CN108075879B - Data encryption and decryption method, device and system - Google Patents

Abstract

The invention discloses a method, device and system for data encryption and decryption. The method includes: generating a binary tree for encrypting data; generating a first traversal sequence and a second traversal sequence based on the binary tree; determining information stored by at least one leaf node in the binary tree as a key; key encryption information; convert the information stored in each leaf node in the key into binary to obtain a binary key, and convert the data to be transmitted into binary data to be transmitted; the binary key and the binary data to be transmitted are performed according to the preset encryption algorithm The encrypted data is obtained by calculation; the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data are sent to the receiving end of the data to be transmitted. The data encryption and decryption method disclosed by the invention can improve the security of data transmission.

Description

A method, device and system for data encryption and decryption

technical field

The invention belongs to the field of communication technologies, and in particular relates to a method, device and system for data encryption and decryption.

Background technique

With the development of Internet technology, more and more information and data are transmitted through the network, and the problem of how to ensure the security of data transmission has become increasingly prominent. At present, when people transmit data, they usually encrypt the transmitted data to ensure the security of data transmission. There are many kinds of existing data encryption algorithms, and a commonly used data encryption algorithm is a binary tree-based encryption algorithm. When the prior art uses the encryption algorithm based on the binary tree, the binary tree is constructed based on the data to be encrypted, and the content of the data is stored on the leaf nodes of the binary tree, thereby converting the plaintext data into ciphertext data, and the formation of the ciphertext data is formed by the binary tree. The structure is determined, and then the generated binary tree information is transmitted to the receiving end. Since plaintext data is stored in the generated binary tree in the prior art, the transmitted binary tree information must contain all or part of plaintext data, which makes encrypted data easy to be cracked and reduces the security of data transmission.

SUMMARY OF THE INVENTION

The embodiments of the present invention provide a method, device and system for data encryption and decryption, which can solve the problem that the binary tree information used for encrypting plaintext data contains all or part of the plaintext data, which makes the encrypted data easy to be cracked and reduces data transmission. security issues.

In a first aspect, the present invention provides a data encryption method, comprising:

Generate a binary tree for encrypting data;

generating a first traversal sequence and a second traversal sequence based on the binary tree, wherein the binary tree can be restored through the first traversal sequence and the second traversal sequence;

Determine the information stored in at least one leaf node in the binary tree as the key;

Generate key encryption information based on binary tree encoding of at least one leaf node;

Convert the information stored in each leaf node in the key into binary to obtain a binary key, and convert the data to be transmitted into binary data to be transmitted;

Calculate the binary key and the binary data to be transmitted according to the preset encryption algorithm to obtain encrypted data;

Send the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted.

With reference to the first aspect, in a first implementation manner of the first aspect, the first traversal sequence, the second traversal sequence, and the key encryption information are sent to the receiving end of the data to be transmitted. and before the encrypted data, the method further includes:

generating at least two different data packets including a first data packet and a second data packet, the at least two different data packets carrying the key encryption information and the encrypted data, and the first data packet including the first traversal sequence and the second data packet include the second traversal sequence;

The sending of the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted includes:

The at least two different data packets are sent to the receiving end, wherein the first data packet and the second data packet are sent respectively.

With reference to the first aspect, in a second implementation manner of the first aspect, generating key encryption information based on binary tree encoding of the at least one leaf node includes:

The key encryption information is obtained by arranging the binary tree codes of the at least one leaf node based on the arrangement order of the information stored in the at least one leaf node.

With reference to the first aspect, in a third implementation manner of the first aspect, the order of the information stored in each leaf node in the key is the same as the order of information stored in each leaf node in the binary key;

The encrypted data obtained by calculating the binary key and the binary data to be transmitted according to a preset encryption algorithm includes:

The encryption is obtained by calculating the binary data to be transmitted according to the arrangement order of the information stored in each leaf node in the binary key and the information stored in each leaf node in the binary key according to a preset encryption algorithm. data.

With reference to the first aspect or any implementation manner of the first aspect, in a fourth implementation manner of the first aspect, the preset encryption algorithm includes an exclusive OR algorithm.

In a second aspect, the present invention provides a method for data decryption, comprising:

Receive the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the sender of the data to be transmitted;

The binary tree is obtained by restoring based on the first traversal sequence and the second traversal sequence;

Determine a key including information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information;

Convert the information stored in each leaf node in the key into binary to obtain a binary key;

Calculate the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted, and the preset decryption algorithm corresponds to the preset encryption algorithm used by the sender to encrypt the data to be transmitted;

Convert the decrypted binary data to be transmitted into data to be transmitted.

With reference to the second aspect, in a first implementation manner of the second aspect, the first traversal sequence, the second traversal sequence, the key information, and the encrypted data sent by the sending end that receives the data to be transmitted include:

receiving at least two different data packets including a first data packet and a second data packet sent by the sending end, wherein the at least two different data packets carry the key encryption information and the encrypted data, In addition, the first data packet includes a first traversal sequence, the second data packet includes the second traversal sequence, and the first data packet and the second data packet are respectively sent by the sender.

With reference to the second aspect, in a second implementation manner of the second aspect, determining the key including the information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information includes:

Based on the restored binary tree and the key encryption information, an arrangement order of the key and the information stored by each leaf node in the key is determined.

In conjunction with the second aspect, in a third implementation manner of the second aspect, the decrypted binary data to be transmitted obtained by calculating the binary key and the encrypted data according to a preset decryption algorithm includes:

Calculate the encrypted data according to the arrangement order of the information stored in each leaf node in the binary key, and sequentially calculate the decrypted binary data with the information stored in each leaf node in the binary key according to a preset decryption algorithm. data; or,

Calculate the encrypted data according to the reverse order of the information stored in each leaf node in the binary key, and sequentially calculate the encrypted data with the information stored in each leaf node in the binary key according to a preset decryption algorithm to obtain after decryption. binary data.

In combination with the third embodiment of the second aspect, in the fourth embodiment of the second aspect, when the binary key and the encrypted data are calculated according to the preset decryption algorithm, the decrypted binary data to be transmitted is obtained. The step is to calculate the encrypted data according to the reverse order of the information stored in each leaf node in the binary key and the information stored in each leaf node in the binary key according to a preset decryption algorithm. In the execution method of the decrypted binary data, the preset decryption algorithm includes an exclusive OR operation.

With reference to the second aspect or any implementation manner of the second aspect, in a fifth implementation manner of the second aspect, the preset decryption algorithm and the preset encryption algorithm are mutually inverse operations.

In a third aspect, the present invention provides a data encryption device, comprising:

A binary tree generating unit for generating a binary tree for encrypting data;

a sequence generating unit, configured to generate a first traversal sequence and a second traversal sequence based on the binary tree, wherein the binary tree can be restored through the first traversal sequence and the second traversal sequence;

a determining unit, used for determining the information stored in at least one leaf node in the binary tree as a key;

a key encryption information generating unit, for generating key encryption information based on the binary tree encoding of at least one leaf node;

a conversion unit, used for converting the information stored in each leaf node in the key into binary to obtain a binary key, and converting the data to be transmitted into binary data to be transmitted;

a computing unit, configured to calculate the binary key and the binary data to be transmitted according to a preset encryption algorithm to obtain encrypted data;

The sending unit is configured to send the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted.

In conjunction with the third aspect, in the first implementation manner of the third aspect, it also includes:

a data packet generating unit configured to generate at least two different data packets including a first data packet and a second data packet, the at least two different data packets carrying the key encryption information and the encrypted data, and the first data packet includes a first traversal sequence, and the second data packet includes the second traversal sequence;

The sending unit is specifically configured to send the at least two different data packets to the receiving end, wherein the first data packet and the second data packet are sent respectively.

With reference to the third aspect, in a second implementation manner of the third aspect, the key encryption information generation unit is specifically configured to perform a binary tree of the at least one leaf node based on the arrangement order of the information stored by the at least one leaf node The encoding is arranged to obtain the key encryption information.

With reference to the third aspect, in a third embodiment of the third aspect, the order of the information stored in each leaf node in the key is the same as the order of information stored in each leaf node in the binary key;

The computing unit is specifically configured to encrypt the binary data to be transmitted according to the arrangement order of the information stored by each leaf node in the binary key and the information stored by each leaf node in the binary key in sequence according to a preset sequence. The algorithm performs calculation to obtain the encrypted data.

With reference to the third aspect or any implementation manner of the third aspect, in a fourth implementation manner of the third aspect, the preset encryption algorithm includes an exclusive OR algorithm.

In a fourth aspect, the present invention provides a data decryption device, comprising:

a receiving unit, configured to receive the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the sending end of the data to be transmitted;

The binary tree restoration unit is used to restore the binary tree based on the first traversal sequence and the second traversal sequence;

a determining unit for determining a key including information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information;

The binary conversion unit is used to convert the information stored in each leaf node in the key into binary to obtain a binary key;

a computing unit, configured to calculate the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted, the preset decryption algorithm corresponding to the preset encryption algorithm used by the sender to encrypt the data to be transmitted;

The data conversion unit is used for converting the decrypted binary data to be transmitted into data to be transmitted.

With reference to the first aspect, in a first implementation manner of the first aspect, the receiving unit is specifically configured to receive at least two different data packets including a first data packet and a second data packet sent by the transmitting end, Wherein, the at least two different data packets carry the key encryption information and the encrypted data, and the first data packet includes a first traversal sequence, and the second data packet includes the second traversal sequence , the first data packet and the second data packet are respectively sent by the sending end.

With reference to the first aspect, in a second implementation manner of the first aspect, the determining unit is specifically configured to determine the key and each leaf node in the key based on the restored binary tree and the key encryption information The order in which the stored information is arranged.

With reference to the first aspect, in a third implementation manner of the first aspect, the computing unit is specifically configured to combine the encrypted data with the encrypted data in sequence according to the arrangement order of information stored in each leaf node in the binary key. The information stored in each leaf node in the binary key is calculated according to a preset decryption algorithm to obtain the decrypted binary data, or the encrypted data is arranged according to the reverse order of the information stored in each leaf node in the binary key. Decrypted binary data is obtained by calculating sequentially with the information stored in each leaf node in the binary key according to a preset decryption algorithm.

With reference to the third implementation manner of the first aspect, in the fourth implementation manner of the first aspect, when the computing unit is specifically configured to convert the encrypted data according to the information stored by each leaf node in the binary key When the decrypted binary data is obtained by calculating with the information stored in each leaf node in the binary key in reverse order according to a preset decryption algorithm, the preset decryption algorithm includes an exclusive OR operation.

With reference to the first aspect or any implementation manner of the first aspect, in a fifth implementation manner of the first aspect, the preset decryption algorithm and the preset encryption algorithm are mutually inverse operations.

In a fifth aspect, the present invention provides a data encryption and decryption system, including the data encryption device as described in the third aspect and the data decryption device as described in the fourth aspect.

The present invention provides a data encryption and decryption method, device and system. In the present invention, the sending end of the data to be transmitted generates a binary tree for encrypting the data, and the first traversal sequence and the second traversal sequence capable of restoring the binary tree are sent to the For the receiving end of the data to be transmitted, the receiving end can accurately restore the binary tree generated by the transmitting end according to the two traversal sequences received, so as to ensure the accuracy of decrypting the encrypted data to be transmitted; the transmitting end and the receiving end are stored in at least one leaf node in the binary tree. After the information is converted into a binary key, the sender calculates the binary key and the data to be transmitted into binary according to the preset encryption algorithm to obtain encrypted data, and the receiver calculates the binary key and the encrypted data according to the preset decryption algorithm. Perform calculation to obtain the decrypted binary data to be transmitted. In this way, the binary tree and binary operations are combined to encrypt and decrypt the data to be transmitted, which improves the complexity of encryption and decryption and makes data transmission more secure; the sender uses at least one leaf node in the binary tree. The stored information is encrypted for the data to be transmitted, but the key information is generated based on the binary tree encoding of at least one leaf node sent to the receiving end, and the receiving end can determine the information stored in the leaf node to encrypt the data to be transmitted according to the key information. The sender and receiver do not directly transmit the encryption and decryption information of the data to be transmitted, but the key information that is further encrypted for the encryption and decryption of the data to be transmitted is transmitted, thereby improving the security of the information transmission of the encryption and decryption of the data to be transmitted. to improve the security of data transmission. Moreover, in the present invention, when data transmission is performed between the sending end and the receiving end, the information of the unencrypted data to be transmitted is not involved, which avoids the problem that the encrypted data is easily cracked and reduces the security of data transmission.

Description of drawings

In order to illustrate the technical solutions of the embodiments of the present invention more clearly, the following briefly introduces the accompanying drawings that need to be used in the embodiments of the present invention. Obviously, the drawings described below are only some embodiments of the present invention. For those of ordinary skill in the art, other drawings can also be obtained from these drawings without any creative effort.

FIG. 1 shows a schematic flowchart of a method for data encryption according to an embodiment of the present invention;

Fig. 2 shows the schematic diagram of the binary tree generated in the method for data encryption shown in Fig. 1;

3 shows a schematic flowchart of a method for data encryption according to yet another embodiment of the present invention;

4 shows a schematic flowchart of a method for decrypting data according to another embodiment of the present invention;

5 shows a schematic block diagram of an apparatus for encrypting data according to an embodiment of the present invention;

6 shows a schematic block diagram of an apparatus for data encryption according to yet another embodiment of the present invention;

7 shows a schematic block diagram of an apparatus for decrypting data according to another embodiment of the present invention;

FIG. 8 shows a schematic block diagram of a system for encrypting and decrypting data according to an embodiment of the present invention.

Detailed ways

In order to make the purposes, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments These are some embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.

Features and exemplary embodiments of various aspects of the invention are described in detail below. In the following detailed description, numerous specific details are set forth in order to provide a thorough understanding of the present invention. However, it will be apparent to one skilled in the art that the present invention may be practiced without some of these specific details. The following description of the embodiments is only intended to provide a better understanding of the present invention by illustrating examples of the invention. The present invention is in no way limited to any specific configurations and algorithms set forth below, but covers any modification, substitution and improvement of elements, components and algorithms without departing from the spirit of the invention. The embodiments in this application and the features in the embodiments may be combined with each other without conflict. The present application will be described in detail below with reference to the accompanying drawings and in conjunction with the embodiments.

The embodiments of the present invention are applicable to scenarios in which data to be transmitted is encrypted and transmitted during data transmission. After the transmitting end of the data to be transmitted encrypts the data to be transmitted by using the data encryption method in the embodiment of the present invention, the receiving end of the data to be transmitted decrypts the encrypted data according to the information sent by the transmitting end by using the data decryption method in the embodiment of the present invention. , and finally get the accurate data to be transmitted.

FIG. 1 shows a schematic flowchart of a method for data encryption according to an embodiment of the present invention. As shown in Figure 1, the method can be used for the sending end of the data to be transmitted, and includes the following steps: S110, generating a binary tree for encrypting the data; S120, generating a first traversal sequence and a second traversal sequence based on the binary tree; S130, Determine the information stored by at least one leaf node in the binary tree as a key; S140, generate key encryption information based on the binary tree encoding of at least one leaf node; S150, convert the information stored in each leaf node in the key into binary to obtain binary key, and converting the data to be transmitted into binary data to be transmitted; S160, calculating the binary key and the binary data to be transmitted according to a preset encryption algorithm to obtain encrypted data; S170, sending a first traversal to the receiving end of the data to be transmitted Sequence, second traversal sequence, key encryption information and encrypted data.

In step S110, the sender may randomly generate a binary tree for encrypting data. For example, as shown in FIG. 2, it is a binary tree generated to encrypt data according to an embodiment of the present invention. The binary tree adopts Huffman coding huffman coding. For all nodes, if there is a left child, the branch that points to the left child is coded as 0 , coded as 1 if it points to the right child branch.

In step S120, a unique binary tree (a binary tree generated for the sender) can be restored through the first traversal sequence and the second traversal sequence, that is, after the receiver receives the first traversal sequence and the second traversal sequence, it can be The first traversal sequence and the second traversal sequence obtain the binary tree generated by the sender. Those skilled in the art know that a binary tree can obtain different traversal sequences through different traversal methods. The traversal methods include: pre-order traversal sequence, in-order traversal sequence, post-order traversal sequence and layer-by-layer traversal sequence. Among the various traversal sequences of binary trees , the combination of the pre-order traversal sequence and the in-order traversal sequence can uniquely determine a binary tree, and the combination of the post-order traversal sequence and the layer-by-layer traversal sequence can uniquely determine a binary tree, so the first traversal sequence and the second traversal sequence in this step can be Pre-order traversal sequence, in-order traversal sequence, or post-order traversal sequence, layer-order traversal sequence. For example, in the binary tree shown in Figure 2, where the in-order traversal sequence is DHBIEAFJCG and the pre-order traversal sequence is ABDHEICFJG, if other devices obtain the in-order traversal sequence (DHBIEAFJCG) and the pre-order traversal sequence (ABDHEICFJG) of the binary tree shown in Figure 2 ), the binary tree shown in Figure 2 can be obtained.

In step S130, the information stored on at least one leaf node in the binary tree is determined as the key for encrypting the data to be transmitted. For example, in the embodiment of the present invention, the information stored in the leaf node GIJH in the binary tree shown in FIG. 2 is selected as the key.

In step S140, key encryption information is generated based on the binary tree encoding of at least one leaf node determined in step S130, that is, after step 130 determines the information stored on at least one leaf node as a key, these determined leaf nodes are on the binary tree. The corresponding binary tree is encoded as the key encryption information of the key. Since the binary tree code is unique for the leaf node of the binary tree, after the binary tree and the binary tree code of the leaf node in the binary tree are determined, the leaf node can be uniquely determined. For example, in the embodiment of the present invention, the information stored in the leaf node GIJH in the binary tree shown in FIG. 2 is selected as the key, and the binary tree codes corresponding to each leaf node are respectively: the binary tree code of G is 11, the binary tree code of I is 010, and the binary tree code of J is 010. The binary tree code is 101, and the binary tree code of H is 001, then the key encryption information is (11 010 101 001).

In step S150, since the binary calculation is simple and the operation is convenient, in this step, the key and the data to be transmitted are converted into binary and then calculated. In this step, the method of converting the key and the data to be transmitted into binary is not limited. For example, it can be converted through a correlation function. The binary key obtained after the key GIJH is converted into binary is (01100111, 01101001, 01101010, 01101000) .

In step S160, the preset encryption algorithm is preset, and the specific encryption algorithm may be an exclusive OR algorithm, etc., which is not limited herein.

In the embodiment of the present invention, the sender of the data to be transmitted generates a binary tree for encrypting the data, and the first traversal sequence and the second traversal sequence capable of restoring the binary tree are sent to the receiver of the to-be-transmitted data, so that the receiver can The two traversal sequences accurately restore the binary tree generated by the sender to ensure the accuracy of decrypting the encrypted data to be transmitted. The data to be transmitted is calculated according to the preset encryption algorithm to obtain encrypted data. In this way, the binary tree and binary operation are combined to encrypt and decrypt the data to be transmitted, which improves the complexity of encryption and decryption, and makes the data transmission more secure; the sender uses the binary tree in the binary tree. The information stored by at least one leaf node is a key, but the key encryption information is generated based on the binary tree encoding of each leaf node in the key, which is sent to the receiving end, so that the receiving end can determine according to the key encryption information to encrypt the data to be transmitted. The information stored by the leaf node, so that the key is not directly transmitted between the sender and the receiver, but the key encryption information that further encrypts the key is transmitted, thereby improving the security of information transmission for encryption and decryption of the data to be transmitted. , thereby improving the security of data transmission. Moreover, in the present invention, when data transmission is performed between the sending end and the receiving end, the information of the unencrypted data to be transmitted is not involved, which avoids the problem that the encrypted data is easily cracked and reduces the security of data transmission.

Fig. 3 shows a schematic flowchart of a data decryption method according to another embodiment of the present invention. The difference between the embodiment shown in Fig. 3 and the embodiment shown in Fig. 1 is that before step S170 in the method, the method can also be executed Step S180, generating at least two different data packets including the first data packet and the second data packet; then step S170 may be specifically performed as: step S171, sending at least two different data packets to the receiving end.

Wherein, at least two different data packets carry key encryption information and encrypted data, and the first data packet includes the first traversal sequence, and the second data packet includes the second traversal sequence. In step S180, the transmitting end generates at least two data packets including the first data packet and the second data packet from the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to be sent to the receiving end, wherein the first data packet The data packet includes a first traversal sequence, the second data packet includes a second traversal sequence, and the key encryption information and encrypted data can be carried in any one of the at least two data packets.

In step S171, the first data packet and the second data packet are sent respectively. When the sending end sends at least two data packets to the receiving end, it needs to send the first data packet and the second data packet respectively, so as to avoid the first traversal sequence and the second traversal sequence when the first traversal sequence and the second traversal sequence are sent together. At the same time, it is intercepted by an illegal person, thereby preventing the first traversal sequence and the second traversal sequence from being intercepted and restoring the binary tree generated in step S110 when the first traversal sequence and the second traversal sequence are transmitted at the same time.

It should be noted that the manner in which the sending end sends the first data packet and the second data packet respectively may be simultaneously but through different channels, or the sending end may send the first data packet and the second data packet twice in succession. The first traversal sequence and the second traversal sequence sent in S171 can also be encrypted before being sent, which further improves the security of data transmission.

It can be understood that step S140 may be specifically executed as: step S141 , arranging the binary tree codes of at least one leaf node based on the arrangement order of information stored in at least one leaf node to obtain key encryption information.

The information stored by at least one leaf node in step S141 is the information stored by each leaf node in the key, and the binary tree code of at least one leaf node is the binary tree code of each leaf node constituting the key.

It should be noted that, when the key is composed of information stored by multiple leaf nodes, different order of arrangement will constitute different keys. Different results are obtained when the encrypted data is encrypted, and the arrangement order of the binary tree encoding of each leaf node in the key encryption information needs to be consistent with the arrangement order of the information stored in each leaf node in the key, so that the sender can send the key encryption information. After giving it to the receiving end, the receiving end can determine the information stored in each leaf node in the key according to the binary tree encoding of each leaf node in the key encryption information, and determine the information stored in each leaf node in the key encryption information according to the arrangement order of the binary tree encoding of each leaf node in the key encryption information. The order of the information stored in each leaf node in the key is used to uniquely determine the key generated by the sender to ensure the accuracy of decrypting encrypted data.

It can be understood that, in the method, the order of the information stored in each leaf node in the key is the same as the order of the information stored in each leaf node in the binary key; step S160 can be specifically performed as step S161, where the binary to be transmitted is arranged in the same order. The information stored in each leaf node in the data and the binary key is sequentially calculated according to a preset encryption algorithm to obtain encrypted data.

Wherein, after converting the information stored in each leaf node in the key into binary to obtain a binary key in step S150, in step S160, the information stored in each leaf node in the binary key can be taken as a whole with the binary data to be transmitted For calculation, the information stored in each leaf node in the binary key can also be calculated sequentially with the binary data to be transmitted. When the binary data to be transmitted is calculated in turn with the information stored in each leaf node in the binary key, the order of the information stored in each leaf node in the key is the same as the order of information stored in each leaf node in the binary key , and then step S161 is executed. In this way, after the sending end performs step S170, the receiving end can determine the key for encrypting the data to be transmitted according to the information sent by the sending end, and then determine that the sending end is executing according to the arrangement order of the information stored in each leaf node in the key. In step S161, the order in which the binary data to be transmitted and the information stored in each leaf node in the binary key are calculated, so that the data to be transmitted can be decrypted correctly.

Specifically, taking the binary key (01100111, 01101001, 01101010, 01101000) obtained in step S150 for XOR operation with the binary data to be transmitted as an example, the calculation process of step S161 is: (binary data to be transmitted)⊕01100111⊕ 01101001⊕01101010⊕01101000.

It should be noted that, in step S160, the information stored in each leaf node in the binary key is sequentially calculated with the binary data to be transmitted, that is, the encrypted data is obtained after multiple calculations, which can improve the complexity of the encrypted data and reduce the The possibility of encrypted data being cracked increases the security of data transmission.

It should be noted that, in the embodiment shown in FIG. 1 , before step S170 is performed, the encrypted data may be converted into the original format of the data to be transmitted, and then the encrypted data in the original format of the data to be transmitted is converted into the encrypted data in step S170 sent to the receiver. Before step S110 is performed, the sender may also send a communication request to the receiver, and step S110 is performed after receiving a confirmation reply from the receiver.

FIG. 4 shows a schematic flowchart of a method for decrypting data according to another embodiment of the present invention. As shown in Figure 4, the method can be used for the receiving end of the data to be transmitted, comprising the following steps: S210, receiving the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the transmitting end of the data to be transmitted S220, based on the first traversal sequence and the second traversal sequence to restore and obtain a binary tree; S230, based on the restored binary tree and the key encryption information, determine the key including the information stored by at least one leaf node in the binary tree; S240, Convert the information stored in each leaf node in the key into binary to obtain a binary key; S250, calculate the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted; S260: Convert the decrypted binary data to be transmitted into the data to be transmitted.

In step S210, the receiver receives the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the sender in step S170. Wherein, the first traversal sequence and the second traversal sequence are obtained by the sender through step S120 after generating the binary tree in step S110, the encryption key information is obtained by the sender through step S140, and the encrypted data is obtained by the sender in step S140. obtained through step S160.

In step S220, since the sender can obtain a unique binary tree from the first traversal sequence and the second traversal sequence obtained in step S120, that is, the binary tree generated by the sender, in this step, the receiver passes the first traversal sequence. and the second traversal sequence to restore the binary tree to facilitate key determination based on the binary tree.

In step S230, since the key encryption information is the binary tree encoding of at least one leaf node in the binary tree, the binary tree of which leaf nodes are included in the key encryption information can be determined based on the key encryption information and the binary tree obtained in step S210 encoding, these leaf nodes form the key.

In step S240, after the key is determined, the information stored in each leaf node in the key is converted into binary to obtain a binary key, and the binary key is calculated. The calculation process is simple and the operation is convenient.

In step S250, the preset decryption algorithm corresponds to the preset encryption algorithm used by the sender to encrypt the data to be transmitted. In step S160, the sender obtains the encrypted data according to the preset encryption algorithm according to the binary data to be transmitted and the binary key, and in this step, the receiver needs to obtain the binary data to be transmitted according to the binary key and the encrypted data according to the preset decryption algorithm, Therefore, the preset encryption algorithm and the preset decryption algorithm should correspond to each other, so as to ensure that the binary data to be transmitted decrypted by the receiving end is correct. The corresponding relationship between the preset encryption algorithm and the preset decryption algorithm may include multiple types. For example, the preset decryption algorithm and the preset encryption algorithm are inverse operations of each other, and the preset decryption algorithm and the preset encryption algorithm are the same as the XOR. algorithm.

In step S260, since the binary data to be transmitted is obtained in step S250, the binary data to be transmitted is converted into the original format of the data to be transmitted in this step, that is, the data to be transmitted to be transmitted by the sender to the receiver is obtained. .

In this embodiment of the present invention, since the sender generates the first traversal sequence and the second traversal sequence capable of restoring the binary tree and sends them to the receiver, the receiver can accurately restore the binary tree generated by the sender according to the two traversal sequences received, ensuring that the encrypted The accuracy of the decryption of the data to be transmitted; the receiving end determines the key including the information stored in at least one leaf node, converts it into binary, and calculates the decrypted data according to the preset decryption algorithm to obtain the decrypted binary data to be transmitted. Combined with binary operation to encrypt and decrypt the data to be transmitted, the complexity of decryption is increased, and the security of data transmission is higher; the receiving end receives the key encryption information sent by the sender, and can determine the data to be transmitted according to the key encryption information. Encrypt the information stored by the leaf node, so that the key is not directly transmitted between the sender and the receiver, but the key encryption information that further encrypts the key is transmitted, thereby improving the transmission efficiency of the information to be encrypted and decrypted. security, thereby improving the security of data transmission. Moreover, in the present invention, when the transmitting end and the receiving end perform data transmission, the information of the unencrypted data to be transmitted is not involved, which avoids the problem that the encrypted data is easily cracked and reduces the security of data transmission.

It can be understood that, in the method, step S260 may be specifically performed as: step S261, receiving at least two different data packets including the first data packet and the second data packet sent by the transmitting end.

In step S261, at least two different data packets carry key encryption information and encrypted data, and the first data packet includes the first traversal sequence, the second data packet includes the second traversal sequence, the first data packet and the second data The packets are sent separately by the sender. The receiving end receives the first data packet and the second data packet respectively sent by the transmitting end, so that the first traversal sequence and the second traversing sequence are prevented from being transmitted together at the transmitting end and the receiving end, and the simultaneous transmission of the first traversing sequence and the second traversing sequence can be avoided. It is intercepted by an illegal person, thereby preventing the first traversal sequence and the second traversal sequence from being intercepted when transmitting at the same time and restoring the binary tree generated in step S110, resulting in the decryption of the encrypted data and improving the security of data transmission.

It should be noted that the key information and encrypted data received by the receiving end may be carried by the first information or the second information. The first information and the second information received in S261 may also be encrypted information, which further improves the security of data transmission.

It can be understood that step S230 may be specifically executed as: step S231 , determining the key and the arrangement order of the information stored in each leaf node in the key based on the restored binary tree and the key encryption information.

Wherein, when the key is composed of information stored by multiple leaf nodes, different arrangement orders will constitute different keys. If the arrangement order of the information stored in each leaf node in the key is different, it will cause the data to be encrypted to be processed in step S160. When different results are obtained during encryption, the arrangement order of the binary tree codes of each leaf node in the key encryption information represents the arrangement order of the information stored in each leaf node in the key, and the receiving end needs to encrypt the information according to the key. The encoding determines the information stored by each leaf node in the key, and determines the sequence of information stored in each leaf node in the key according to the order of the binary tree encoding of each leaf node in the key encryption information, and then uniquely determines that the sender generates key to ensure the accuracy of decrypting encrypted data.

For example, in the embodiment of the present invention, the binary tree shown in FIG. 2 is obtained, and the key encryption information is (11 010 101001), then it can be concluded that the leaf nodes constituting the key are G, I, J, and H. The order of leaf nodes is GIJH.

It can be understood that, in the method, step S250 can be specifically executed as: step S251, the encrypted data is sequentially combined with the information stored in each leaf node in the binary key according to the arrangement order of the information stored in each leaf node in the binary key. The decrypted binary data is obtained by calculating according to the preset decryption algorithm, or the encrypted data is sequentially combined with the information stored in each leaf node in the binary key according to the reverse order of the information stored in each leaf node in the binary key according to the preset order. Suppose the decryption algorithm is calculated to obtain the decrypted binary data.

Wherein, in step S160, the information stored in each leaf node in the binary key can be calculated as a whole with the binary data to be transmitted, or the information stored in each leaf node in the binary key can be sequentially calculated with the binary data to be transmitted. calculate. When the binary data to be transmitted is sequentially calculated with the information stored in each leaf node in the binary key, after the sender performs step S170, the receiver can determine the key to encrypt the data to be transmitted according to the information sent by the sender, Then according to the arrangement order of the information stored in each leaf node in the key, determine the order in which the binary data to be transmitted and the information stored in each leaf node in the binary key are calculated by the sender when performing step S161, and then in step S251 According to the arrangement order of the information stored in each leaf node in the binary key, or according to the reverse order of the information stored in each leaf node in the binary key, the receiving end sequentially matches the information stored in each leaf node in the binary key according to the pre-determined order. It is assumed that the decryption algorithm performs calculation to obtain the decrypted binary data, so as to correctly decrypt the data to be transmitted.

It should be noted that, when step S250 adopts step S251, the encrypted data is sequentially combined with the information stored in each leaf node in the binary key according to the reverse order of the information stored in each leaf node in the binary key according to the preset decryption algorithm. When performing calculation to obtain decrypted binary data, the preset decryption algorithm includes XOR operation. When step S251 is executed, it can be determined according to the preset decryption algorithm according to the arrangement order of the information stored in each leaf node in the binary key or according to the reverse arrangement order of the information stored in each leaf node in the binary key. , for example, if the preset decryption algorithm is an XOR operation, step S251 needs to perform the operation according to the reverse order of the information stored in each leaf node in the binary key; and for the information stored in each leaf node in the binary key A preset decryption algorithm that has no effect on the calculation result in the arrangement order of , can be executed in any manner in step S251 .

Specifically, taking the binary key (01100111, 01101001, 01101010, 01101000) obtained in step S240 and the encrypted data to obtain binary data to be transmitted by XOR operation as an example, the calculation process of step S161 is: (encrypted data)⊕01101000 ⊕01101010⊕01101001⊕01100111, and then get the binary data to be transmitted.

It should be noted that, in the embodiment shown in FIG. 2 , if the encrypted data sent by the sender in step S170 is the original format of the data to be transmitted, then before step S250 is executed, the receiver needs to convert the original format of the data to be transmitted. The encrypted data in the format is converted into binary encrypted data, and then step S250 is executed. Before step S210 is performed, if the receiving end receives the communication request sent by the sending end, the receiving end may send a confirmation reply to the sending end, so that the sending end can continue to execute the marrying her process.

FIG. 5 shows a schematic block diagram of an apparatus 300 for data encryption according to an embodiment of the present invention. As shown in Figure 5, the device 300 includes:

Binary tree generating unit 310, for generating a binary tree for encrypting data;

a sequence generating unit 320, configured to generate a first traversal sequence and a second traversal sequence based on the binary tree, wherein the binary tree can be restored through the first traversal sequence and the second traversal sequence;

A determination unit 330, configured to determine the information stored by at least one leaf node in the binary tree as a key;

a key encryption information generating unit 340, configured to generate key encryption information based on the binary tree encoding of the at least one leaf node;

Conversion unit 350, for converting the information stored in each leaf node in the key into binary to obtain a binary key, and converting the data to be transmitted into binary data to be transmitted;

A calculation unit 360, configured to calculate the binary key and the binary data to be transmitted according to a preset encryption algorithm to obtain encrypted data;

The sending unit 370 is configured to send the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted.

FIG. 6 shows a schematic block diagram of an apparatus for data encryption according to yet another embodiment of the present invention. As shown in FIG. 6, the apparatus 300 further includes:

a data packet generating unit 380, configured to generate at least two different data packets including a first data packet and a second data packet, the at least two different data packets carrying the key encryption information and the encrypted data, and the first data packet includes a first traversal sequence, and the second data packet includes the second traversal sequence;

The sending unit 370 is specifically configured to send the at least two different data packets to the receiving end, wherein the first data packet and the second data packet are sent respectively.

It can be understood that the key encryption information generating unit 340 is specifically configured to obtain the key encryption information by arranging the binary tree codes of the at least one leaf node based on the arrangement order of the information stored by the at least one leaf node.

It can be understood that the order of information stored in each leaf node in the key is the same as the order of information stored in each leaf node in the binary key.

The computing unit 360 is specifically configured to sequentially pre-set the binary data to be transmitted according to the arrangement order of the information stored in each leaf node in the binary key and the information stored in each leaf node in the binary key. The encryption algorithm performs calculation to obtain the encrypted data.

Wherein, the preset encryption algorithm includes an exclusive OR algorithm. …

The apparatus 300 according to the embodiment of the present invention may correspond to the execution subject in the method for data encryption according to the embodiment of the present invention, and the above-mentioned and other operations and/or functions of each module in the apparatus 300 are respectively for realizing the data encryption in the For the sake of brevity, the corresponding processes of each method are not repeated here.

The apparatus 300 for data to be transmitted in the embodiment of the present invention generates a binary tree for encrypting data, and sends the first traversal sequence and the second traversal sequence capable of restoring the binary tree to the receiving end of the data to be transmitted, so that the receiving end can Two traversing sequences accurately restore the binary tree generated by the device 300 to ensure the accuracy of decrypting the data to be transmitted after encryption; the device 300 uses the information stored in at least one leaf node in the binary tree as a key, and converts it into binary and converts it into binary. The data to be transmitted is calculated according to a preset encryption algorithm to obtain encrypted data, so that the binary tree and binary operation are combined to encrypt and decrypt the data to be transmitted, which improves the complexity of encryption and decryption, and makes data transmission more secure; the device 300 uses the binary tree in the The information stored by at least one leaf node is a key, but the key encryption information is generated based on the binary tree encoding of each leaf node in the key, which is sent to the receiving end, so that the receiving end can determine according to the key encryption information to encrypt the data to be transmitted. The information stored by the leaf node, so that the key is not directly transmitted between the device 300 and the receiving end, but the key encryption information that further encrypts the key is transmitted, thereby improving the security of information transmission for encryption and decryption of the data to be transmitted. , thereby improving the security of data transmission. Moreover, in the present invention, when the device 300 and the receiving end perform data transmission, the information of the unencrypted data to be transmitted is not involved, which avoids the problem that the encrypted data is easily cracked and reduces the security of data transmission.

FIG. 7 shows a schematic block diagram of an apparatus 400 for decrypting data according to another embodiment of the present invention. As shown in FIG. 7, the apparatus 400 includes:

a receiving unit 410, configured to receive the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the sender of the data to be transmitted;

The binary tree restoring unit 420 is configured to restore the binary tree based on the first traversal sequence and the second traversal sequence;

A determination unit 430, configured to determine a key including information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information;

Binary conversion unit 440, for converting the information stored in each leaf node in the key into binary to obtain a binary key;

The calculation unit 450 is configured to calculate the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted, the preset decryption algorithm and the transmission end encrypting the data to be transmitted. The preset encryption algorithm corresponds to;

The data conversion unit 460 is configured to convert the decrypted binary data to be transmitted into the data to be transmitted.

It can be understood that the receiving unit 410 is specifically configured to receive at least two different data packets including a first data packet and a second data packet sent by the sending end, wherein the at least two different data packets Carrying the key encryption information and the encrypted data, and the first data packet includes a first traversal sequence, the second data packet includes the second traversal sequence, the first data packet and the first traversal sequence The two data packets are sent by the sender respectively.

It can be understood that the determining unit 430 is specifically configured to determine the arrangement order of the key and the information stored by each leaf node in the key based on the restored binary tree and the key encryption information.

It can be understood that the computing unit 450 is specifically configured to combine the encrypted data with the information stored in each leaf node in the binary key according to the arrangement order of the information stored in each leaf node in the binary key. The decrypted binary data is obtained by calculating according to a preset decryption algorithm, or the encrypted data is sequentially combined with each leaf in the binary key according to the reverse order of the information stored in each leaf node in the binary key. The information stored by the node is calculated according to the preset decryption algorithm to obtain the decrypted binary data.

Wherein, when the computing unit is specifically configured to combine the encrypted data with the information stored in each leaf node in the binary key according to the reverse order of the information stored in each leaf node in the binary key in accordance with When a preset decryption algorithm performs calculation to obtain decrypted binary data, the preset decryption algorithm includes an exclusive OR operation. The preset decryption algorithm and the preset encryption algorithm are mutually inverse operations.

The apparatus 400 according to the embodiment of the present invention may correspond to the execution subject in the method for data decryption according to the embodiment of the present invention, and the above-mentioned and other operations and/or functions of each module in the apparatus 400 are respectively for realizing the data decryption in the For the sake of brevity, the corresponding processes of each method are not repeated here.

In this embodiment of the present invention, since the transmitting end generates the first traversal sequence and the second traversing sequence capable of restoring the binary tree and sends them to the device 400, the device 400 can accurately restore the binary tree generated by the transmitting end according to the two received traversal sequences, ensuring that the encrypted The accuracy of the decryption of the data to be transmitted; the device 400 determines the key including the information stored in at least one leaf node, and converts it into binary data and performs calculation with the decrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted. Combine with binary operation to encrypt and decrypt the data to be transmitted, improve the complexity of decryption, and make data transmission more secure; the device 400 receives the key encryption information sent by the sender, and can determine the data to be transmitted according to the key encryption information. The information stored in the leaf node is encrypted, so that the key is not directly transmitted between the sender and the device 400, but the key encryption information that further encrypts the key is transmitted, thereby improving the transmission efficiency of the information to be encrypted and decrypted. security, thereby improving the security of data transmission. Moreover, in the present invention, when the transmitting end and the device 400 perform data transmission, the information of the unencrypted data to be transmitted is not involved, which avoids the problem that the encrypted data is easily cracked and reduces the security of data transmission.

FIG. 8 shows a data encryption and decryption system 500 according to an embodiment of the present invention. As shown in FIG. 8 , the system 500 includes the data encryption device 300 shown in FIG. 5 and the data decryption device shown in FIG. 7 . Device 400 .

Those skilled in the art can clearly understand that, for the convenience and brevity of description, the specific working process of the system, device and unit described above may refer to the corresponding process in the foregoing method embodiments, which will not be repeated here.

The above are only specific embodiments of the present invention, but the protection scope of the present invention is not limited to this. Any person skilled in the art can easily think of various equivalents within the technical scope disclosed by the present invention. Modifications or substitutions should be included within the protection scope of the present invention. Therefore, the protection scope of the present invention should be subject to the protection scope of the claims.

Claims (23)

1. A method of data encryption, comprising: Generate a binary tree for encrypting data; generating a first traversal sequence and a second traversal sequence based on the binary tree, wherein the binary tree can be restored through the first traversal sequence and the second traversal sequence; Determine the information stored by at least one leaf node in the binary tree as a key; Generate key encryption information based on the binary tree encoding of the at least one leaf node; Convert the information stored in each leaf node in the key into binary to obtain a binary key, and convert the data to be transmitted into binary data to be transmitted; Calculate the binary key and the binary data to be transmitted according to a preset encryption algorithm to obtain encrypted data; Send the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted. 2. The method according to claim 1, before said sending the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted , the method also includes: generating at least two different data packets including a first data packet and a second data packet, the at least two different data packets carrying the key encryption information and the encrypted data, and the first data packet including the first traversal sequence and the second data packet include the second traversal sequence; The sending of the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted includes: The at least two different data packets are sent to the receiving end, wherein the first data packet and the second data packet are sent respectively. 3. The method according to claim 1, wherein generating key encryption information based on the binary tree encoding of the at least one leaf node comprises: The key encryption information is obtained by arranging the binary tree codes of the at least one leaf node based on the arrangement order of the information stored in the at least one leaf node. 4. The method according to claim 1, the arrangement order of the information stored in each leaf node in the key is identical to the order of the information stored in each leaf node in the binary key; The encrypted data obtained by calculating the binary key and the binary data to be transmitted according to a preset encryption algorithm includes: The encryption is obtained by calculating the binary data to be transmitted according to the arrangement order of the information stored in each leaf node in the binary key and the information stored in each leaf node in the binary key according to a preset encryption algorithm. data. 5. The method according to any one of claims 1 to 4, the preset encryption algorithm comprising an exclusive OR algorithm. 6. A method for data decryption, comprising: Receive the first traversal sequence, the second traversal sequence, the key encryption information, and the encrypted data sent by the sender of the data to be transmitted, wherein the first traversal sequence and the second traversal sequence are generated based on a binary tree, and the binary tree is The information stored by at least one leaf node is a key, and the key encryption information is generated by binary tree encoding based on the at least one leaf node; The binary tree is obtained by restoring based on the first traversal sequence and the second traversal sequence; Determine a key including information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information; Converting the information stored in each leaf node in the key into binary to obtain a binary key; Calculate the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted, and the preset decryption algorithm corresponds to the preset encryption algorithm used by the sender to encrypt the data to be transmitted. ; Convert the decrypted binary data to be transmitted into the data to be transmitted. 7. The method according to claim 6, wherein the first traversal sequence, the second traversal sequence, key encryption information and encrypted data sent by the transmitting end of the data to be transmitted comprise: receiving at least two different data packets including a first data packet and a second data packet sent by the sending end, wherein the at least two different data packets carry the key encryption information and the encrypted data, In addition, the first data packet includes a first traversal sequence, the second data packet includes the second traversal sequence, and the first data packet and the second data packet are respectively sent by the sender. 8. The method according to claim 6, wherein determining the key comprising the information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information comprises: Based on the restored binary tree and the key encryption information, an arrangement order of the key and the information stored by each leaf node in the key is determined. 9. method according to claim 8, described binary key and described encrypted data are calculated according to preset decryption algorithm to obtain the binary data to be transmitted after decryption comprising: Calculate the encrypted data according to the arrangement order of the information stored in each leaf node in the binary key, and sequentially calculate the decrypted binary data with the information stored in each leaf node in the binary key according to a preset decryption algorithm. data; or, Calculate the encrypted data according to the reverse order of the information stored in each leaf node in the binary key, and sequentially calculate the encrypted data with the information stored in each leaf node in the binary key according to a preset decryption algorithm to obtain after decryption. binary data. 10. The method according to claim 9, when the binary key and the encrypted data are calculated according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted after the step adopts the encrypted data according to the binary data. When the reverse arrangement order of the information stored in each leaf node in the key is sequentially calculated with the information stored in each leaf node in the binary key according to a preset decryption algorithm to obtain the decrypted binary data, the execution method is: The preset decryption algorithm includes XOR operation. 11. The method according to any one of claims 6 to 9, wherein the preset decryption algorithm and the preset encryption algorithm are mutually inverse operations. 12. An apparatus for data encryption, comprising: A binary tree generating unit for generating a binary tree for encrypting data; a sequence generating unit, configured to generate a first traversal sequence and a second traversal sequence based on the binary tree, wherein the binary tree can be restored through the first traversal sequence and the second traversal sequence; a determining unit, configured to determine the information stored by at least one leaf node in the binary tree as a key; a key encryption information generating unit, configured to generate key encryption information based on the binary tree encoding of the at least one leaf node; a conversion unit, for converting the information stored in each leaf node in the key into binary to obtain a binary key, and converting the data to be transmitted into binary data to be transmitted; a computing unit, configured to calculate the binary key and the binary data to be transmitted according to a preset encryption algorithm to obtain encrypted data; A sending unit, configured to send the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data to the receiving end of the data to be transmitted. 13. The apparatus of claim 12, further comprising: a data packet generating unit configured to generate at least two different data packets including a first data packet and a second data packet, the at least two different data packets carrying the key encryption information and the encrypted data, and the first data packet includes a first traversal sequence, and the second data packet includes the second traversal sequence; The sending unit is specifically configured to send the at least two different data packets to the receiving end, wherein the first data packet and the second data packet are sent respectively. 14. The device according to claim 12, wherein the key encryption information generation unit is specifically configured to arrange the binary tree coding of the at least one leaf node based on the arrangement order of the information stored by the at least one leaf node to obtain the Key to encrypt information. 15. The device according to claim 14, the arrangement order of the information stored in each leaf node in the key is the same as the order of the information stored in each leaf node in the binary key; The computing unit is specifically configured to encrypt the binary data to be transmitted according to the arrangement order of the information stored by each leaf node in the binary key and the information stored by each leaf node in the binary key in sequence according to a preset sequence. The algorithm performs calculation to obtain the encrypted data. 16. The apparatus according to any one of claims 12-15, wherein the preset encryption algorithm comprises an exclusive OR algorithm. 17. An apparatus for decrypting data, comprising: a receiving unit, configured to receive the first traversal sequence, the second traversal sequence, the key encryption information and the encrypted data sent by the sender of the data to be transmitted, wherein the first traversal sequence and the second traversal sequence are generated based on a binary tree , the information stored by at least one leaf node in the binary tree is a key, and the key encryption information is generated by the binary tree encoding based on the at least one leaf node; The binary tree restoration unit is used to restore the binary tree based on the first traversal sequence and the second traversal sequence; a determining unit, configured to determine a key including information stored by at least one leaf node in the binary tree based on the restored binary tree and the key encryption information; A binary conversion unit, for converting the information stored in each leaf node in the key into binary to obtain a binary key; The calculation unit is used for calculating the binary key and the encrypted data according to a preset decryption algorithm to obtain the decrypted binary data to be transmitted, the preset decryption algorithm and the transmission terminal encrypting the data to be transmitted. Let the encryption algorithm correspond; A data conversion unit, configured to convert the decrypted binary data to be transmitted into the data to be transmitted. 18. The apparatus according to claim 17, wherein the receiving unit is specifically configured to receive at least two different data packets including a first data packet and a second data packet sent by the transmitting end, wherein the at least two data packets are different data packets carry the key encryption information and the encrypted data, and the first data packet includes the first traversal sequence, the second data packet includes the second traversal sequence, and the first data packet includes the first traversal sequence. The packet and the second data packet are sent by the sender respectively. 19. The apparatus according to claim 17, wherein the determining unit is specifically configured to determine the arrangement order of the key and the information stored by each leaf node in the key based on the restored binary tree and the key encryption information . 20. The device according to claim 19, wherein the computing unit is specifically configured to sequentially associate the encrypted data with each of the binary keys according to the arrangement order of the information stored in each leaf node in the binary key. The information stored in the leaf node is calculated according to the preset decryption algorithm to obtain the decrypted binary data, or the encrypted data is sequentially combined with the binary key according to the reverse order of the information stored in each leaf node in the binary key. The information stored in each leaf node in the key is calculated according to the preset decryption algorithm to obtain the decrypted binary data. 21. The device according to any one of claims 17-20, when the computing unit is specifically used to sequentially combine the encrypted data with the information stored in each leaf node in the binary key according to the reverse order of the information stored in the leaf node. When the information stored in each leaf node in the binary key is calculated according to a preset decryption algorithm to obtain decrypted binary data, the preset decryption algorithm includes an exclusive OR operation. 22. The apparatus according to any one of claims 17-20, wherein the preset decryption algorithm and the preset encryption algorithm are mutually inverse operations. 23. A system for data encryption and decryption, comprising the data encryption device as claimed in any one of claims 12 to 16 and the data decryption device as claimed in any one of claims 17 to 22.

Images