiving antenna can The control power supply stops supplying power to the tuner and the satellite receiving terminal prompts that the authentication fails.

S800:对高频头供电5分钟,5分钟结束后继续进行S200。S800: Power on the tuner for 5 minutes, and continue to S200 after 5 minutes.

为安全起见S400还可包括卫星接收终端获知天线设备认证失败后,停止向介绍天线供电的步骤。For the sake of safety, S400 may also include the step of stopping power supply to the introducing antenna after the satellite receiving terminal learns that the authentication of the antenna device fails.

以上所述,仅为本发明较佳的具体实施方式,但本发明的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本发明揭露的技术范围内,根据本发明的技术方案及其发明构思加以等同替换或改变,都应涵盖在本发明的保护范围之内。The above is only a preferred embodiment of the present invention, but the scope of protection of the present invention is not limited thereto, any person familiar with the technical field within the technical scope disclosed in the present invention, according to the technical solution of the present invention Any equivalent replacement or change of the inventive concepts thereof shall fall within the protection scope of the present invention.

Claims (3)

1. the device of the two-way authentication of satellite receiving terminal and reception antenna, it is characterized in that satellite receiving terminal (1) is connected by coaxial cable (3) with reception antenna (2) carries out data communication, and satellite receiving terminal (1) be that reception antenna (2) is powered by coaxial cable (3) simultaneously;
Described satellite receiving terminal (1) comprises authentication module A (5); Described authentication module A (5) comprises tandom number generator A (501), encrypting module A (502), deciphering module B (503) and compares authentication module A (504);
Described tandom number generator A (501) is used for satellite receiving terminal (1) and produces the random number that proof procedure uses;
Described encrypting module A (502) is used for random number or deciphering module B decrypted data that tandom number generator A (501) produces are carried out encryption;
Described deciphering module B (503), the enciphered data that the reception antenna (2) that is used for that satellite receiving terminal (1) is received is passed back is decrypted processing;
Described relatively authentication module A (504) is used for the random number that tandom number generator A (501) produces is compared with deciphering module B (503) data decryption, simultaneously comparative result is sent to satellite receiving terminal and handles;
Described reception antenna (2) comprises authentication module B (6), controllable electric power (7) and tuner (8);
Described tuner (8) is used for sending satellite receiving terminal (1) to by coaxial cable (3) after receiving satellite signal and frequency conversion are amplified;
Described authentication module B (6) comprises tandom number generator B (601), encrypting module B (602), deciphering module A (603) and compares authentication module B (604);
Described tandom number generator B (601) is used for reception antenna (2) and produces the random number that proof procedure uses;
Described encrypting module B (602) is used for the random number of tandom number generator B (601) generation or the random number of deciphering module A (603) deciphering are carried out encryption;
Described deciphering module A (603) is used for the enciphered data that reception antenna (2) receives is decrypted processing;
Described relatively authentication module B (604) is used for the random number of tandom number generator B (601) generation and the data of deciphering module A (603) reduction are compared, and comparative result is sent to controllable electric power;
Described controllable electric power (7), the result who is used to receive the comparatively validate unit decides tuner (8) is pressed still outage of setting-up time power supply;
Tandom number generator A (501) among the interior authentication module A of described satellite receiving terminal (1) (5) sends encrypting module A (502) to by setting cycle generation random number and encrypts, then these data are sent to reception antenna (2) by coaxial cable (3), after the interior authentication module B of described reception antenna (2) (6) receives ciphered data, by deciphering module A (603) with data decryption, decrypted data is passed to satellite receiving terminal (1) after encrypting by encrypting module B (602), after described satellite receiving terminal (1) is received data, give comparison authentication module A (504) by the deciphering module B (503) among the authentication module A (5) after with the data decryption of receiving, relatively authentication module A (504) judges whether these data are consistent with the random data that sends before, inconsistent satellite receiving terminal (1) stops to power to reception antenna (2), the unanimity then tandom number generator B (601) among the interior authentication module B of reception antenna (2) (6) produces random number and sends encrypting module B (602) to and encrypt, then these data are sent to satellite receiving terminal (1) by coaxial cable (3), after the interior authentication module A of described satellite receiving terminal (1) (5) receives ciphered data, by deciphering module B (503) with data decryption, decrypted data is passed to reception antenna (2) after encrypting by encrypting module A (502), after described reception antenna (2) is received data, give comparison authentication module B (604) by the deciphering module A (603) among the authentication module B (6) after with the data decryption of receiving, relatively authentication module B (604) judges whether these data are consistent with the random data that sends to satellite receiving terminal (1) before, inconsistent reception antenna (2) control controllable electric power (7) stops tuner (8) power supply, and unanimity then reception antenna (2) control controllable electric power (7) was powered to tuner (8) in above-mentioned cycle time.
2. the method for the two-way authentication of satellite receiving terminal and reception antenna is characterized in that comprising the steps:
Step 1: checking is initiated by satellite receiving terminal;
Step 2: the communications protocol between satellite receiving terminal and the reception antenna is specified in advance, satellite receiving terminal produces the random digit of protocol compliant and adopts cryptographic algorithm to encrypt according to the authenticated module of this agreement, and with this cycle data send to reception antenna;
Step 3: the authentication module in the reception antenna is decrypted the data that satellite receiving terminal sends, and then with this data encryption and return to satellite receiving terminal;
Step 4: satellite receiving terminal is received the data that reception antenna is beamed back, and is decrypted, and the random digit that the data after will deciphering then produced with this cycle compares, if data consistent then carries out step 5, otherwise prompting antenna equipment authentification failure;
Step 5: reception antenna produces the random number of protocol compliant and adopts cryptographic algorithm to encrypt according to the authenticated module of above-mentioned agreement, and these data are sent to satellite receiving terminal;
Step 6: the authentication module in the satellite receiving terminal is decrypted the data that reception antenna sends, and then this data encryption is sent to reception antenna;
Step 7: reception antenna receives the data that satellite receiving terminal is beamed back, after the deciphering itself and random number that step 5 produces compared, if data consistent then carries out step 8, otherwise a cut-out reception antenna medium-high frequency power supply;
Step 8: reception antenna authentication success, tuner are proceeded step 2 obtain power supply in this cycle time after.
3. the method for the two-way authentication of a kind of satellite receiving terminal according to claim 2 and reception antenna, it is characterized in that described step 4 comprises that also satellite receiving terminal is known the antenna equipment authentification failure after, stop step to reception antenna power supply.
CN2010105317429A 2010-10-28 2010-10-28 Bidirectional authentication system for satellite receiving terminal and receiving antenna Active CN101977073B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2010105317429A CN101977073B (en) 2010-10-28 2010-10-28 Bidirectional authentication system for satellite receiving terminal and receiving antenna

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2010105317429A CN101977073B (en) 2010-10-28 2010-10-28 Bidirectional authentication system for satellite receiving terminal and receiving antenna

Publications (2)

Publication Number Publication Date
CN101977073A true CN101977073A (en) 2011-02-16
CN101977073B CN101977073B (en) 2012-11-14

Family

ID=43576926

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010105317429A Active CN101977073B (en) 2010-10-28 2010-10-28 Bidirectional authentication system for satellite receiving terminal and receiving antenna

Country Status (1)

Country Link
CN (1) CN101977073B (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102694589A (en) * 2012-05-22 2012-09-26 航天数字传媒有限公司 Tuner, receiver and satellite receiving system
CN103260153A (en) * 2012-05-07 2013-08-21 中国交通通信信息中心 Satellite communication service system
CN104038937A (en) * 2014-06-24 2014-09-10 中国科学院软件研究所 Network access authentication method applicable to satellite mobile communication network
CN104469330A (en) * 2015-01-04 2015-03-25 安徽波维电子科技有限公司 Antitheft device for outdoor unit of satellite television receiving system
CN104486601A (en) * 2015-01-04 2015-04-01 安徽波维电子科技有限公司 Anti-theft method of outdoor unit of satellite television receiving system
CN106714005A (en) * 2016-12-27 2017-05-24 深圳市九洲电器有限公司 Satellite set-top box data transmission method and system
WO2018053844A1 (en) * 2016-09-26 2018-03-29 华为技术有限公司 Security authentication method, integrated circuit and system

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004040209A (en) * 2002-06-28 2004-02-05 Toppan Printing Co Ltd Server, ic card, method of contents distribution, method of acquiring/processing the contents, and program
CN1643816A (en) * 2002-01-24 2005-07-20 因特威夫通讯有限公司 Communication system having a community wireless local area network for voice and high speed data communication
KR20070048468A (en) * 2005-11-04 2007-05-09 엘지전자 주식회사 Authorized authentication system using mobile communication terminal and its operation method
CN201409136Y (en) * 2009-02-12 2010-02-17 深圳市华达玻璃钢通信制品有限公司 A satellite early warning information receiving device
CN101783729A (en) * 2009-01-15 2010-07-21 许丰 Mini-tuner condition receiving system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1643816A (en) * 2002-01-24 2005-07-20 因特威夫通讯有限公司 Communication system having a community wireless local area network for voice and high speed data communication
JP2004040209A (en) * 2002-06-28 2004-02-05 Toppan Printing Co Ltd Server, ic card, method of contents distribution, method of acquiring/processing the contents, and program
KR20070048468A (en) * 2005-11-04 2007-05-09 엘지전자 주식회사 Authorized authentication system using mobile communication terminal and its operation method
CN101783729A (en) * 2009-01-15 2010-07-21 许丰 Mini-tuner condition receiving system
CN201409136Y (en) * 2009-02-12 2010-02-17 深圳市华达玻璃钢通信制品有限公司 A satellite early warning information receiving device

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103260153A (en) * 2012-05-07 2013-08-21 中国交通通信信息中心 Satellite communication service system
CN102694589A (en) * 2012-05-22 2012-09-26 航天数字传媒有限公司 Tuner, receiver and satellite receiving system
CN102694589B (en) * 2012-05-22 2015-09-02 航天数字传媒有限公司 A kind of tuner, receiver and satellite receiving system
CN104038937A (en) * 2014-06-24 2014-09-10 中国科学院软件研究所 Network access authentication method applicable to satellite mobile communication network
CN104469330A (en) * 2015-01-04 2015-03-25 安徽波维电子科技有限公司 Antitheft device for outdoor unit of satellite television receiving system
CN104486601A (en) * 2015-01-04 2015-04-01 安徽波维电子科技有限公司 Anti-theft method of outdoor unit of satellite television receiving system
CN104486601B (en) * 2015-01-04 2017-06-30 安徽波维电子科技有限公司 The outdoor unit theft preventing method of satellite television receiving system
CN104469330B (en) * 2015-01-04 2017-09-12 安徽波维电子科技有限公司 The outdoor unit anti-theft device of satellite television receiving system
WO2018053844A1 (en) * 2016-09-26 2018-03-29 华为技术有限公司 Security authentication method, integrated circuit and system
CN106714005A (en) * 2016-12-27 2017-05-24 深圳市九洲电器有限公司 Satellite set-top box data transmission method and system
CN106714005B (en) * 2016-12-27 2019-08-13 深圳市九洲电器有限公司 Satellite set top box data transmission method and system

Also Published As

Publication number Publication date
CN101977073B (en) 2012-11-14

Similar Documents

Publication Publication Date Title
CN110177354B (en) Wireless control method and system for vehicle
CN111028397B (en) Authentication method and device, and vehicle control method and device
EP3529965B1 (en) System and method for configuring a wireless device for wireless network access
US9392453B2 (en) Authentication
CN101977073B (en) Bidirectional authentication system for satellite receiving terminal and receiving antenna
CN103152366B (en) Obtain the method for terminal authorization, terminal and server
US8745695B2 (en) Hybrid networking master passphrase
KR101239297B1 (en) System for protecting information and method thereof
CN105577680A (en) Key generation method, encrypted data analysis method, device and key management center
CN105553932A (en) Method, device and system of remote control safety binding of intelligent home appliance
TW200950441A (en) Mobile station and base station and method for deriving traffic encryption key
WO2019007172A1 (en) Method and device for anti-tracking of bluetooth
CN113163375B (en) Air certificate issuing method and system based on NB-IoT communication module
CN105592071A (en) Method and device for authorization between devices
WO2019007063A1 (en) Battery charging and swapping equipment, and authentication method and system for object requesting for battery charging or swapping
CN108306793B (en) Intelligent device, intelligent home gateway, and method and system for establishing connection
CN114070579A (en) A method and system for authentication and authentication of industrial control business based on quantum key
CN114040394B (en) Communication method and electronic equipment based on derived key
CN107682380B (en) Cross authentication method and device
CN108199851B (en) Data secure transmission method, device and system
CN114124513B (en) Identity authentication method, system, device, electronic equipment and readable medium
CN201918992U (en) A two-way authentication device for a satellite receiving terminal and a receiving antenna
CN107426724B (en) Method and system, terminal and authentication server for smart home appliance to access wireless network
CN112214753A (en) Authentication method and device, electronic equipment and storage medium
CN116112236B (en) Authentication and data transmission method based on intelligent device ecology and intelligent television

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant