CN104065480A - Security processing methods and devices for terminal and authentication side, and security processing system - Google Patents
Security processing methods and devices for terminal and authentication side, and security processing system Download PDFInfo
- Publication number
- CN104065480A CN104065480A CN201310091389.0A CN201310091389A CN104065480A CN 104065480 A CN104065480 A CN 104065480A CN 201310091389 A CN201310091389 A CN 201310091389A CN 104065480 A CN104065480 A CN 104065480A
- Authority
- CN
- China
- Prior art keywords
- module
- information
- safety
- sound wave
- wave signal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000012545 processing Methods 0.000 title claims abstract description 224
- 238000003672 processing method Methods 0.000 title claims abstract description 31
- 230000010365 information processing Effects 0.000 claims description 23
- 230000005540 biological transmission Effects 0.000 claims description 9
- 230000003993 interaction Effects 0.000 abstract description 11
- 238000000034 method Methods 0.000 description 24
- 238000004891 communication Methods 0.000 description 16
- 238000010586 diagram Methods 0.000 description 16
- 238000005516 engineering process Methods 0.000 description 6
- 239000000284 extract Substances 0.000 description 3
- 238000012546 transfer Methods 0.000 description 3
- 230000000694 effects Effects 0.000 description 2
- 230000002452 interceptive effect Effects 0.000 description 2
- 230000003466 anti-cipated effect Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The invention provides security processing methods and devices for a terminal and an authentication side and a security processing system. The security processing method of the terminal includes the following steps: controlling a modem module to modulates sound wave signals which carry security information; controlling a microphone to send the sound wave signals which carry the security information; controlling the microphone to receive sound wave signals which carry a security processing result; and controlling the modem module to modulate the security processing result. The security processing method of the authentication side includes the following steps: receiving the sound wave signals which carry the security information through a sound wave channel; processing the security information in the sound wave signals and generating the sound wave signals which carry the security processing result; and sending the sound wave signals which carry the security processing result to the outside through the sound wave channel. Through implementation of the security processing methods and devices for the terminal and the authentication side and the security processing system, the terminal is used as a main device to complete interaction of the security information and a security authentication result with the authentication side through use of the sound wave signals so that a problem that a current terminal and an authentication side are both used as slave devices so that data interaction cannot be carried out is solved.
Description
Technical Field
The present invention relates to the field of security authentication, and in particular, to a security processing method for a terminal, a security processing method for an authentication end, a security processing apparatus for a terminal, a security processing apparatus for an authentication end, and a security processing system.
Background
With the development of internet technology, the payment technology on a terminal (such as a computer and the like) is increasingly improved, and a mainstream payment authentication method is that the terminal is connected with an external security authentication device (such as a USB KEY and the like) through a standard interface (such as a USB interface), and the security authentication device mainly plays a role in performing security authentication on software in the terminal device and protecting data transmission.
With the popularization of intelligent terminals (such as smart phones), authentication payment on the terminals is accepted by the public, and the current mature security authentication equipment (only a standard USB interface) cannot be directly connected to the terminals (the USB data interface of the terminal is not the standard USB interface), and needs to be connected through a special data transfer line, so that the use experience of users is reduced; meanwhile, when the terminal and the security authentication device are connected to other devices (such as a computer and the like) through the USB interface, the terminals and the security authentication device both operate as slave devices (selected for communication by the computer, and the terminals and the security authentication device cannot select the computer for communication), that is, the data interfaces on the terminals and the security authentication device both perform data interactive transmission with the opposite terminal device as a slave device mode, and when the terminals and the security authentication device are connected through the data interfaces of the two slave device modes, the data interactive communication between the two terminal devices cannot be performed, which is a main reason why the current security authentication device cannot be applied to the terminal for security processing, so that the terminal cannot use the current mature security authentication device.
Therefore, how to provide a security processing technology that can widely apply the security authentication device/authentication end to the terminal is a technical problem that needs to be solved urgently by those skilled in the art.
Disclosure of Invention
The invention provides a terminal, a security processing method and device of an authentication end and a security processing system, and solves the problem that the current authentication end cannot be applied to the terminal for information security processing.
The invention provides a terminal security processing method, which is used for the security processing of a terminal, wherein the terminal comprises a microphone, a modulation and demodulation module and an information processing module for generating security information and receiving a security processing result; in one embodiment, the security processing method of the terminal includes: controlling a modulation and demodulation module to modulate a sound wave signal carrying safety information; controlling a microphone to send a sound wave signal carrying safety information; controlling a microphone to receive a sound wave signal carrying a safety processing result; and controlling the modulation and demodulation module to demodulate a safety processing result.
The invention provides a security processing method of an authentication end, which comprises the following steps: receiving a sound wave signal carrying safety information through a sound wave channel; processing safety information in the sound wave signals and generating sound wave signals carrying safety processing results; and sending out the sound wave signal carrying the safety processing result through the sound wave channel.
The invention provides a security processing device of a terminal, which is used for security processing of the terminal, wherein the terminal comprises a microphone, a modulation and demodulation module and an information processing module used for generating security information and receiving a security processing result, and in one embodiment, the security processing device of the terminal comprises: the system comprises a main control module, a microphone control module and a modulation and demodulation control module, wherein the main control module is used for controlling the microphone control module and the modulation and demodulation control module to work; the modulation and demodulation control module is used for controlling the modulation and demodulation module to modulate the sound wave signal carrying the safety information and also controlling the modulation and demodulation module to demodulate a safety processing result; the microphone control module is used for controlling the microphone to send the sound wave signal carrying the safety information and also used for controlling the microphone to receive the sound wave signal carrying the safety processing result.
The invention provides a security processing device of an authentication end, which comprises the following components in one embodiment: the system comprises a receiving module, a processing module and a sending module, wherein the receiving module is used for receiving sound wave signals carrying safety information through a sound wave channel; the processing module is used for processing the sound wave signal carrying the safety information to generate a sound wave signal carrying a safety processing result; and the sending module is used for sending the sound wave signal carrying the safety processing result to the outside through the sound wave channel.
Also, the present invention provides a secure processing system, which in one embodiment comprises: the invention provides a terminal security processing device and an authentication end security processing device.
The invention has the beneficial effects that:
according to the terminal, the safety processing method and device of the authentication end and the safety processing system, the terminal sends safety information to the authentication end by using the sound wave signal under the control of the built-in safety processing device and receives the safety processing result fed back by the authentication end through the sound wave signal, and in the whole authentication process, the terminal is used as a main device to perform data interaction with the authentication end used as a slave device end, so that the problem that data interaction communication between devices cannot be performed when the current terminal and the safety authentication device are connected through data interfaces of two slave device modes is solved, the safety processing of data by using the safety authentication device on the terminal is realized, and the cost for popularizing safety authentication payment on the terminal is reduced; meanwhile, because the safety information is transmitted through the sound wave, the terminal and the authentication end do not need to be connected through a data interface, the problem that the authentication end and the terminal data interface are incompatible and need to be connected through a data transfer line in the prior art is solved, and the use experience of a user is enhanced.
Drawings
FIG. 1 is a diagram of a secure processing system according to an embodiment of the present invention;
fig. 2 is a schematic diagram of a configuration of a security processing device of the terminal in fig. 1;
FIG. 3 is a schematic diagram of another configuration of the security processing device of the terminal of FIG. 1;
fig. 4 is a schematic structural diagram of the security processing device of the authentication end in fig. 1;
FIG. 5 is a schematic diagram of an arrangement of the processing module of FIG. 4;
fig. 6 is a schematic diagram illustrating a security processing method of a terminal according to an embodiment of the present invention;
fig. 7 is a schematic diagram of a security processing method of an authentication end according to an embodiment of the present invention;
fig. 8 is a schematic diagram of a security processing method according to an embodiment of the present invention.
Detailed Description
The main idea of the invention is as follows: the terminal and the authentication end transmit the safety information to be authenticated and the safety processing result of the safety information through sound waves. The security information in the present invention includes: authentication information which needs authentication processing, such as authentication of terminal identity and/or software authentication and/or payment authentication, and data information which needs encryption processing, such as generation, reception and/or uploading, and the like; the terminal in the invention is a mobile phone, a notebook computer, a palm computer PAD and other terminal equipment which can carry out processing such as mobile payment, software authentication signature and the like.
The invention will be further explained by means of embodiments in conjunction with the attached drawings.
FIG. 1 is a schematic diagram of a secure processing system provided by an embodiment of the present invention; as can be seen from fig. 1, in this embodiment, the secure processing system 1 provided by the present invention includes: the terminal security processing device 11 and the authentication end security processing device 12 are connected through a sound wave channel, and complete data interaction by using a sound wave signal, specifically:
the safety processing device 11 of the terminal is used for controlling a modulation and demodulation module in the terminal to modulate a sound wave signal carrying safety information and controlling a microphone in the terminal to send the sound wave signal carrying the safety information;
the safety processing device 12 at the authentication end is configured to receive the acoustic wave signal carrying the safety information through the acoustic wave channel, perform safety processing on the acoustic wave signal carrying the safety information, generate an acoustic wave signal carrying a safety processing result, and send the acoustic wave signal carrying the safety processing result to the outside through the acoustic wave channel;
the safety processing device 11 of the terminal is further configured to control a microphone in the terminal to receive the sound wave signal carrying the safety processing result, and control a modem module in the terminal to demodulate the safety processing result.
In the embodiment shown in fig. 1, the security processing device 11 of the terminal and the security processing device 12 of the authentication end use the acoustic signal to complete the interaction of the security signal and the security processing result through the acoustic channel; specifically, the security processing device 11 of the terminal controls a microphone in the terminal to transmit security information to be authenticated to the security processing device 12 of the authentication end through a sound wave signal; the safety processing device 12 at the authentication end detects and receives the sound wave signal carrying the safety information, carries out safety processing on the safety information carried in the sound wave signal to generate a safety processing result, and then sends the safety processing result to the safety processing device 11 of the terminal through the sound wave signal; the security processing device 11 of the terminal controls a microphone in the terminal to receive the sound wave signal carrying the security processing result, extracts the security processing result, and performs subsequent communication of authentication information and/or encrypted data according to the security processing result.
Preferentially, the security processing system 1 provided in the embodiment shown in fig. 1 may further include a server, the security processing device 11 of the terminal is further configured to control an uploading module in the terminal to upload the obtained security processing result to the server, and the server is configured to receive and process the security processing result uploaded by the terminal; specifically, the server and the terminal carry out interaction of authentication information and encrypted data; the server is connected with the terminal in a wireless communication mode, and the specific communication mode can be as follows: one of the mobile communication access technologies such as 2G/3G/4G, etc., and may also be one of the wireless local area network access technologies such as WiFi and zigbee (zigbee). Specifically, the following steps can be performed: when the server authenticates the identity/software signature of the terminal, the terminal uploads the extracted authentication end to the server through a wireless communication network and then feeds back authentication result information after the authentication information is subjected to security processing, and the server executes operation according to the authentication result information; when the server and the terminal carry out data encryption transmission, the terminal uploads the data encryption information fed back after the extracted authentication end carries out security processing on the data information to the server through a wireless communication network, and the server carries out decryption processing on the received data encryption information to obtain original data and processes the original data.
Fig. 2 is a schematic diagram of a configuration of a security processing device of the terminal in fig. 1; as shown in fig. 2, in the present embodiment, the security processing device 11 of the terminal provided by the invention includes a main control module 111, a microphone control module 112, and a modulation/demodulation control module 113; the security processing means 11 of the terminal is used for security processing of the terminal, which comprises a microphone, a modem module, and an information processing module for generating security information and receiving the security processing result, and, at this time,
the main control module 111 is used for controlling the microphone control module 112 and the modulation and demodulation control module 113 to work; specifically, when a terminal user needs to perform security processing, the security processing function is enabled, and the main control module 111 starts to control the microphone control module 112 and the modulation and demodulation control module 113 to work;
the modulation and demodulation control module 113 is configured to control a modulation and demodulation module in the terminal to modulate a sound wave signal carrying safety information, and also control the modulation and demodulation module in the terminal to demodulate a safety processing result;
the microphone control module 112 is configured to control a microphone in the terminal to transmit a sound wave signal carrying the security information, and further configured to control the microphone in the terminal to receive the sound wave signal carrying the security processing result.
In another preferred embodiment of the present invention, the modem control module 113 in the embodiment shown in fig. 2 comprises a modulation control sub-module and a demodulation control sub-module, wherein,
the modulation control sub-module is used for controlling the modulation and demodulation module to modulate the safety information generated by the information processing module into the sound wave signal and generate a sound wave signal carrying the safety information; specifically, when the terminal needs to perform security processing, an information processing module in the terminal generates security information needing to be performed with security processing, at this time, the main control module 111 issues a modulation command to a modulation control sub-module in the modulation and demodulation control module 113, and the modulation control sub-module controls the modulation and demodulation module to modulate the security information generated by the information processing module into a sound wave signal, generate a sound wave signal carrying the security information, and send the sound wave signal to a microphone in the terminal for transmission; the security information here refers to information that requires an external security device, such as the security processing device 12 of the authentication end shown in fig. 1, to perform security authentication and/or data encryption;
the demodulation control sub-module is used for controlling the modulation and demodulation module to demodulate the sound wave signal which is received by the microphone and carries the safety processing result, and transmitting the safety processing result obtained by demodulation to the information processing module; specifically, when the terminal performs a security processing process and a sound wave signal carrying a security processing result is received by a microphone in the terminal, the main control module 111 issues a demodulation command to a demodulation control sub-module in the modulation and demodulation control module 113, the demodulation control sub-module controls the modulation and demodulation module to perform demodulation processing on the sound wave signal carrying the security processing result received by the microphone, and transmits the demodulated security processing result to the information processing module; the security processing result here is the result of security processing performed by an external security device, such as the security processing apparatus 12 at the authentication end shown in fig. 1, on the security information in the acoustic wave signal carrying the security signal sent by the microphone in the terminal, including the security processing results of authentication passing/failing, encryption success and encrypted data information, encryption failure and reason, and the like.
In a preferred embodiment of the present invention, the microphone control module 112 in the embodiment shown in fig. 2 comprises a transmission control sub-module and a reception control sub-module, wherein,
the sending control sub-module is used for controlling the microphone to send the sound wave signal carrying the safety information through the sound wave channel; specifically, when the terminal performs a security processing, after a modem module in the terminal generates a sound wave signal carrying security information, the main control module 111 issues a sending command to a sending control sub-module in the microphone control module 112, and the sending control sub-module controls a microphone in the terminal to send the sound wave signal carrying the security information through a sound wave channel;
the receiving control sub-module is used for controlling the microphone to receive the sound wave signal carrying the safety processing result through the sound wave channel; specifically, after a microphone in the terminal sends a sound wave signal carrying safety information through a sound wave channel, the main control module 111 issues a receiving command to a receiving control sub-module in the microphone control module 112, the receiving control sub-module controls the microphone to enter a state of receiving the sound wave signal, receives the sound wave signal carrying a safety processing result through the sound wave channel, and transmits the received sound wave signal carrying the safety processing result to a modulation and demodulation module in the terminal for processing.
FIG. 3 is a schematic diagram of another configuration of the security processing device of the terminal of FIG. 1; as can be seen from fig. 3, this embodiment is an improvement on the embodiment shown in fig. 2, in this embodiment, the secure processing apparatus 11 of the terminal shown in fig. 2 further includes an upload control module 114, and correspondingly, the terminal further includes an upload module for uploading the secure processing result received by the information processing module in the terminal to the server; at this time, the upload control module 114 is configured to control the upload module to upload the security processing result received by the information processing module to the server, and the main control module 111 is further configured to control the upload control module 114 to work; specifically, when the security processing result received by the security processing module needs to be sent to the server, the main control module 111 issues a last command to the upload control module 114, and the upload control module 114 controls the upload module to upload the security processing result received by the information processing module to the server through a wireless communication network, such as WIFI.
Fig. 4 is a schematic structural diagram of the security processing device of the authentication end in fig. 1; as can be seen from fig. 4, in this embodiment, the secure processing device 12 of the authentication end provided by the present invention includes: a receiving module 121, a processing module 122, and a sending module 123, wherein,
the receiving module 121 is configured to receive an acoustic signal carrying security information through an acoustic channel; the receiving module 121 transmits the acoustic wave signal carrying the security information to the processing module 122 for processing; specifically, the receiving module 121 may be a device with sound wave detecting and receiving functions, such as a microphone;
the processing module 122 is configured to process the safety information in the acoustic wave signal, and generate an acoustic wave signal carrying a safety processing result; the processing module 122 transmits the sound wave signal carrying the safety processing result to the transmitting module 123 for transmission;
the sending module 123 is configured to send an acoustic signal carrying a safety processing result to the outside through an acoustic channel; specifically, the sending module 123 may be a sound playing device such as a sound player.
FIG. 5 is a schematic diagram of an arrangement of the processing module of FIG. 4; as can be seen from fig. 5, in this embodiment, the processing module 122 in the secure processing device 12 of the authentication end provided by the present invention includes: a demodulation module 1221, an authentication module 1222, and a modulation module 1223; wherein,
the demodulation module 1221 is configured to decode the acoustic wave signal carrying the security information received by the receiving module 121 into a digital signal carrying the security information;
the authentication module 1222 is configured to perform security processing on the security information in the digital signal obtained after demodulation by the demodulation module 1221 to generate a security processing result;
the modulation module 1223 is configured to modulate the safety processing result into an acoustic signal, and generate an acoustic signal carrying the modulation of the safety processing result; the modulation module 1223 transmits the sound wave signal carrying the modulation of the safety processing result to the transmitting module 123 for transmission.
In another embodiment, the authentication module 1222 may be implemented by a processing chip with a built-in security algorithm/encryption algorithm, or a chip supporting installation of a security algorithm/encryption algorithm, where the security information is authentication information and/or data information, and specifically, in this embodiment, the authentication module 1222 in the embodiment shown in fig. 5 includes an authentication sub-module and an encryption sub-module; wherein,
the authentication submodule is used for authenticating the authentication information when the safety information is the authentication information and generating authentication result information;
and the encryption submodule is used for encrypting the data information to generate data encryption information when the safety information is the data information.
In another embodiment, the secure processing device 12 of the authentication end in the embodiment shown in fig. 4 further includes a power supply module; the power supply module is used for providing electric energy required by the whole authentication end during working. Because the authentication end provided by the invention can achieve the effect of authenticating the safety information without being connected with the terminal, if the authentication end is not connected with the terminal, the functions of receiving the sound wave signal, processing and verifying the sound wave signal, generating and sending a new sound wave signal and the like need an additional power supply device for supplying power; therefore, in this embodiment, the security processing device 12 at the authentication end provided in the embodiment shown in fig. 4 is modified, and a power supply module with a power supply function is added, where the power supply module may be a battery, an external power interface, or the like.
It is anticipated that the functional modules in all the above embodiments may be combined with each other when the functions do not conflict with each other, and various embodiments formed by combining, merging, deleting, etc. the functional modules are also protected by the present invention.
Meanwhile, the invention also provides a terminal security processing method, which is used for the security processing of the terminal, wherein the terminal comprises a microphone, a modulation and demodulation module and an information processing module for generating security information and receiving a security processing result; fig. 6 is a schematic diagram illustrating a security processing method of a terminal according to an embodiment of the present invention; as can be seen from fig. 6, the security processing method of the terminal provided by the present invention includes the following steps:
s601: controlling a modulation and demodulation module to modulate a sound wave signal carrying safety information;
the step of controlling the modulation and demodulation module to modulate the sound wave signal carrying the safety information specifically comprises the following steps: the modulation and demodulation control module controls the modulation and demodulation module to modulate the safety information generated by the information processing module into the sound wave signal to generate a sound wave signal carrying the safety information;
s602: controlling a microphone to send a sound wave signal carrying safety information;
the step of controlling the microphone to send the sound wave signal carrying the safety information specifically comprises the following steps: the microphone control module controls the microphone to send a sound wave signal carrying safety information through a sound wave channel;
s603: controlling a microphone to receive a sound wave signal carrying a safety processing result;
the step of controlling the microphone to receive the sound wave signal carrying the safety processing result specifically comprises the following steps: the microphone control module controls the microphone to receive the sound wave signal carrying the safety processing result through the sound wave channel;
s604: controlling a modulation and demodulation module to demodulate a safety processing result;
the step of controlling the modulation and demodulation module to demodulate the safety processing result specifically comprises the following steps: and the modulation and demodulation control module controls the modulation and demodulation module to demodulate the sound wave signal which is received by the microphone and carries the safety processing result, and transmits the safety processing result obtained by demodulation to the information processing module.
In another embodiment, the security processing method of the terminal provided in the embodiment shown in fig. 6 further includes, after extracting the security processing result: and uploading the safety processing result received by the information processing module to a server by an uploading module in the control terminal.
Meanwhile, the present invention also provides a security processing method of the authentication end, and fig. 7 is a schematic diagram of an authentication method of the authentication end according to an embodiment of the present invention; as can be seen from fig. 7, the security processing method of the authentication end provided by the present invention includes the following steps:
s701: receiving a sound wave signal carrying safety information through a sound wave channel;
s702: carrying out safety processing on the sound wave signal carrying the safety information to generate a sound wave signal carrying a safety processing result;
the step S702 may specifically include: decoding the sound wave signal carrying the safety information into a digital signal carrying the safety information; extracting and processing the safety information to generate a safety processing result; modulating the safety processing result into a sound wave signal; the local safety information comprises authentication information and/or data information;
further, the step of processing the security information to generate a security processing result includes:
when the safety information is authentication information, performing authentication processing on the authentication information to generate authentication result information; when the safety information is data information, encrypting the data information to generate data encryption information;
s703: and sending out the sound wave signal carrying the safety processing result through the sound wave channel.
The invention is further explained below with reference to fig. 8 and an application example; fig. 8 is a schematic diagram of a security processing method according to an embodiment of the present invention; in the present embodiment, the following assumptions are made: the terminal in the safety processing system is a mobile phone, the authentication module in the authentication end is a USB-KEY chip, the safety processing system also comprises a server which is set as an authentication server of a bank website, and the authentication method is a method for authenticating the identity of a user; under the above assumption, as shown in fig. 8, the authentication method provided by the present invention includes the following steps:
s801: and the mobile phone is bound with the authentication end.
The specific process of binding the mobile phone and the authentication end is as follows:
calling mobile phone identity authentication information by the mobile phone, modulating the mobile phone identity authentication information into data in an audio format, sending out a sound wave signal containing the mobile phone identity authentication information obtained by modulation through a loudspeaker/microphone on the mobile phone, and waiting for receiving the sound wave signal fed back by an authentication end by the loudspeaker/microphone;
the authentication end detects that a sound wave signal appears in the sound wave communication range of the authentication end, receives and demodulates the sound wave signal through a microphone and obtains mobile phone identity authentication information, authenticates the identity of the mobile phone by utilizing a USB-KEY chip with an authentication algorithm built in the authentication end according to the mobile phone identity authentication information, and gives an authentication result (authentication pass/fail); the authentication end modulates the authentication result into data in an audio format, adds the data into sound wave information, and sends the data out through a loudspeaker/sounder;
the mobile phone receives the sound wave signal fed back by the authentication end through the microphone, demodulates the received sound wave to obtain the authentication result carried in the sound wave signal, and sends the extracted authentication result to the server;
and the server judges whether the mobile phone is successfully bound with the authentication end according to the received authentication result. Specifically, the method can be as follows: if the authentication result is that the authentication is passed, the mobile phone is considered to be successfully bound with the authentication end, and step S802 is executed; if the authentication result is that the authentication is not passed, the mobile phone is considered to be failed to be bound with the authentication end, and the mobile phone is informed to perform the next binding attempt or replace the authentication end equipment.
After the binding is finished, the mobile phone and the authentication end can perform data interaction by using sound waves, the mobile phone is connected with the server through a wireless network, the binding process is performed to ensure the data transmission safety of a communication channel between the mobile phone and the authentication end and the safety of the communication channel between the mobile phone and the server, and the authentication end can also perform encryption processing on the transmitted data in the binding process.
S802: the mobile phone needs to execute payment operation and select an operation instruction.
S803: the mobile phone transmits the selected operation instruction to the authentication end by using the sound wave signal.
The method specifically comprises the following steps: the mobile phone user selects an operation instruction, the mobile phone modulates operation instruction data corresponding to the operation instruction selected by the user into data in an audio format, the data is added into a sound wave signal, and the sound wave signal is sent to a bound authentication end through a loudspeaker/microphone for authentication.
S804: and the authentication end carries out encryption processing.
The method specifically comprises the following steps: the authentication end detects and receives the sound wave signal which is sent by the mobile phone and carries the operation instruction data, decodes the sound wave signal to obtain the operation instruction data which needs to be encrypted, and encrypts the operation instruction data to obtain the encrypted operation instruction data.
S805: the authentication end transmits the encrypted operation instruction data to the mobile phone by using the sound wave signal.
The method specifically comprises the following steps: the authentication terminal modulates the encrypted operation instruction data into data in an audio format, adds the data into a sound wave signal, and sends the data to the bound mobile phone through the sounder/loudspeaker.
S806: and the mobile phone extracts and uploads the safety processing result information.
The method specifically comprises the following steps: the mobile phone receives the sound wave signal sent by the authentication end through the microphone, decodes the sound wave signal to obtain a signal carrying encrypted operation instruction data, extracts the encrypted operation instruction data and uploads the encrypted operation instruction data to the server through the wireless communication network.
S807: and the server processes and feeds back a safety processing result.
The method specifically comprises the following steps: and the server decrypts the encrypted operation instruction data by using the built-in public key, processes the obtained operation instruction and feeds back a security processing result to the mobile phone through the wireless communication network.
S808: and the mobile phone receives and displays the safety processing result.
And the mobile phone displays the safety processing result fed back by the server to the user.
As is apparent from the description of the above examples, the present invention can be implemented to achieve at least the following advantageous effects:
the terminal and the authentication end transmit safety information through sound waves, and in the process of data safety processing, the terminal is used as a main device to perform data interaction with the authentication end used as a slave device end, so that the problem that data interaction communication between devices cannot be performed when the current terminal and the safety authentication device are connected through data interfaces in two slave device modes is solved, the terminal can perform data safety processing by using the safety authentication device, and the cost for popularizing safety authentication payment on the terminal is reduced;
furthermore, because the terminal is not required to be connected with the authentication end through an interface in the safety processing process of the data, the problem that the authentication end is not compatible with the data interface of the terminal and is required to be connected through a data transfer line in the prior art is solved, and the use experience of a user is enhanced;
furthermore, the terminal and the authentication end transmit safety information through sound waves, so that the universality of the safety authentication technology is greatly enhanced;
furthermore, before authentication, the terminal is bound with the authentication end, so that the information security of the terminal in the data interaction and mobile payment processes with the authentication is improved.
The foregoing is a more detailed description of the present invention that is presented in conjunction with specific embodiments, and the practice of the invention is not to be considered limited to those descriptions. For those skilled in the art to which the invention pertains, several simple deductions or substitutions can be made without departing from the spirit of the invention, and all shall be considered as belonging to the protection scope of the invention.
Claims (15)
1. The terminal is used for the security processing of the terminal, and comprises a microphone, a modulation and demodulation module and an information processing module for generating security information and receiving a security processing result; the terminal security processing method comprises the following steps:
controlling the modulation and demodulation module to modulate a sound wave signal carrying safety information;
controlling the microphone to send the sound wave signal carrying the safety information;
controlling the microphone to receive a sound wave signal carrying a safety processing result;
and controlling the modulation and demodulation module to demodulate the safety processing result.
2. The secure processing method of a terminal according to claim 1,
the step of controlling the modulation and demodulation module to modulate the acoustic wave signal carrying the safety information specifically comprises: controlling the modulation and demodulation module to modulate the safety information generated by the information processing module into an acoustic wave signal to generate the acoustic wave signal carrying the safety information;
the step of controlling the modulation and demodulation module to demodulate the safety processing result specifically comprises: and controlling the modulation and demodulation module to demodulate the sound wave signal which is received by the microphone and carries the safety processing result, and transmitting the safety processing result obtained by demodulation to the information processing module.
3. The secure processing method of a terminal according to claim 1,
the step of controlling the microphone to transmit the sound wave signal carrying the safety information specifically includes: controlling the microphone to send the sound wave signal carrying the safety information through a sound wave channel;
the step of controlling the microphone to receive the sound wave signal carrying the safety processing result specifically comprises: and controlling the microphone to receive the sound wave signal carrying the safety processing result through a sound wave channel.
4. A security processing method of a terminal according to any one of claims 1 to 3, wherein the terminal further comprises an upload module; the security processing method of the terminal further comprises the following steps: and controlling the uploading module to upload the safety processing result received by the information processing module to a server.
5. A security processing method of an authentication end is characterized by comprising the following steps:
receiving a sound wave signal carrying safety information through a sound wave channel;
carrying out safety processing on the sound wave signal carrying the safety information to generate a sound wave signal carrying a safety processing result;
and sending the sound wave signal carrying the safety processing result outwards through a sound wave channel.
6. The security processing method of the authentication end according to claim 5, wherein the step of performing security processing on the acoustic wave signal carrying the security information to generate the acoustic wave signal carrying the security processing result comprises:
decoding the sound wave signal carrying the safety information into a digital signal carrying the safety information;
extracting and carrying out safety processing on the safety information to generate a safety processing result;
and modulating the safety processing result into a sound wave signal.
7. The security processing method of the authentication end according to claim 6, wherein the security information is authentication information and/or data information; and performing security processing on the security information, wherein the step of generating the security processing result comprises the following steps:
when the safety information is authentication information, performing authentication processing on the authentication information to generate authentication result information;
and when the safety information is data information, encrypting the data information to generate encrypted data information.
8. The terminal security processing device is used for security processing of the terminal, and the terminal comprises a microphone, a modulation and demodulation module and an information processing module used for generating security information and receiving a security processing result; the security processing device of the terminal comprises: a main control module, a microphone control module and a modulation and demodulation control module, wherein,
the main control module is used for controlling the microphone control module and the modulation and demodulation control module to work;
the modulation and demodulation control module is used for controlling the modulation and demodulation module to modulate a sound wave signal carrying safety information and also controlling the modulation and demodulation module to demodulate a safety processing result;
the microphone control module is used for controlling the microphone to send the sound wave signal carrying the safety information and also used for controlling the microphone to receive the sound wave signal carrying the safety processing result.
9. The secure processing apparatus of a terminal according to claim 8, wherein the modem control module includes a modem control sub-module and a demodulation control sub-module, wherein,
the modulation control sub-module is used for controlling the modulation and demodulation module to modulate the safety information generated by the information processing module into an acoustic wave signal to generate the acoustic wave signal carrying the safety information;
the demodulation control sub-module is used for controlling the modulation and demodulation module to demodulate the sound wave signal which is received by the microphone and carries the safety processing result, and transmitting the safety processing result obtained by demodulation to the information processing module.
10. The secure processing apparatus of a terminal of claim 8, wherein the microphone control module comprises a transmission control sub-module and a reception control sub-module, wherein,
the sending control sub-module is used for controlling the microphone to send a sound wave signal carrying safety information through a sound wave channel;
and the receiving control sub-module is used for controlling the microphone to receive the sound wave signal carrying the safety processing result through the sound wave channel.
11. The security processing apparatus of a terminal according to any one of claims 8 to 10, wherein the terminal further comprises an upload module, the security processing apparatus further comprising an upload control module; the uploading control module is used for controlling the uploading module to upload the safety processing result received by the information processing module to the server, and the main control module is also used for controlling the work of the uploading control module.
12. A secure processing apparatus at an authentication end, comprising: a receiving module, a processing module and a sending module, wherein,
the receiving module is used for receiving the sound wave signal carrying the safety information through the sound wave channel;
the processing module is used for processing the sound wave signal carrying the safety information to generate a sound wave signal carrying a safety processing result;
and the sending module is used for sending the sound wave signal carrying the safety processing result outwards through a sound wave channel.
13. The secure processing apparatus of the certificate authority according to claim 12, wherein the processing module comprises: a demodulation module, an authentication module and a modulation module, wherein,
the demodulation module is used for decoding the sound wave signal carrying the safety information into a digital signal carrying the safety information;
the authentication module is used for extracting and carrying out safety processing on the safety information to generate a safety processing result;
the modulation module is used for modulating the safety processing result into a sound wave signal.
14. The security processing apparatus of the authentication end according to claim 13, wherein the security information is authentication information and/or data information; the authentication module comprises an authentication sub-module and an encryption sub-module, wherein,
the authentication submodule is used for performing authentication processing on the authentication information and generating authentication result information when the safety information is the authentication information;
and the encryption submodule is used for encrypting the data information and generating encrypted data information when the safety information is the data information.
15. A secure processing system, comprising: the security processing device of the terminal according to any one of claims 8 to 11, and the security processing device of the authentication end according to any one of claims 12 to 14.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310091389.0A CN104065480A (en) | 2013-03-21 | 2013-03-21 | Security processing methods and devices for terminal and authentication side, and security processing system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310091389.0A CN104065480A (en) | 2013-03-21 | 2013-03-21 | Security processing methods and devices for terminal and authentication side, and security processing system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104065480A true CN104065480A (en) | 2014-09-24 |
Family
ID=51553025
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310091389.0A Pending CN104065480A (en) | 2013-03-21 | 2013-03-21 | Security processing methods and devices for terminal and authentication side, and security processing system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104065480A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106911658A (en) * | 2016-06-07 | 2017-06-30 | 阿里巴巴集团控股有限公司 | The transmission method of data, data sending terminal, data receiver and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102223234A (en) * | 2011-06-17 | 2011-10-19 | 飞天诚信科技股份有限公司 | Electronic signature system and method based on audio communication |
| US20120051542A1 (en) * | 2010-08-25 | 2012-03-01 | Samsung Electro-Mechanics Co., Ltd. | Remote communication apparatus including security function and remote electric power metering system using the same |
| CN102655507A (en) * | 2012-04-17 | 2012-09-05 | 上海众人网络安全技术有限公司 | Information safety device and system and implementation method |
| CN102904718A (en) * | 2011-07-25 | 2013-01-30 | 付洪军 | Audio communication based information security equipment and communication method thereof |
-
2013
- 2013-03-21 CN CN201310091389.0A patent/CN104065480A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120051542A1 (en) * | 2010-08-25 | 2012-03-01 | Samsung Electro-Mechanics Co., Ltd. | Remote communication apparatus including security function and remote electric power metering system using the same |
| CN102223234A (en) * | 2011-06-17 | 2011-10-19 | 飞天诚信科技股份有限公司 | Electronic signature system and method based on audio communication |
| CN102904718A (en) * | 2011-07-25 | 2013-01-30 | 付洪军 | Audio communication based information security equipment and communication method thereof |
| CN102655507A (en) * | 2012-04-17 | 2012-09-05 | 上海众人网络安全技术有限公司 | Information safety device and system and implementation method |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106911658A (en) * | 2016-06-07 | 2017-06-30 | 阿里巴巴集团控股有限公司 | The transmission method of data, data sending terminal, data receiver and system |
| WO2017211201A1 (en) * | 2016-06-07 | 2017-12-14 | 阿里巴巴集团控股有限公司 | Data transmission method, data transmitter, data receiver, and system |
| EP3468135A4 (en) * | 2016-06-07 | 2019-06-12 | Alibaba Group Holding Limited | DATA TRANSMISSION METHOD, DATA TRANSMITTER, DATA RECEIVER, AND SYSTEM |
| US11070977B2 (en) | 2016-06-07 | 2021-07-20 | Advanced New Technologies Co., Ltd. | Data transmission method, data transmitter, data receiver, and system |
| CN106911658B (en) * | 2016-06-07 | 2021-08-06 | 创新先进技术有限公司 | Data transmission method, data transmitter, data receiver and system |
| US11109227B2 (en) | 2016-06-07 | 2021-08-31 | Advanced New Technologies Co., Ltd. | Data transmission method, data transmitter, data receiver, and system |
| US11290883B2 (en) | 2016-06-07 | 2022-03-29 | Advanced New Technologies Co., Ltd. | Data transmission method, data transmitter, data receiver, and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP5732538B2 (en) | Electronic equipment that communicates with external equipment by voice method | |
| KR101239297B1 (en) | System for protecting information and method thereof | |
| CN105764058B (en) | Method, device and system for accessing a network | |
| CN113259301A (en) | Account data sharing method and electronic equipment | |
| CN102523092B (en) | Audio-based non-contact integrated circuit (IC) card and mobile authentication data transmission device | |
| US20120230489A1 (en) | Apparatus and method for short range communication in mobile terminal | |
| CN103905200B (en) | A kind of identity identifying method and system based on sound wave communication | |
| CN102916869A (en) | Instant messaging method and system | |
| CN103780620A (en) | Network security method and network security system | |
| CN102780558A (en) | Data encryption and transmission method, algorithm distribution method, equipment and system | |
| CN101977073B (en) | Bidirectional authentication system for satellite receiving terminal and receiving antenna | |
| CN110278083A (en) | ID authentication request treating method and apparatus, equipment replacement method and apparatus | |
| CN112182624B (en) | Encryption method, encryption device, storage medium and electronic device | |
| CN103839160A (en) | Network transaction digital signing method and device | |
| CN203278851U (en) | Authenticated encryption device with wireless communication function | |
| CN104159224A (en) | Mobile terminal digital certification system and method | |
| US20150269574A1 (en) | Password key, security authentication system and security authentication method | |
| CN102904718A (en) | Audio communication based information security equipment and communication method thereof | |
| CN104065480A (en) | Security processing methods and devices for terminal and authentication side, and security processing system | |
| CN103701644A (en) | Operation and maintenance method and system of IT (information technology) equipment | |
| CN202918498U (en) | SIM card adapter, mobile terminal and digital signature authentication system | |
| CN104639326B (en) | A kind of method of controlling security based on certification, apparatus and system | |
| CN104660408A (en) | Security authentication method and device | |
| KR101107241B1 (en) | Apparatus and method for providing secret communication | |
| CN202872816U (en) | Instant messaging system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140924 |
|
| RJ01 | Rejection of invention patent application after publication |