[go: up one dir, main page]

CN107277078A - A kind of home gateway encrypted data communication method - Google Patents

A kind of home gateway encrypted data communication method Download PDF

Info

Publication number
CN107277078A
CN107277078A CN201710726340.6A CN201710726340A CN107277078A CN 107277078 A CN107277078 A CN 107277078A CN 201710726340 A CN201710726340 A CN 201710726340A CN 107277078 A CN107277078 A CN 107277078A
Authority
CN
China
Prior art keywords
home gateway
data
master station
modn
calculates
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710726340.6A
Other languages
Chinese (zh)
Inventor
包依勤
郑豪
宋万里
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nanjing Xiaozhuang University
Original Assignee
Nanjing Xiaozhuang University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nanjing Xiaozhuang University filed Critical Nanjing Xiaozhuang University
Priority to CN201710726340.6A priority Critical patent/CN107277078A/en
Publication of CN107277078A publication Critical patent/CN107277078A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明公开了一种家庭网关数据通讯加密方法,先公开约定两个参数g和N主站生成一个随机数x,并计算X=gx mod N,X作为公开的密钥传送给家庭网关;家庭网关接收到X后生成一个随机数y作为自已的私有密钥,计算Y=gy mod N,Y作为公开的密钥传送给主站,计算出K2=Xy mod N=gxy mod N作为加密解密用的私有密钥;主站接收到Y后计算出K1=Yymod N=gxy mod N作为加密解密用的私有密钥;主站计算出K1通过MD5加密后网络传送给家庭网关;家庭网关接收到K1,将K2通过网络传送给主站,如K1与K2相等为合法,否则为非法。本发明的有益效果是有效的保证了智能家居系统的通讯和数据的安全。The invention discloses a data communication encryption method of a home gateway. First, two parameters g and N are publicly agreed. The main station generates a random number x, and calculates X=g x mod N, and X is sent to the home gateway as a public key; After receiving X, the home gateway generates a random number y as its own private key, calculates Y=g y mod N, Y is sent to the master station as a public key, and calculates K2=X y mod N=g xy mod N As a private key for encryption and decryption; after receiving Y, the master station calculates K1=Y y mod N=g xy mod N as a private key for encryption and decryption; the master station calculates K1 and transmits it to the family after being encrypted by MD5 Gateway; the home gateway receives K1 and transmits K2 to the main station through the network. If K1 and K2 are equal, it is legal, otherwise it is illegal. The beneficial effect of the invention is to effectively ensure the communication and data security of the smart home system.

Description

一种家庭网关数据通讯加密方法A kind of home gateway data communication encryption method

技术领域technical field

本发明属于数据加密技术领域,涉及一种家庭网关数据通讯加密方法。The invention belongs to the technical field of data encryption, and relates to a data communication encryption method of a home gateway.

背景技术Background technique

家庭网关连接着家电网络和互联网,存在着网关与互联网相连后不少安全威胁与攻击,主要有几下几种:The home gateway is connected to the home appliance network and the Internet. There are many security threats and attacks after the gateway is connected to the Internet. There are several types:

(1)非法连接,系统入侵。通过网络探测、非法连接等获取重要数据或实施系统破坏。(1) Illegal connection, system intrusion. Obtain important data or implement system destruction through network detection, illegal connection, etc.

(2)网络监听,获取密码。通过网络监听,分析网络传输的数据,获取密码等重要信息。(2) Network monitoring to obtain passwords. Through network monitoring, analyze the data transmitted by the network, and obtain important information such as passwords.

(3)信息欺骗,篡改信息。通过中间人攻击,篡改、删除或重放数据包进行信息欺骗。(3) Information deception, tampering information. Information spoofing by tampering, deleting or replaying data packets through man-in-the-middle attacks.

用户连接家庭网关,传统方法采用密码来判是否是合法,但这种方法很容易通过网络监听,分析网络数据来获取密码,很容易通过中间人攻击,篡改、删除或重放数据包进行信息欺骗,因此技术上存在安全性不好的缺点。When a user connects to a home gateway, the traditional method uses a password to judge whether it is legal, but this method is easy to obtain the password through network monitoring and analysis of network data, and it is easy to use a man-in-the-middle attack to tamper with, delete or replay data packets for information deception. Therefore technically there is the shortcoming that safety is not good.

发明内容Contents of the invention

本发明的目的在于提供一种家庭网关数据通讯加密方法,解决了目前用户连接家庭网关采用密码来判是否是合法,但这种方法很容易通过网络监听,从而被盗取密码的问题。The purpose of the present invention is to provide a data communication encryption method of a home gateway, which solves the problem that the current user connects to the home gateway and uses a password to judge whether it is legal, but this method is easy to monitor through the network, thereby being stolen.

本发明所采用的技术方案是按照以下步骤进行:The technical scheme adopted in the present invention is to carry out according to the following steps:

Step1公开约定两个参数g,N;Step1 publicly agrees on two parameters g, N;

Step2主站生成一个随机数x,作为自已的私有密钥,并计算X=gxmodN,X作为公开的密钥,X取反为X1,X1通过网络传送给家庭网关;Step2 The master station generates a random number x as its own private key, and calculates X=g x modN, X is used as the public key, X is reversed to X1, and X1 is sent to the home gateway through the network;

Step3家庭网关接收到X1后,X1取反为X,家庭网关生成一个随机数y,作为自已的私有密钥,并计算Y==gy modN,Y作为公开的密钥,Y取反为Y1,Y1通过网络传送给主站,同时,计算出Step3 After the home gateway receives X1, X1 is reversed to X, and the home gateway generates a random number y as its own private key, and calculates Y==g y modN, Y is used as the public key, Y is reversed to Y1 , Y1 is transmitted to the master station through the network, and at the same time, the calculated

K2=XymodN=gxymodN作为加密解密用的私有密钥;K2=X y modN=g xy modN is used as the private key for encryption and decryption;

Step4主站接收到Y1后,Y1取反为Y,计算出K1=YymodN=gxymodN,作为加密解密用的私有密钥;Step4 After the master station receives Y1, Y1 is reversed to Y, and K1=Y y modN=g xy modN is calculated as the private key for encryption and decryption;

主站计算出K1通过MD5加密后网络传送给家庭网关;The master station calculates that K1 is encrypted by MD5 and sent to the home gateway through the network;

Step5家庭网关接收到MD5(K1),将MD5(K2)通过网络传送给主站,这样家庭网关和主站都能对方进行合法验证,如MD5(K1)与MD5(K2)相等则为合法,否则为非法。Step5 The home gateway receives MD5(K1), and transmits MD5(K2) to the master station through the network, so that the home gateway and the master station can verify each other legally, if MD5(K1) and MD5(K2) are equal, it is legal, Otherwise it is illegal.

进一步,主站和家庭网关的数据帧格式如下:68H为起始字符,A为地址域,C为控制域,L是长度,双字节长度,设定2个L进行比较,增强可靠性,DATA为链路用户数据,CS是从帧起始符到校验码之前所有字节模256的和,保证传输数据的正确性,16H为结束字符。Further, the data frame format of the master station and the home gateway is as follows: 68H is the initial character, A is the address field, C is the control field, L is the length, double-byte length, set 2 L for comparison, enhance reliability, DATA is the link user data, CS is the sum of all bytes modulo 256 from the frame start character to the check code, to ensure the correctness of the transmitted data, and 16H is the end character.

进一步,链路用户数据的帧格式:AFN为应用层功能码,SEQ为帧序列域,DA和DT为数据单元标识,UNIT为数据单元。Further, the frame format of the link user data: AFN is the application layer function code, SEQ is the frame sequence field, DA and DT are the data unit identifiers, and UNIT is the data unit.

进一步,链路用户数据帧格式中,扩展了AFN=11H,F1传输公开密钥X和Y,F2传输MD5加密的私有密钥MD5(K1)和MD5(K2)。Further, in the link user data frame format, AFN=11H is extended, F1 transmits public keys X and Y, and F2 transmits MD5-encrypted private keys MD5(K1) and MD5(K2).

本发明的有益效果是有效的保证了智能家居系统的通讯和数据的安全。The beneficial effect of the invention is to effectively ensure the communication and data security of the smart home system.

具体实施方式detailed description

下面结合具体实施方式对本发明进行详细说明。The present invention will be described in detail below in combination with specific embodiments.

本发明方法步骤如下:The inventive method step is as follows:

Step1家庭网关与主站,公开约定两个参数g,N。Step1 The home gateway and the main station publicly agree on two parameters g and N.

Step2主站生成一个随机数x,作为自已的私有密钥,并计算X=gxmodN,X作为公开的密钥,,X取反为X1,X1通过网络传送给家庭网关,主站->家庭网关。Step2 The master station generates a random number x as its own private key, and calculates X=g x modN, X is used as the public key, X is reversed to X1, and X1 is sent to the home gateway through the network, the master station -> home gateway.

Step3家庭网关接收到X1后,X1取反为X,家庭网关生成一个随机数y,作为自已的私有密钥,并计算Y=gy modN,Y作为公开的密钥,Y取反为Y1,Y1通过网络传送给主站,同时,计算出K2=XymodN=gxymodN作为加密解密用的私有密钥。家庭网关->主站。Step3 After the home gateway receives X1, X1 is reversed to X, and the home gateway generates a random number y as its own private key, and calculates Y=g y modN, Y is used as the public key, Y is reversed to Y1, Y1 is transmitted to the master station through the network, and at the same time, K2=X y mod N=g xy mod N is calculated as the private key for encryption and decryption. Home Gateway -> Master Station.

Step4主站接收到Y1后,Y1取反为Y,计算出K1=YymodN=gxymodN,作为加密解密用的私有密钥。Step4 After the master station receives Y1, Y1 is reversed to Y, and K1=Y y modN=g xy modN is calculated as the private key for encryption and decryption.

由于MD5(K1)=MD5(K2),这样,网关和主站实行通讯时,具有共同的私有密钥,能够实行了数据的加密和解密。为防止中间人攻击,主站计算出MD5(K1)通过网络传送给家庭网关。主站->家庭网关。Since MD5(K1)=MD5(K2), in this way, when the gateway and the master station communicate, they have a common private key and can implement data encryption and decryption. To prevent man-in-the-middle attacks, the master station calculates MD5 (K1) and transmits it to the home gateway through the network. Master -> Home Gateway.

Step5家庭网关接收到MD5(K1),将MD5(K2)通过网络传送给主站,这样家庭网关和主站都能对方进行合法验证。家庭网关->主站。Step5 The home gateway receives the MD5(K1), and transmits the MD5(K2) to the master station through the network, so that the home gateway and the master station can both verify each other legally. Home Gateway -> Master Station.

由于每次主站和网关通讯,公有密钥虽然是公开传输,钽取反加密而且每次都是动态的;私有密钥通过MD5加密传输,反向计算很不容易,从MD5(K1)和MD5(K2)计算出K1和K2很不容易。基于这二点,保证了数据传输的安全、同时也防止了中间人的攻击。Because every time the master station communicates with the gateway, although the public key is transmitted publicly, it is encrypted and dynamic each time; the private key is encrypted and transmitted through MD5, and the reverse calculation is not easy. From MD5(K1) and MD5(K2) is not easy to calculate K1 and K2. Based on these two points, it ensures the security of data transmission and prevents man-in-the-middle attacks.

仿真结果分析Simulation result analysis

公开:g=5,N=97,3组仿真数据如下表1所示:Open: g=5, N=97, 3 sets of simulation data are shown in Table 1 below:

表1测试数据Table 1 Test data

从表1三组数据结果看:A计算的私有密钥K1等于B计算的私有密钥K2;分析结论:公开g=5,N=97,从|X,Y|出发,攻击者要计算出K1或K2是很不容易,另外,通过MD5(K1)计算K1,通过MD5(K2)计算K2也是很不容易。From the results of the three sets of data in Table 1: the private key K1 calculated by A is equal to the private key K2 calculated by B; the analysis conclusion: public g=5, N=97, starting from |X, Y|, the attacker needs to calculate K1 or K2 is not easy. In addition, it is not easy to calculate K1 through MD5(K1) and K2 through MD5(K2).

分析结论:通讯双方每次的公开密钥是不一样的,各自计算出的用于加密和解密的私有密钥也是不同的,这样解决了动态密钥和数据加密的问题。家庭网关是智能家居系统的关键中间枢纽,它的安全性关系到系统的安全可靠。本发明实现了动态密钥的生成、数据的加密解密、并防止了中间人攻击,有效的保证了智能家居系统的通讯和数据的安全。仿真结果表明,文中设计的网关具有较高的安全性和实用性,能够有效的通过智能终端实现对家用电器的监测与控制。Analysis conclusion: The public keys of the communication parties are different every time, and the private keys used for encryption and decryption calculated by each party are also different, which solves the problem of dynamic keys and data encryption. The home gateway is the key intermediate hub of the smart home system, and its security is related to the safety and reliability of the system. The invention realizes the generation of the dynamic key, the encryption and decryption of data, prevents man-in-the-middle attacks, and effectively ensures the communication and data security of the smart home system. The simulation results show that the gateway designed in this paper has high security and practicability, and can effectively monitor and control household appliances through smart terminals.

本发明通信协议基于Q/GDW 130-2005数据传输规约标准规约,并扩展了二个命令,用于数据安全。规约中,主站首先发送数据给从站(家庭网关),按数据帧格式,从站接收数据,然后向其发送含有不同控制码的数据帧。规约数据帧格式如表2所示,其中68H为起始字符,A为地址域,C为控制域,L是长度,双字节长度,设定2个L进行比较,增强可靠性,DATA为链路用户数据,CS是从帧起始符到校验码之前所有字节模256的和,保证传输数据的正确性。The communication protocol of the present invention is based on the standard protocol of Q/GDW 130-2005 data transmission protocol, and two commands are extended for data security. In the protocol, the master station first sends data to the slave station (home gateway), according to the data frame format, the slave station receives the data, and then sends data frames containing different control codes to it. The format of the protocol data frame is shown in Table 2, where 68H is the initial character, A is the address field, C is the control field, L is the length, double-byte length, set two L for comparison, and enhance reliability, and DATA is For link user data, CS is the sum of all bytes modulo 256 from the frame start symbol to the check code to ensure the correctness of the transmitted data.

表2帧格式Table 2 frame format

帧格式中链路用户数据包含所有用户类型数据,通过功能码和数据单元标识来区分不同类型用户数据,如表3所示:The link user data in the frame format includes all user type data, and different types of user data are distinguished by function codes and data unit identifiers, as shown in Table 3:

表3链路用户数据帧格式Table 3 link user data frame format

在链路用户数据帧格式中,扩展一个应用层功能码和数据单元标识,对应于一组数据单元格式。如表4所示,扩展了AFN=11H,F1和F2。In the link user data frame format, an application layer function code and data unit identifier are extended, corresponding to a group of data unit formats. As shown in Table 4, AFN=11H, F1 and F2 are extended.

表4数据含义(AFN=11H)Table 4 data meaning (AFN=11H)

F1数据单元指双方的公开密钥,实现了双方计算出一个相同的秘密密钥的目的。The F1 data unit refers to the public key of both parties, and realizes the purpose of both parties calculating the same secret key.

F2数据单元指通过MD5加密的计算的私有密钥。The F2 data unit refers to the calculated private key encrypted by MD5.

首先,主站与从站通过F1交换公开密钥X和Y,双方通过Diffie-Hellman密码算法计算出了K1和K2;其次,主站通过F2传输MD5(K1)给从站,从站核对MD5(K1)是否与MD5(K2)一致,如正确,主站与从站连接成功,这样双方可通过K1和K2加密和解密数据,如不对,则有中间人攻击,双方连接断开。First, the master station and the slave station exchange public keys X and Y through F1, and the two parties calculate K1 and K2 through the Diffie-Hellman cryptographic algorithm; secondly, the master station transmits MD5 (K1) to the slave station through F2, and the slave station checks the MD5 Whether (K1) is consistent with MD5(K2), if correct, the connection between the master station and the slave station is successful, so that both parties can encrypt and decrypt data through K1 and K2, if not, there will be a man-in-the-middle attack, and the connection between the two parties will be disconnected.

这样,通过AFN的扩展和MD5加密算法,达到了防止中间人攻击的目标。In this way, through the extension of AFN and the MD5 encryption algorithm, the goal of preventing man-in-the-middle attacks is achieved.

本发明的优点还在于在家庭网关与外部网络通信时,为防范网络监听、非法连接、信息篡改等入侵,在设计时需要在家庭网关中采用安全技术:The advantage of the present invention is that when the home gateway communicates with the external network, in order to prevent intrusions such as network monitoring, illegal connection, and information tampering, it is necessary to use security technology in the home gateway during design:

(1)实现动态密钥;(1) Realize dynamic key;

(2)对通讯数据进行加密处理;(2) Encrypt communication data;

(3)采取防止中间人攻击手段。(3) Take measures to prevent man-in-the-middle attacks.

在通讯时,通讯双方每次公开的密钥不一样,数据通过密钥加密传输,保证了(1)(2)技术的实现,另外,通过通讯规约扩展手段和利用MD5散列算法,保证了(3)的技术实现,从而保证了物联网网关的安全。During communication, the public keys of the two parties are different each time, and the data is encrypted and transmitted through the key, which ensures the realization of (1) and (2) technologies. In addition, through the extension of the communication protocol and the use of the MD5 hash algorithm, it is guaranteed (3) The technical implementation, thus ensuring the security of the Internet of Things gateway.

以上所述仅是对本发明的较佳实施方式而已,并非对本发明作任何形式上的限制,凡是依据本发明的技术实质对以上实施方式所做的任何简单修改,等同变化与修饰,均属于本发明技术方案的范围内。The above description is only a preferred embodiment of the present invention, and does not limit the present invention in any form. Any simple modifications made to the above embodiments according to the technical essence of the present invention, equivalent changes and modifications, all belong to this invention. within the scope of the technical solution of the invention.

Claims (4)

1.一种家庭网关数据通讯加密方法,其特征在于按照以下步骤进行:1. A family gateway data communication encryption method is characterized in that it is carried out according to the following steps: Step1家庭网关与主站,公开约定两个参数g,N;Step1 The home gateway and the master station publicly agree on two parameters g, N; Step2主站生成一个随机数x,作为自已的私有密钥,并计算X=gxmodN,X作为公开的密钥,X取反为X1,X1通过网络传送给家庭网关;Step2 The master station generates a random number x as its own private key, and calculates X=g x modN, X is used as the public key, X is reversed to X1, and X1 is sent to the home gateway through the network; Step3家庭网关接收到X1后,X1取反为X,家庭网关生成一个随机数y,作为自已的私有密钥,并计算Y=gy modN,Y作为公开的密钥,Y取反为Y1,Y1通过网络传送给主站,同时,计算出K2=XymodN=gxymodN作为加密解密用的私有密钥;Step3 After the home gateway receives X1, X1 is reversed to X, and the home gateway generates a random number y as its own private key, and calculates Y=g y modN, Y is used as the public key, Y is reversed to Y1, Y1 is transmitted to the master station through the network, and at the same time, calculate K2=X y modN=g xy modN as the private key for encryption and decryption; Step4主站接收到Y1后,Y1取反为Y,计算出K1=YymodN=gxymodN,作为加密解密用的私有密钥,主站计算出K1通过网络传送给家庭网关;Step4 After the master station receives Y1, Y1 is reversed to Y, and K1=Y y modN=g xy modN is calculated as the private key for encryption and decryption. The master station calculates K1 and transmits it to the home gateway through the network; Step5家庭网关接收到K1,将K2通过网络传送给主站进行合法验证。Step5 The home gateway receives K1, and sends K2 to the main station through the network for legal verification. 2.按照权利要求1所述一种家庭网关数据通讯加密方法,其特征在于:所述主站和家庭网关的数据帧格式如下:68H为起始字符,A为地址域,C为控制域,L是长度,双字节长度,设定2个L进行比较,增强可靠性,DATA为链路用户数据,CS是从帧起始符到校验码之前所有字节模256的和,保证传输数据的正确性,16H为结束字符。2. according to the described a kind of home gateway data communication encryption method of claim 1, it is characterized in that: the data frame format of described master station and home gateway is as follows: 68H is initial character, and A is address domain, and C is control domain, L is the length, double-byte length, set two L for comparison, enhance reliability, DATA is the link user data, CS is the sum of all bytes modulo 256 from the frame start character to the check code, to ensure transmission Data correctness, 16H is the end character. 3.按照权利要求2所述一种家庭网关数据通讯加密方法,其特征在于:所述链路用户数据的帧格式:AFN为应用层功能码,SEQ为帧序列域,DA和DT为数据单元标识,UNIT为数据单元。3. according to the described a kind of family gateway data communication encryption method of claim 2, it is characterized in that: the frame format of described link user data: AFN is application layer function code, and SEQ is frame sequence field, and DA and DT are data unit ID, UNIT is the data unit. 4.按照权利要求3所述一种家庭网关数据通讯加密方法,其特征在于:在所述链路用户数据帧格式中,扩展了AFN=11H,F1为公开密钥X1和Y1,F2为MD5加密的私有密钥K1和K2。4. according to the described a kind of home gateway data communication encryption method of claim 3, it is characterized in that: in described link user data frame format, expanded AFN=11H, F1 is public key X1 and Y1, and F2 is MD5 Encrypted private keys K1 and K2.
CN201710726340.6A 2017-08-22 2017-08-22 A kind of home gateway encrypted data communication method Pending CN107277078A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710726340.6A CN107277078A (en) 2017-08-22 2017-08-22 A kind of home gateway encrypted data communication method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710726340.6A CN107277078A (en) 2017-08-22 2017-08-22 A kind of home gateway encrypted data communication method

Publications (1)

Publication Number Publication Date
CN107277078A true CN107277078A (en) 2017-10-20

Family

ID=60076571

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710726340.6A Pending CN107277078A (en) 2017-08-22 2017-08-22 A kind of home gateway encrypted data communication method

Country Status (1)

Country Link
CN (1) CN107277078A (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011017847A1 (en) * 2009-08-14 2011-02-17 华为技术有限公司 Method and device for exchanging key
CN102111273A (en) * 2010-12-30 2011-06-29 中国电力科学研究院 Pre-sharing-based secure data transmission method for electric load management system
CN103763321A (en) * 2014-01-22 2014-04-30 天津大学 Sniffing defense method based on authentication method in WLAN
CN107070657A (en) * 2016-01-21 2017-08-18 三星电子株式会社 Safety chip and application processor and its operating method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2011017847A1 (en) * 2009-08-14 2011-02-17 华为技术有限公司 Method and device for exchanging key
CN102111273A (en) * 2010-12-30 2011-06-29 中国电力科学研究院 Pre-sharing-based secure data transmission method for electric load management system
CN103763321A (en) * 2014-01-22 2014-04-30 天津大学 Sniffing defense method based on authentication method in WLAN
CN107070657A (en) * 2016-01-21 2017-08-18 三星电子株式会社 Safety chip and application processor and its operating method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
庞辽军: "《信息安全工程》", 30 September 2010, 西安电子科技大学出版社 *

Similar Documents

Publication Publication Date Title
CN108270571B (en) Blockchain-based Internet of Things identity authentication system and its method
CN103095696B (en) A kind of authentication and cryptographic key negotiation method being applicable to power information acquisition system
CN104735068B (en) Method based on the close SIP safety certification of state
CN103595530B (en) Software secret key updating method and device
CN105049401B (en) A kind of safety communicating method based on intelligent vehicle
CN110401615B (en) Identity authentication method, device, equipment, system and readable storage medium
WO2016065321A1 (en) Secure communication channel with token renewal mechanism
US10263782B2 (en) Soft-token authentication system
CN112165386B (en) Data encryption method and system based on ECDSA
WO2014114191A1 (en) Intelligent card secure communication method
CN106656503A (en) Key storage method, data encryption and decryption method, electronic signature method and devices thereof
CN109714360B (en) Intelligent gateway and gateway communication processing method
CN104394123A (en) A data encryption transmission system and method based on an HTTP
KR20170047717A (en) Server and method for managing smart home environment thereby, method for joining smart home environment and method for connecting communication session with smart device
CN102833075A (en) Identity authentication and digital signature method based on three-layered overlapping type key management technology
Chen et al. Security analysis and improvement of user authentication framework for cloud computing
CN112487380B (en) Data interaction method, device, equipment and medium
CN101296083A (en) An encrypted data transmission method and system
CN112020038A (en) Domestic encryption terminal suitable for rail transit mobile application
CN105610773A (en) Communication encryption method of electric energy meter remote meter reading
WO2023151427A1 (en) Quantum key transmission method, device and system
CN116633530A (en) Quantum key transmission method, device and system
CN110336663B (en) PUFs group-to-group authentication method based on block chain technology
CN118174921A (en) Multi-factor SSH login authentication method based on national encryption algorithm and supporting bidirectional authentication
Niu et al. A novel user authentication scheme with anonymity for wireless communications

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20171020

RJ01 Rejection of invention patent application after publication