CN104954137A - Method of virtual machine security certification based on domestic password technique - Google Patents
Method of virtual machine security certification based on domestic password technique Download PDFInfo
- Publication number
- CN104954137A CN104954137A CN201510339583.5A CN201510339583A CN104954137A CN 104954137 A CN104954137 A CN 104954137A CN 201510339583 A CN201510339583 A CN 201510339583A CN 104954137 A CN104954137 A CN 104954137A
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- security authentication
- resource pool
- security
- digital
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 27
- 230000005540 biological transmission Effects 0.000 claims abstract description 19
- 238000012795 verification Methods 0.000 claims abstract description 9
- 230000002452 interceptive effect Effects 0.000 claims abstract description 5
- 238000005516 engineering process Methods 0.000 claims description 24
- 238000004891 communication Methods 0.000 claims description 9
- 230000008569 process Effects 0.000 claims description 7
- 238000010586 diagram Methods 0.000 description 4
- 230000007246 mechanism Effects 0.000 description 2
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
Abstract
Description
技术领域 technical field
本发明公开一种虚拟机安全认证的方法,属于计算机技术安全领域,具体地说是一种基于国产密码技术的虚拟机安全认证的方法。 The invention discloses a virtual machine security authentication method, which belongs to the field of computer technology security, and specifically relates to a virtual machine security authentication method based on domestic encryption technology.
背景技术 Background technique
云计算和虚拟技术的广泛使用,可以有效节省物理硬件设备的投入,充分利用物理硬件设备的硬件资源,从而达到节能、减排和提升效率的目的。在云计算环境下,通过生成和管理一个个虚拟机来达到为用户提供应用服务。云计算通过部署大量的虚拟机提供服务,其虚拟机与虚拟机之间的信息交换均采用明文进行交换,但是同时却不能确认每一个虚拟机都是真实可信的,而且目前缺乏必要的安全认证管理措施,在终端用户使用服务或虚拟机中的资源时,亦不能建立有效的访问控制机制,直接导致云计算的服务存在身份无法确认、数据明文传输时有安全隐患等一系列的安全问题。为保证云计算内外部之间的可信交互,提升云计算安全管理能力,防止云计算资源的非法窃取,本发明提供了一种基于国产密码技术的虚拟机安全认证的方法,基于国产密码技术,结合电子认证、可信计算技术,建立适合云计算应用需求的安全认证资源池,来满足身份认证、访问控制和数据加密传输的安全应用,解决云计算环境中各虚拟机的身份认证、访问控制和数据加密传输问题,防止身份假冒,以及非法的资源访问和传输数据的泄密,对于身份真实性进行鉴别,是解决云计算安全的最有效的方案,而且方便易用。 The widespread use of cloud computing and virtual technology can effectively save the investment in physical hardware equipment and make full use of the hardware resources of physical hardware equipment, so as to achieve the purpose of energy saving, emission reduction and efficiency improvement. In a cloud computing environment, application services are provided to users by generating and managing virtual machines one by one. Cloud computing provides services by deploying a large number of virtual machines, and the information exchange between the virtual machines is exchanged in clear text, but at the same time, it cannot confirm that each virtual machine is authentic, and currently lacks the necessary security Authentication management measures cannot establish an effective access control mechanism when end users use services or resources in virtual machines, which directly leads to a series of security problems in cloud computing services, such as the identity cannot be confirmed, and data transmission in plain text has security risks. . In order to ensure the trusted interaction between the inside and outside of cloud computing, improve cloud computing security management capabilities, and prevent illegal theft of cloud computing resources, the present invention provides a virtual machine security authentication method based on domestic cryptography technology. Combining electronic authentication and trusted computing technology, a security authentication resource pool suitable for cloud computing application requirements is established to meet the security applications of identity authentication, access control and data encryption transmission, and to solve the identity authentication and access of each virtual machine in the cloud computing environment. It is the most effective solution to cloud computing security to solve the problem of control and data encryption transmission, prevent identity counterfeiting, illegal resource access and leak of transmitted data, and identify the authenticity of identity, and it is convenient and easy to use.
发明内容 Contents of the invention
本发明针对目前终端用户使用服务或虚拟机中的资源时,不能建立有效的访问控制机制,云计算的服务存在身份无法确认、数据明文传输时有安全隐患等一系列的安全问题,提供一种基于国产密码技术的虚拟机安全认证的方法,基于国产密码技术,结合电子认证、可信计算技术,建立适合云计算应用需求的安全认证资源池,来满足身份认证、访问控制和数据加密传输的安全应用,解决云计算环境中各虚拟机的身份认证、访问控制和数据加密传输问题。 The present invention aims at a series of security problems such as the inability to establish an effective access control mechanism when terminal users use resources in services or virtual machines, the identity of cloud computing services cannot be confirmed, and potential safety hazards when data is transmitted in plain text. The virtual machine security authentication method based on domestic cryptography technology, based on domestic cryptography technology, combined with electronic authentication and trusted computing technology, establishes a security authentication resource pool suitable for cloud computing application requirements to meet the requirements of identity authentication, access control and data encryption transmission. The security application solves the problems of identity authentication, access control and data encryption transmission of each virtual machine in the cloud computing environment.
本发明提出的具体方案是: The concrete scheme that the present invention proposes is:
一种基于国产密码技术的虚拟机安全认证的方法,通过建立基于云计算的安全认证资源池,对虚拟机进行安全认证;安全认证资源池由物理设备层和中间件层组成,物理设备层通过设备实现基本功能,中间件层实现数字证书的认证、密钥加解密的功能,物理设备层与虚拟机通过中间件层进行通信; A virtual machine security authentication method based on domestic cryptographic technology, by establishing a security authentication resource pool based on cloud computing, to perform security authentication on virtual machines; the security authentication resource pool consists of a physical device layer and a middleware layer, and the physical device layer passes The device implements basic functions, the middleware layer realizes the authentication of digital certificates, and the functions of key encryption and decryption, and the physical device layer communicates with the virtual machine through the middleware layer;
国家电子认证体系签发可信根证书给安全认证资源池,安全认证资源池再分配数字证书给虚拟机,用于与其他虚拟机或终端用户进行身份认证、加密通信,在与其他虚拟机或终端用户进行信息交换时,采用数字证书识别双方的身份,未能验证通过的不能访问;在进行信息交换的时候,由安全认证资源池为虚拟机提供身份认证、访问控制和数据加密传输服务。 The national electronic certification system issues trusted root certificates to the security certification resource pool, and the security certification resource pool distributes digital certificates to virtual machines for identity authentication and encrypted communication with other virtual machines or terminal users. When users exchange information, digital certificates are used to identify the identities of both parties, and those who fail to pass the verification cannot access; when information is exchanged, the security authentication resource pool provides virtual machines with identity authentication, access control, and data encryption transmission services.
所述虚拟机签发数据证书的过程为:虚拟机与安全认证资源池建立通信,将虚拟机的名称提供给安全认证资源池,安全认证资源池分配虚拟机的数字证书,通过安装在虚拟机操作系统中的驱动来实现自动加载导入。 The process of issuing a data certificate for the virtual machine is as follows: the virtual machine establishes communication with the security authentication resource pool, provides the name of the virtual machine to the security authentication resource pool, and the security authentication resource pool allocates the digital certificate of the virtual machine, and installs the digital certificate in the virtual machine to operate The driver in the system is used to realize automatic loading and importing.
所述虚拟机与其他虚拟机进行身份认证,先进行数字证书的交换,再各自通过安全认证资源池内的可信根证书验证交换得到的虚拟机的数字证书是否与可信根证书分配的一致。 The virtual machine performs identity authentication with other virtual machines, first exchanges digital certificates, and then verifies whether the digital certificates of the exchanged virtual machines are consistent with those assigned by trusted root certificates through the trusted root certificates in the security authentication resource pool.
所述虚拟机与其他虚拟机或终端用户加密通信,所有交互的数据信息,均采用数字信封技术和数字签名技术,实现信息的加密传输和完整性校验。 The virtual machine communicates encrypted with other virtual machines or end users, and all interactive data information adopts digital envelope technology and digital signature technology to realize encrypted transmission and integrity verification of information.
所述虚拟机与其他虚拟机进行加密通信的过程为:通信的虚拟机双方生成私钥和对称密钥,第一个虚拟机将接收明文数据生成第一个消息摘要,利用自身的私钥加密后生成第一个数据签名,同时明文数据利用对称密钥加密后生成密文数据,利用第二个虚拟机的数字证书将对称密钥加密生成数字信封;数字信封利用第二个虚拟机的私钥解密为对称密钥,然后第二个虚拟机将接收的密文数据利用对称密钥解密为明文数据,再生成第二个消息摘要,第一个数字签名利用第一个虚拟机的数字证书解密第一个消息摘要与第二个消息摘要对比,一致则通过。 The process of encrypted communication between the virtual machine and other virtual machines is as follows: both communicating virtual machines generate private keys and symmetric keys, and the first virtual machine receives plaintext data to generate a first message digest, which is encrypted with its own private key After that, the first data signature is generated, and the plaintext data is encrypted with a symmetric key to generate ciphertext data, and the digital certificate of the second virtual machine is used to encrypt the symmetric key to generate a digital envelope; the digital envelope uses the private key of the second virtual machine The key is decrypted into a symmetric key, and then the second virtual machine decrypts the received ciphertext data into plaintext data using the symmetric key, and then generates the second message digest, and the first digital signature uses the digital certificate of the first virtual machine Decrypt the first message digest and compare it with the second message digest, and pass if they agree.
所述安全认证资源池的可信根证书包含所在的云计算的名称、域名的信息;虚拟机的数字证书包含虚拟机的名称信息。 The trusted root certificate of the security authentication resource pool includes the name and domain name information of the cloud computing where it is located; the digital certificate of the virtual machine includes the name information of the virtual machine.
所述安全认证资源池支持国产密码算法,包括SM1、SM2、SM3、SM4。 The security authentication resource pool supports domestic cryptographic algorithms, including SM1, SM2, SM3, and SM4.
本发明的有益之处是:本发明基于云计算,设置安全认证资源池,国家电子认证体系签发可信根证书,并且安全认证资源池为每个虚拟机签发数字证书,通过虚拟机操作系统中的驱动程序实现与数字证书的绑定,使虚拟机与虚拟机之间、虚拟机与终端用户之间,所有交互的数据信息,均采用数字信封技术和数字签名技术,实现信息的加密传输和完整性校验,保证传输的信息第三方看不到,同时也保证传输的信息不丢失,来满足身份认证、访问控制和数据加密传输的安全应用,解决云计算环境中各虚拟机的身份认证、访问控制和数据加密传输问题,防止身份假冒,以及非法的资源访问和传输数据的泄密,对于身份真实性进行鉴别,是解决云计算安全的最有效的方案,而且方便易用。 The benefits of the present invention are: the present invention is based on cloud computing, and a security authentication resource pool is set. The national electronic certification system issues a trusted root certificate, and the security authentication resource pool issues a digital certificate for each virtual machine. The driver realizes the binding with the digital certificate, so that all interactive data information between virtual machines and between virtual machines and end users adopts digital envelope technology and digital signature technology to realize encrypted transmission of information and Integrity verification ensures that the transmitted information cannot be seen by a third party, and at the same time ensures that the transmitted information is not lost, to meet the security application of identity authentication, access control and data encryption transmission, and to solve the identity authentication of each virtual machine in the cloud computing environment , access control and data encryption transmission issues, to prevent identity counterfeiting, and illegal resource access and transmission data leakage, and to identify the authenticity of identity is the most effective solution to cloud computing security, and it is convenient and easy to use.
附图说明 Description of drawings
图1本发明安全认证资源池的组成框架示意图; Fig. 1 is a schematic diagram of the composition framework of the security authentication resource pool of the present invention;
图2本发明虚拟机数字证书签发流程示意图; Fig. 2 is a schematic diagram of a virtual machine digital certificate issuance process of the present invention;
图3本发明虚拟机之间身份认证示意图; Fig. 3 is a schematic diagram of identity authentication between virtual machines of the present invention;
图4本发明安全认证资源池内虚拟机之间数据加密传输和签名验签示意图。 Fig. 4 is a schematic diagram of encrypted data transmission and signature verification between virtual machines in the security authentication resource pool of the present invention.
具体实施方式 Detailed ways
结合附图对本发明做进一步说明。 The present invention will be further described in conjunction with the accompanying drawings.
一种基于国产密码技术的虚拟机安全认证的方法,通过建立基于云计算的安全认证资源池,其中安全认证资源池支持国产密码算法,包括SM1、SM2、SM3、SM4,对虚拟机进行安全认证;安全认证资源池由物理设备层和中间件层组成,物理设备层通过设备实现基本功能,中间件层实现数字证书的认证、密钥加解密的功能,物理设备层与虚拟机通过中间件层进行通信; A method for virtual machine security authentication based on domestic cryptographic technology, by establishing a security authentication resource pool based on cloud computing, wherein the security authentication resource pool supports domestic cryptographic algorithms, including SM1, SM2, SM3, and SM4, to perform security authentication on virtual machines ;Security authentication resource pool is composed of physical device layer and middleware layer. The physical device layer realizes basic functions through devices, and the middleware layer realizes the functions of digital certificate authentication and key encryption and decryption. The physical device layer and virtual machine pass through the middleware layer. communicate;
国家电子认证体系签发可信根证书给安全认证资源池,安全认证资源池再分配数字证书给虚拟机,用于与其他虚拟机或终端用户进行身份认证、加密通信,在与其他虚拟机或终端用户进行信息交换时,采用数字证书识别双方的身份,未能验证通过的不能访问;在进行信息交换的时候,由安全认证资源池为虚拟机提供身份认证、访问控制和数据加密传输服务。安全认证资源池的可信根证书包含所在的云计算的名称、域名的信息;虚拟机的数字证书包含虚拟机的名称信息。 The national electronic certification system issues trusted root certificates to the security certification resource pool, and the security certification resource pool distributes digital certificates to virtual machines for identity authentication and encrypted communication with other virtual machines or terminal users. When users exchange information, digital certificates are used to identify the identities of both parties, and those who fail to pass the verification cannot access; when information is exchanged, the security authentication resource pool provides virtual machines with identity authentication, access control, and data encryption transmission services. The trusted root certificate of the security authentication resource pool contains the name and domain name information of the cloud computing where it is located; the digital certificate of the virtual machine contains the name information of the virtual machine.
其中虚拟机分配数据证书的过程为:虚拟机与安全认证资源池建立通信,将虚拟机的名称提供给安全认证资源池,安全认证资源池分配虚拟机的数字证书,通过安装在虚拟机操作系统中的驱动来实现自动加载导入; The process of assigning a data certificate to a virtual machine is as follows: the virtual machine establishes communication with the security authentication resource pool, provides the name of the virtual machine to the security authentication resource pool, and the security authentication resource pool allocates the digital certificate of the virtual machine, and installs it in the virtual machine operating system. The driver in to achieve automatic loading and importing;
虚拟机与其他虚拟机进行身份认证,先进行数字证书的交换,再各自通过安全认证资源池内的可信根证书验证交换得到的虚拟机的数字证书是否与可信根证书分配的一致。 The virtual machine and other virtual machines perform identity authentication, first exchange digital certificates, and then verify whether the digital certificates of the virtual machines obtained by the exchange are consistent with those assigned by the trusted root certificates through the trusted root certificates in the security authentication resource pool.
虚拟机与其他虚拟机或终端用户加密通信,所有交互的数据信息,均采用数字信封技术和数字签名技术,实现信息的加密传输和完整性校验。 The virtual machine communicates encrypted with other virtual machines or end users. All interactive data information adopts digital envelope technology and digital signature technology to realize encrypted transmission and integrity verification of information.
具体的,参考图4中虚拟机V1和虚拟机2,进行加密通信的过程为:通信的虚拟机双方生成私钥和对称密钥,即虚拟机V1生成私钥kv1,即虚拟机V2生成私钥kv2,并生成对称密钥E1,其中虚拟机V1和虚拟机V2的数字证书为Cv1和Cv2。虚拟机V1将接收的明文数据生成消息摘要H1,利用私钥kv1加密后生成数据签名S1,同时明文数据利用对称密钥E1加密后生成密文数据,利用虚拟机V2的数字证书Cv2将对称密钥E1加密生成数字信封;数字信封利用虚拟机V2的私钥kv2解密为对称密钥E1,然后虚拟机V2将接收的密文数据利用对称密钥E1解密为明文数据,再生成消息摘要H2,数字签名S1利用虚拟机V1的数字证书kv1解密消息摘要H1与消息摘要H2对比,一致则通过。保证传输的信息第三方看不到,同时也保证传输的信息不丢失。 Specifically, referring to virtual machine V1 and virtual machine 2 in Figure 4, the process of encrypted communication is as follows: both communicating virtual machines generate a private key and a symmetric key, that is, virtual machine V1 generates a private key kv1, that is, virtual machine V2 generates a private key key kv2, and generate a symmetric key E1, where the digital certificates of virtual machine V1 and virtual machine V2 are Cv1 and Cv2. Virtual machine V1 generates message digest H1 from the received plaintext data, encrypts it with private key kv1 to generate data signature S1, and at the same time encrypts the plaintext data with symmetric key E1 to generate ciphertext data, uses the digital certificate Cv2 of virtual machine V2 to encrypt the symmetric key The key E1 is encrypted to generate a digital envelope; the digital envelope is decrypted into a symmetric key E1 with the private key kv2 of the virtual machine V2, and then the virtual machine V2 decrypts the received ciphertext data into plaintext data with the symmetric key E1, and then generates a message digest H2, The digital signature S1 uses the digital certificate kv1 of the virtual machine V1 to decrypt the message digest H1 and compare it with the message digest H2, and if they agree, it is passed. Ensure that the transmitted information cannot be seen by third parties, and at the same time ensure that the transmitted information will not be lost.
Claims (7)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510339583.5A CN104954137A (en) | 2015-06-18 | 2015-06-18 | Method of virtual machine security certification based on domestic password technique |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510339583.5A CN104954137A (en) | 2015-06-18 | 2015-06-18 | Method of virtual machine security certification based on domestic password technique |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104954137A true CN104954137A (en) | 2015-09-30 |
Family
ID=54168515
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510339583.5A Pending CN104954137A (en) | 2015-06-18 | 2015-06-18 | Method of virtual machine security certification based on domestic password technique |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104954137A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106302417A (en) * | 2016-08-05 | 2017-01-04 | 浪潮(北京)电子信息产业有限公司 | A kind of virtualization information transmission method and system |
| CN107249002A (en) * | 2017-07-20 | 2017-10-13 | 云南电网有限责任公司电力科学研究院 | A kind of method, system and device for improving intelligent electric energy meter security |
| CN107273735A (en) * | 2017-06-29 | 2017-10-20 | 济南浪潮高新科技投资发展有限公司 | A kind of terminal device virtual secure key method and device |
| CN111190700A (en) * | 2019-12-31 | 2020-05-22 | 北京同舟医联网络科技有限公司 | Cross-domain security access and resource control method for virtualization device |
| CN112311547A (en) * | 2019-07-26 | 2021-02-02 | 南方电网科学研究院有限责任公司 | A terminal security authentication method and device based on domestic cryptography technology |
| CN112636927A (en) * | 2020-12-28 | 2021-04-09 | 郑州信大先进技术研究院 | KPI (Key performance indicator) double-certificate-based cloud platform encryption method |
| CN113515330A (en) * | 2020-04-10 | 2021-10-19 | 南方电网科学研究院有限责任公司 | Cloud desktop security authentication method and system based on domestic password technology |
| CN114553478A (en) * | 2022-01-13 | 2022-05-27 | 成都储迅科技有限责任公司 | Security system and method for accessing solid state disk by cloud server based on state password |
| CN114816663A (en) * | 2022-04-18 | 2022-07-29 | 南京壹证通信息科技有限公司 | Password resource allocation system and method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103051643A (en) * | 2013-01-22 | 2013-04-17 | 西安邮电大学 | Method and system for dynamically establishing secure connection of virtual host in cloud computing environment |
| CN103270516A (en) * | 2010-08-18 | 2013-08-28 | 安全第一公司 | Systems and methods for securing a virtual machine computing environment |
-
2015
- 2015-06-18 CN CN201510339583.5A patent/CN104954137A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103270516A (en) * | 2010-08-18 | 2013-08-28 | 安全第一公司 | Systems and methods for securing a virtual machine computing environment |
| CN103051643A (en) * | 2013-01-22 | 2013-04-17 | 西安邮电大学 | Method and system for dynamically establishing secure connection of virtual host in cloud computing environment |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106302417A (en) * | 2016-08-05 | 2017-01-04 | 浪潮(北京)电子信息产业有限公司 | A kind of virtualization information transmission method and system |
| CN107273735A (en) * | 2017-06-29 | 2017-10-20 | 济南浪潮高新科技投资发展有限公司 | A kind of terminal device virtual secure key method and device |
| CN107249002A (en) * | 2017-07-20 | 2017-10-13 | 云南电网有限责任公司电力科学研究院 | A kind of method, system and device for improving intelligent electric energy meter security |
| CN107249002B (en) * | 2017-07-20 | 2021-02-23 | 云南电网有限责任公司电力科学研究院 | Method, system and device for improving safety of intelligent electric energy meter |
| CN112311547A (en) * | 2019-07-26 | 2021-02-02 | 南方电网科学研究院有限责任公司 | A terminal security authentication method and device based on domestic cryptography technology |
| CN111190700B (en) * | 2019-12-31 | 2023-08-29 | 北京安盛联合科技有限公司 | Cross-domain security access and resource control method for virtualized equipment |
| CN111190700A (en) * | 2019-12-31 | 2020-05-22 | 北京同舟医联网络科技有限公司 | Cross-domain security access and resource control method for virtualization device |
| CN113515330A (en) * | 2020-04-10 | 2021-10-19 | 南方电网科学研究院有限责任公司 | Cloud desktop security authentication method and system based on domestic password technology |
| CN113515330B (en) * | 2020-04-10 | 2024-04-26 | 南方电网科学研究院有限责任公司 | A cloud desktop security authentication method and system based on domestic cryptographic technology |
| CN112636927A (en) * | 2020-12-28 | 2021-04-09 | 郑州信大先进技术研究院 | KPI (Key performance indicator) double-certificate-based cloud platform encryption method |
| CN112636927B (en) * | 2020-12-28 | 2022-08-16 | 郑州信大先进技术研究院 | KPI (Key performance indicator) double-certificate-based cloud platform encryption method |
| CN114553478A (en) * | 2022-01-13 | 2022-05-27 | 成都储迅科技有限责任公司 | Security system and method for accessing solid state disk by cloud server based on state password |
| CN114816663A (en) * | 2022-04-18 | 2022-07-29 | 南京壹证通信息科技有限公司 | Password resource allocation system and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104954137A (en) | Method of virtual machine security certification based on domestic password technique | |
| TWI715537B (en) | Encryption machine key injection system, method and device based on cloud environment | |
| CN103118027B (en) | The method of TLS passage is set up based on the close algorithm of state | |
| US10601801B2 (en) | Identity authentication method and apparatus | |
| CN105790938B (en) | Secure unit key generation system and method based on trusted execution environment | |
| CN104917741B (en) | A kind of plain text document public network secure transmission system based on USBKEY | |
| CN101640590B (en) | Method for obtaining identification cipher algorithm private key and cipher center | |
| CN109379387B (en) | Safety certification and data communication system between Internet of things equipment | |
| CN102025503B (en) | Data security implementation method in cluster environment and high-security cluster | |
| CN103051455B (en) | The implementation method of the credible password module cryptographic function devolution under a kind of cloud computing environment | |
| CN103580855B (en) | Usbkey management method based on sharing technology | |
| CN104821944A (en) | Hybrid encryption network data security method and system | |
| CN102244575A (en) | Secure transmission system and method for online tax filling data of value-added tax | |
| CN111464301A (en) | Key management method and system | |
| CN102394749B (en) | Line protection method, system, information safety equipment and application equipment for data transmission | |
| CN103685323A (en) | Method for realizing intelligent home security networking based on intelligent cloud television gateway | |
| CN107465689A (en) | The key management system and method for virtual credible platform module under cloud environment | |
| CN101964786A (en) | Set-top box-based secure information transmission system and method | |
| CN104601571A (en) | Data encryption system and method for interaction between tenants and cloud server memory | |
| CN103684798B (en) | Authentication method used in distributed user service | |
| WO2015158172A1 (en) | User identity identification card | |
| CN107104795B (en) | Method, framework and system for injecting RSA key pair and certificate | |
| CN107135070A (en) | Method for implanting, framework and the system of RSA key pair and certificate | |
| CN114697040B (en) | Electronic signature method and system based on symmetric key | |
| CN101296083A (en) | An encrypted data transmission method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150930 |
|
| RJ01 | Rejection of invention patent application after publication |