WO2021237388A1 - Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message - Google Patents

Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message Download PDF

Info

Publication number
WO2021237388A1
WO2021237388A1 PCT/CN2020/091961 CN2020091961W WO2021237388A1 WO 2021237388 A1 WO2021237388 A1 WO 2021237388A1 CN 2020091961 W CN2020091961 W CN 2020091961W WO 2021237388 A1 WO2021237388 A1 WO 2021237388A1
Authority
WO
WIPO (PCT)
Prior art keywords
electronic device
key
group
message
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2020/091961
Other languages
English (en)
Chinese (zh)
Inventor
林相宇
庄贤哲
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Gamania Digital Entertainment Co Ltd
Original Assignee
Gamania Digital Entertainment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Gamania Digital Entertainment Co Ltd filed Critical Gamania Digital Entertainment Co Ltd
Priority to PCT/CN2020/091961 priority Critical patent/WO2021237388A1/fr
Publication of WO2021237388A1 publication Critical patent/WO2021237388A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network

Definitions

  • the general instant messaging system platform is mostly an open communication platform and cannot restrict users of the communication platform. Although the open communication platform has extremely low restrictions on users, it has a high degree of freedom for users.
  • the present invention provides a method for encrypting and decrypting group messages and transmitting messages.
  • the electronic device itself provides encryption and decryption methods, and makes the server unable to identify, thereby eliminating the server and the transmission process from being leaked. Messages further increase the security of group communication.
  • the main purpose of the present invention is to provide a method for encrypting and decrypting group messages and transmitting messages, which uses the electronic device used by the user to directly encrypt and decrypt, and make the server unable to identify, so as to improve the security of the communication process and the message itself .
  • the present invention discloses a method for transmitting messages, which is applied to a first electronic device, a second electronic device, a data server and a communication group server.
  • the first electronic device is based on a first electronic device.
  • the account logs in to the communication group server, the second electronic device logs in to the communication group server according to a second account in order to receive the invitation of the first electronic device, and the first electronic device logs in to the communication group server according to a group data corresponding to the communication group server Generate a first device key and a first public key, the second electronic device generates a second device key and a second public key according to the group data, and the first electronic device generates a corresponding group according to the group data
  • the group key is used to encrypt the first public key to correspondingly generate a first encryption key, and the first electronic device records a corresponding first code and the previously obtained first encryption key in the data server , And the first electronic device further obtains the second public key transmitted from the second electronic device through the communication group server
  • the method for transmitting messages of the present invention first uses the first electronic device according to the first account number Download the first encryption key from the data server, whereby the first electronic device generates a group key according to the first device key and the first encryption key, and then encrypts a first message according to the group key , And generate a first encrypted message, followed by the first electronic device uploading the first encrypted message to the communication group server according to the first account; the second electronic device downloading the second encryption key from the data server according to the second account and downloading the second encryption key from the communication
  • the group server downloads the first encrypted message, and the second electronic device generates a group key according to the second device key and the second encryption key, whereby the second electronic device decrypts the first encrypted message according to the group key,
  • the second electronic device restores the first message and displays it, that is, the second electronic device decodes the first encrypted message of the first electronic device, and thus displays it on the second electronic device.
  • the present invention provides an embodiment, the content of which is that when the first electronic device does not read the first code, the first encryption key cannot be downloaded, and when the second electronic device does not read the second code, Unable to download the second encryption key.
  • the present invention provides an embodiment, the content of which is that the method of the present invention further includes: connecting the second electronic device to reply to the first message, thereby generating a second message according to the first message, and connecting the second electronic device according to the group key
  • the second message is encrypted to generate a second encrypted message, whereby the second electronic device uploads the second encrypted message to the communication group server according to the second account; then, the first electronic device downloads the second encrypted message from the communication group server Then, the first electronic device decrypts the second encrypted message according to the group key to restore the second message in the first electronic device.
  • the present invention provides an embodiment, the content of which is that a first electronic device generates a first device key and a first public key according to an asymmetric cryptographic algorithm, and a second electronic device generates a second device secret according to an asymmetric cryptographic algorithm. Key and the second encryption key.
  • the present invention provides an embodiment, the content of which is that the method for transferring messages further includes the step of transferring the second device key and the second public key to the fourth electronic device, and the second electronic device first obtains it according to the encryption group A second barcode and temporarily store the first device key and the first public key corresponding to the encryption group in the server, connect the fourth electronic device to obtain authorization information according to the second barcode, and then the fourth electronic device automatically according to the authorization information
  • the server downloads and restores the second device key and the second public key, and then the fourth electronic device joins the encryption group and encrypts the second public key according to the encryption group to generate the second encryption key and record the
  • the fourth electronic device and the second encryption key are in the server.
  • the present invention provides an embodiment.
  • the second electronic device obtains a second barcode according to the communication group server and temporarily stores the second device key and the second public key in the data server
  • the second electronic device The second device key and the second public key are encrypted to generate a second encrypted data, which is temporarily stored in the data server.
  • the present invention provides another embodiment.
  • the electronic device In the step of decrypting according to a device key and the encryption key, the electronic device further decrypts according to an asymmetric cryptographic algorithm to generate the group key.
  • the present invention also discloses a method for decrypting group messages, which is applied to an electronic device to store an encryption key to a data server according to an account, and the encryption key corresponds to a device of the electronic device
  • the electronic device first downloads the encryption key according to the account number, and the connected electronic device decrypts the encryption key according to the device key to generate a group key; the electronic device according to the group The group key decrypts an encrypted message to generate a decrypted message. In this way, the security of group messages is improved.
  • the present invention provides another embodiment, the content of which is that in the step of decrypting according to a device key and the encryption key, the electronic device further decrypts according to an asymmetric cryptographic algorithm to generate the group key.
  • the present invention provides another embodiment, the content of which is that in the step of generating and displaying a decrypted message according to the group key and an encrypted message, the encrypted message is further generated according to an Advanced Encryption Standard (AES) algorithm.
  • AES Advanced Encryption Standard
  • Figure 1A is a partial flowchart of an embodiment of the present invention
  • FIG. 2 is a schematic diagram of a system of a first encryption key according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of a system for encrypting messages by a first electronic device according to an embodiment of the present invention
  • 4B is a schematic diagram of a system for decrypting messages by a second electronic device according to an embodiment of the present invention
  • FIG. 6 is a flowchart of the encrypted group message of the present invention.
  • Fig. 7 is a flowchart of decrypting group messages according to the present invention.
  • 8A is a partial flowchart of the replacement of the first electronic device to the third electronic device according to the present invention.
  • 8B is a partial flowchart of the replacement of the first electronic device to the third electronic device according to the present invention.
  • FIG. 9 is a schematic diagram of a system of a first encryption key according to an embodiment of the present invention.
  • FIG. 10 is a schematic diagram of a second encryption key system according to an embodiment of the present invention.
  • FIG. 11 is a schematic diagram of a system for encrypting messages according to an embodiment of the present invention.
  • FIG. 12 is a schematic diagram of a system for decrypting messages according to an embodiment of the present invention.
  • 13A is a partial flowchart of the replacement of the second electronic device to the fourth electronic device according to the present invention.
  • FIG. 16 is a schematic diagram of a system for encrypting messages according to an embodiment of the present invention.
  • FIG. 17 is a schematic diagram of a system for decrypting messages according to an embodiment of the present invention.
  • Reference Signs 1 group system; 2 group system; 10 data server; 12 key list; 20 first electronic device; 22 first device key; 24 first public key; 30 second electronic device; 32 Second device key; 34 second public key; 40 communication group server; 40A encryption group; 50 multifunction server; 50A encryption group; 60 third electronic device; 62 third device key; 64 third public key Key; 70 fourth electronic device; 72 fourth device key; 74 fourth public key; D1 first encrypted data; D2 second encrypted data; device1 first code; device2 second code; key1 first encryption key; key2 second encryption key; keyg group key; M1 first message; M12 first encrypted message; M2 second message; M22 second encrypted message; QR1 first barcode; QR2 second barcode; S10-S120 steps; Steps S210-S230; Steps S310-S330; Steps S410-S560; Steps S610-S760.
  • the present invention proposes a method for encrypting and decrypting group messages and transferring messages to solve the problem of message reliability caused by the prior art.
  • a method of message delivery of the present invention includes the following steps:
  • Step S10 The first electronic device downloads the first encryption key from the data server according to the first account number
  • Step S20 The first electronic device decrypts the first encryption key according to the first device key to obtain the group key;
  • Step S50 The second electronic device downloads the second encryption key from the data server and downloads the first encrypted message from the communication group server according to the second account number;
  • Step S60 The second electronic device decrypts the second encryption key according to the second device key to obtain the group key;
  • Step S70 The second electronic device decrypts the first encrypted message according to the group key to restore the first message in the second electronic device.
  • the group system 1 used in the method of transmitting messages of the present invention includes a data server 10, a first electronic device 20, a second electronic device 30, and a communication group server 40.
  • the first electronic device 20 Log in to the communication group server 40 according to a first account A1
  • the first account A1 of the first electronic device 20 is stored in the communication group server 40
  • the first account A1 acts as a manager in a communication group 40A and is managed by the first
  • the electronic device 20 invites the second electronic device 30 to log in to the communication group server according to a second account A2
  • the first account A1 is a communication group G1 in the communication group server 40 as a manager.
  • the first electronic device 20 generates a first device key 22 and a first public key 24 according to a group data GD1 of the communication group G1, and the second electronic device 30 generates a second device key according to the group data GD1
  • the device key 32 and a second public key 34 so the first electronic device 20 encrypts the first public key 24 according to a group key keyg corresponding to the group data GD1 to generate a first encryption key Key1
  • An electronic device 20 obtains the second public key 34 of the second electronic device 30 through the communication group server 40, that is, the second electronic device 30 transmits the second public key 34 to the first electronic device 20 through the communication group server 40
  • the first electronic device 20 encrypts the second public key 34 according to the group key keyg to generate a second encryption key Key2, where the group data GD1 is the communication group 40A corresponding to the group communication server 40, so this implementation
  • the key mentioned in the example is the application communication group 40A and cannot be used in other groups to enhance security.
  • storing data and group broadcasting messages are performed on different servers, that is, the data server 10 and the group communication server 40 are distinguished, so the data server 10 and the communication group server 40 are distinguished.
  • the data server 10 stores a first encryption key Key1 and a second encryption key Key2.
  • the first encryption key key1 and the second encryption key key2 are respectively connected (or bound) with a first code device1 and a second code device2,
  • the first code device1 and the second code device2 are codes corresponding to the first electronic device 20 and the second electronic device 30 respectively.
  • the first device key 22 and the first public key 24 are generated by the first electronic device 20 according to an asymmetric encryption algorithm
  • the second device key 32 and the second public key 34 are generated by the second electronic device 30 according to The asymmetric encryption algorithm is generated, for example, the RSA encryption algorithm, so the first device key 22 is matched to the first public key 24, and the second device key 32 is matched to the second public key 34.
  • step S10 the first account A1 of the first electronic device 20 is in the communication group server 40, and a data download request is made to download the first encryption key key1 previously stored in the data server 10.
  • the data server 10 allows the first electronic device 20 to download the first encryption key key1 in the internal storage space of the first electronic device 20 according to the first code device1.
  • step S20 as shown in FIG. 4, the first electronic device 20 decrypts the first encryption key Key1, so that the first electronic device 20 obtains the group key keyg corresponding to the communication group 40A, and then in step S30 Here, the first electronic device 20 encrypts a first message M1 to be transmitted by the first electronic device 20 according to the group key keyg, thereby generating a first encrypted message M12.
  • step S40 as shown in FIG. 4, the first electronic device 20 uploads the first encrypted message M12 to the communication group 40A.
  • the second electronic device 30 makes a data download request for the second encryption key key2 to the data server 10, so that the data server 10 downloads the second encryption key key2 according to the second code device2 , While allowing the second electronic device 30 to download the first encrypted message M12 from the communication group 40A, and then in step S60, the second electronic device 30 decrypts according to the second device key 32 and the second encryption key key2, thereby obtaining Corresponding to the group key keyg of the communication group 40A, the second electronic device 30 uses the group key keyg to decrypt the encrypted message M12 in step S70 to restore the first encrypted message M12 to the first message M1. In the second electronic device 30, the second electronic device 30 can display the first message M1 instead of the first encrypted message M12.
  • the method of transmitting messages of the present invention allows the server to no longer interpret or recognize the messages transmitted by the first electronic device 20 to the second electronic device 30, thereby avoiding the leakage of information by third parties, and because the process of message transmission is Encrypting messages further improves the reliability of message delivery.
  • the method for transferring messages of the present invention can also be applied to the transfer process of the reply message of the second electronic device 30. Therefore, according to node A, the steps of the method of the present invention are further continued to step S150, that is to say, this
  • the invented method of delivering messages also includes:
  • Step S80 the second electronic device generates a second message according to the first message
  • Step S90 The second electronic device encrypts the second message according to the second device key and the second encryption key to generate a second encrypted message
  • Step S100 the second electronic device uploads the second encrypted message to the communication group server according to the second account
  • Step S110 the first electronic device downloads the second encrypted message from the communication group server.
  • Step S120 The first electronic device decrypts the second encrypted message according to the first device key and the first encryption key to restore the second message in the first electronic device.
  • step S110 the second electronic device 30 generates a corresponding reply message according to the first message M1, that is, correspondingly generates a second message M2, and then, in step S120, the second electronic device 30 generates a corresponding response message according to the second device key 32
  • the group key keyg generated by decrypting with the second encryption key key2 is used to encrypt the second message M2, wherein the second electronic device 30 can download the second encryption key key2 again from the data server 10, and execute the first
  • the second encryption key key2 is decrypted to obtain the group key keyg, and the second message M2 is encrypted to generate the corresponding second encrypted message M22, or the second electronic device 30 according to the second device key 32
  • the second encryption key key2 downloaded in the previous step S70 is directly used for decryption to obtain the group key keyg, and then the second message M2 is encrypted.
  • step S130 the second electronic device 30 uploads the second encrypted message M22 to the communication group 40A of the communication group server 40, so that the first electronic device 20 is connected to the communication group 40A from the communication group server 40 in step S140. Download the second encrypted message M22 to the internal storage space of the device.
  • step S150 the first electronic device 20 decrypts the second encrypted message M22 according to the group key keyg generated by decrypting the first device key 22 and the first encryption key key1 to restore the second encrypted message M22.
  • the first electronic device 20 can download the first encryption key key1 again from the data server 10, and perform the decryption of the first encryption key key1 again to obtain the group key keyg, and the second encrypted message M22 encrypts to restore the corresponding second message M2, or the first electronic device 20 directly uses the first encryption key key1 downloaded in the previous step S20 to decrypt according to the first device key 22 to obtain the group
  • the group key keyg further decrypts the second encrypted message M22.
  • the method for encrypting group messages of the present invention includes the following steps:
  • Step S210 the electronic device downloads the encryption key stored in the server
  • Step S220 Decrypt the encryption key according to the device key to obtain the group key
  • Step S230 Generate an encrypted message according to the group key and the group message, and send it to an encrypted group.
  • step S220 the first electronic device 20 performs decryption to obtain the group key keyg corresponding to the encrypted group 40.
  • step S230 the first electronic device 20 pairs the group message (that is, the first The message M1) is encrypted, and the corresponding first encrypted message M12 is generated and uploaded to the corresponding encrypted group.
  • the first electronic device 20 sends a group message to the encrypted group. If the second electronic device 30 sends a group message to the encrypted group, the above steps S210 to S230 are also followed.
  • the method for decrypting group messages of the present invention includes the following steps:
  • Step S310 an electronic device downloads an encryption key stored in a server
  • Step S320 Decrypt the encryption key according to a device key to obtain a group key
  • Step S330 Generate a decrypted message according to the group key and an encrypted message and display it on the electronic device.
  • step S220 the second electronic device 30 performs Decryption to generate a group key keyg corresponding to the encrypted group.
  • step S230 the second electronic device 30 decrypts the first encrypted message M12 according to the group key keyg, and restores it to the corresponding first message M1 (ie, group message), so that the second electronic device 30 can display the first message M1 instead of displaying the encrypted first encrypted message M12.
  • the second electronic device 30 wants to restore the encrypted message of the encrypted group. If the first electronic device 20 wants to restore the encrypted message of the encrypted group, the steps S310 to S330 are also followed.
  • the first electronic device 20 and the second electronic device 30 cannot encrypt the sent group message or cannot decrypt the encrypted message. Therefore, when the first electronic device 20 and the second electronic device 30 are not registered in the key list 12, it is displayed that the messages in the encrypted group are all encrypted group messages and are displayed as unrecognizable garbled characters.
  • the following embodiments further illustrate that the communication group server 40 and the data server 10 are combined into a multifunctional server 50, and the first electronic device 20 and the second electronic device 30 log in to the multifunctional server with the first account A1 and the second account A2, respectively.
  • the user of the first electronic device 20 replaces the electronic device to rejoin the encryption group 50A, and holds the description of the key related to the first electronic device 20 again.
  • FIGS. 8A and 8B are flowcharts of replacing the first electronic device to the third electronic device according to the present invention.
  • the method of transmitting messages of the present invention further includes a step flow of replacing the first electronic device, including the following steps:
  • Step S410 The first electronic device downloads the first encryption key from the data server according to the first account number
  • Step S420 The first electronic device decrypts the first encryption key according to the first device key to obtain the group key;
  • Step S430 The first electronic device encrypts the first message according to the group key to generate the first encrypted message
  • Step S440 the first electronic device uploads the first encrypted message to the communication group server according to the first account
  • Step S450 The second electronic device downloads the second encryption key from the data server and downloads the first encrypted message from the communication group server according to the second account number;
  • Step S460 The second electronic device decrypts the second encryption key according to the second device key to obtain the group key;
  • Step S470 The second electronic device decrypts the first encrypted message according to the group key to restore the first message in the second electronic device;
  • Step S480 the second electronic device generates a second message according to the first message
  • Step S490 The second electronic device encrypts the second message according to the group key obtained by the second device key and the second encryption key to generate a second encrypted message;
  • Step S500 the second electronic device uploads the second encrypted message to the communication group server according to the second account
  • Step S510 The first electronic device downloads the second encrypted message from the communication group server
  • Step S520 The first electronic device decrypts the second encrypted message according to the group key obtained by the first device key and the first encryption key, so as to restore the second message in the first electronic device;
  • Step S530 The first electronic device obtains the first barcode according to the encryption group and temporarily stores the first device key and the first public key corresponding to the encryption group in the server;
  • Step S540 The third electronic device obtains the authorization information according to the first barcode and joins the encryption group;
  • Step S550 The third electronic device downloads and restores the first device key and the first public key from the server according to the authorization information
  • Step S560 The third electronic device encrypts the first public key according to the encryption group to generate a first encryption key and records the third electronic device with the first encryption key on the server.
  • FIGS. 9 to 12 are schematic diagrams of a system according to another embodiment of the present invention.
  • the difference between FIGS. 2 to 4B and FIGS. 9 to 12 is that FIGS. 9 to 12 further include a third electronic device 60.
  • Steps S410 to S520 have been disclosed in steps S10 to S120 of the above-mentioned embodiment, so they will not be repeated. Since the first electronic device 20 sends the first encrypted message M12, the user of the first electronic device 20 will The third electronic device 60 is replaced by the third electronic device 60. Therefore, in step S530, as shown in FIG. The first device key 22 and the first public key 24 for encryption and decryption purposes will be temporarily stored to the multifunctional server 50, where the first electronic device 20 further encrypts the first device key 22 and the first public key 24, thus A corresponding first encrypted data D1 is generated, so that the multifunctional server 50 does not recognize the first device key 22 and the first public key 24, thereby avoiding the problem of server-side leakage.
  • step S540 the third electronic device 60 reads the first barcode QR1, for example: using a built-in camera to capture the image of the first barcode QR1, thereby obtaining a temporary third device key 62 and the third public key 64 are added to the encryption group 50A, so the third public key 64 is encrypted to generate a third encryption key key3 and upload it to the key list 12, which is to temporarily authorize the third electronic device 60 to use Corresponding to the encryption and decryption of the encryption group 50A; in step S550, as shown in FIG.
  • the third electronic device 60 downloads the temporarily stored first encrypted data D1 from the multifunction server 50, and the third electronic device 60 targets the first
  • the encrypted data D1 is decrypted to restore the first device key 22 and the first public key 24 in the third electronic device 60, and then in step S560, the restored first public key 24 is encrypted to generate the corresponding
  • the first encryption key key1 of the third electronic device 60 is uploaded to the key list 12 of the multifunction server 50.
  • the first encryption key key1 is changed to correspond to the third electronic device 60, wherein, since the third electronic device 60 replaces the first electronic device 20 as the manager of the encryption group 50A, step In S560, the complete asymmetric encryption key of the first device key 22 and the first public key 24 has been obtained by the third electronic device 60, so the encryption process can be directly performed.
  • FIG. 13A and FIG. 13B are flowcharts of replacing the second electronic device to the fourth electronic device.
  • the method of transmitting messages of the present invention further includes a step flow of replacing the second electronic device, and the steps include:
  • Step S610 The first electronic device downloads the first encryption key to the data server according to the first account number
  • Step S620 The first electronic device decrypts the first encryption key according to the first device key to obtain the group key;
  • Step S630 The first electronic device encrypts the first message according to the group key to generate the first encrypted message
  • Step S640 the first electronic device uploads the first encrypted message to the communication group server according to the first account
  • Step S650 The second electronic device downloads the second encryption key from the data server and downloads the first encrypted message from the communication group server according to the second account.
  • Step S660 The second electronic device decrypts the second encryption key according to the second device key to obtain the group key;
  • Step S670 The second electronic device decrypts the first encrypted message according to the group key to restore the first message on the second electronic device
  • Step S680 The second electronic device generates a second message according to the first message
  • Step 690 The second electronic device encrypts the second message according to the group key obtained by the second device key and the second encryption key to generate a second encrypted message;
  • Step S700 the second electronic device uploads the second encrypted message to the communication group server according to the second account
  • Step S710 The first electronic device downloads the second encrypted message from the communication group server;
  • Step S720 The first electronic device decrypts the second encrypted message according to the group key obtained by the first device key and the first encryption key, so as to restore the second message in the first electronic device;
  • Step S730 The second electronic device obtains the second barcode according to the encryption group and temporarily stores the second device key and the second public key corresponding to the encryption group in the server;
  • Step S740 the fourth electronic device obtains the authorization information according to the second barcode and joins the encryption group;
  • Step S750 The fourth electronic device downloads and restores the second device key and the second public key from the server according to the authorization information.
  • Step S760 The fourth electronic device encrypts the second public key according to the encryption group to generate a second encryption key and records the fourth electronic device with the second encryption key on the server.
  • FIG. 14 Please also refer to FIG. 14 to FIG. 17 for system schematic diagrams of another embodiment of the present invention.
  • the difference between FIGS. 9-12 and FIGS. 14-17 is that FIGS. 9-12 replace the first electronic device 20 with the third electronic device 60, and FIGS. 14-17 replace the second electronic device 30 with the fourth electronic device 70. .
  • Steps S610 to S720 have been disclosed in steps S10 to S120 of the above-mentioned embodiment, so they will not be repeated. Since the second electronic device 30 decrypts the first encrypted message M12 and displays it, the use of the second electronic device 30 The user will be replaced with the fourth electronic device 70.
  • step S730 the second electronic device 30 obtains a second barcode QR2 for transfer from the encryption group 50A, and the second electronic device 30 will temporarily store it
  • the second device key 32 and the second public key 34 for encryption and decryption purposes are sent to the multifunction server 50, wherein the second electronic device 30 further encrypts the second device key 32 and the second public key 34, thereby generating a corresponding one
  • the second encrypted data D2 prevents the multi-function server 50 from identifying the second device key 32 and the second public key 34, thereby avoiding the problem of server-side leakage.
  • the fourth electronic device 70 reads the second barcode QR2, for example: using a built-in camera to capture the image of the second barcode QR2, thereby obtaining the temporary fourth device key 72 and the fourth public key 74 and join the encryption group 50A, so the fourth public key 74 is encrypted and uploaded to the key list 12, that is, the fourth electronic device 70 is temporarily authorized to use the encryption and decryption corresponding to the encryption group 50A; in step S750, The fourth electronic device 70 downloads the temporarily stored second encrypted data D2 from the multifunction server 50, and the fourth electronic device 70 decrypts the second encrypted data D2 to restore the second device key 32 and the second public key 34.
  • the restored second public key 34 is encrypted, thereby generating a second encryption key key2 corresponding to the fourth electronic device 70, and uploading the key to the multifunction server 50 Listing 12.
  • the second encryption key key2 is changed to correspond to the fourth electronic device 70, and since the second electronic device 30 itself is not the manager of the encryption group 50A, the fourth electronic device 70 replaces the first After the second electronic device 30 joins the encryption group 50A, the fourth electronic device 70 still needs to be encrypted by the first electronic device 20 when the second public key 34 is encrypted into the second encryption key key2.
  • the method for encrypting and decrypting group messages and transmitting messages of the present invention is based on the fact that after the electronic device enters the encrypted group, the group manager receives the public key from other electronic devices and encrypts it for the server to establish The corresponding key list prevents the server from reading or identifying the public key, so that the electronic device only encrypts and decrypts the group information.
  • the electronic device can be encrypted according to the encryption principle of the present invention to be applied to the user to replace the electronic device.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Storage Device Security (AREA)

Abstract

La présente invention concerne des procédés de chiffrement et de déchiffrement d'un message de groupe, et un procédé de transmission d'un message. La présente invention ne chiffre pas seulement un message au moyen d'un dispositif électronique avant la transmission du message, mais en plus, chiffre également une clé publique de sorte qu'un serveur ne peut pas identifier la clé publique chiffrée, ce qui réduit le risque de fuite de données de tierce partie.
PCT/CN2020/091961 2020-05-23 2020-05-23 Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message Ceased WO2021237388A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/CN2020/091961 WO2021237388A1 (fr) 2020-05-23 2020-05-23 Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2020/091961 WO2021237388A1 (fr) 2020-05-23 2020-05-23 Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message

Publications (1)

Publication Number Publication Date
WO2021237388A1 true WO2021237388A1 (fr) 2021-12-02

Family

ID=78745089

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2020/091961 Ceased WO2021237388A1 (fr) 2020-05-23 2020-05-23 Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message

Country Status (1)

Country Link
WO (1) WO2021237388A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115333813A (zh) * 2022-08-02 2022-11-11 中国电信股份有限公司 一种数据加密传输方法、装置、电子设备及存储介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014017959A1 (fr) * 2012-07-27 2014-01-30 Telefonaktiebolaget L M Ericsson (Publ) Session sécurisée pour un groupe de nœuds de réseau
CN104065479A (zh) * 2014-07-11 2014-09-24 中国人民公安大学 基于群组的密钥生成方法和系统、密钥分发方法和系统
CN106664197A (zh) * 2014-09-05 2017-05-10 三星电子株式会社 用于数据加密的方法和装置
CN106850195A (zh) * 2016-04-18 2017-06-13 中国科学院信息工程研究所 一种即时通信中群组密钥协商与通信方法
CN111130778A (zh) * 2019-12-31 2020-05-08 郑州信大捷安信息技术股份有限公司 一种基于硬件的安全恢复加密数据的方法及系统

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014017959A1 (fr) * 2012-07-27 2014-01-30 Telefonaktiebolaget L M Ericsson (Publ) Session sécurisée pour un groupe de nœuds de réseau
CN104065479A (zh) * 2014-07-11 2014-09-24 中国人民公安大学 基于群组的密钥生成方法和系统、密钥分发方法和系统
CN106664197A (zh) * 2014-09-05 2017-05-10 三星电子株式会社 用于数据加密的方法和装置
CN106850195A (zh) * 2016-04-18 2017-06-13 中国科学院信息工程研究所 一种即时通信中群组密钥协商与通信方法
CN111130778A (zh) * 2019-12-31 2020-05-08 郑州信大捷安信息技术股份有限公司 一种基于硬件的安全恢复加密数据的方法及系统

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115333813A (zh) * 2022-08-02 2022-11-11 中国电信股份有限公司 一种数据加密传输方法、装置、电子设备及存储介质
CN115333813B (zh) * 2022-08-02 2024-11-29 中国电信股份有限公司 一种数据加密传输方法、装置、电子设备及存储介质

Similar Documents

Publication Publication Date Title
US10659454B2 (en) Service authorization using auxiliary device
US9225538B2 (en) Stateless application notifications
US9590949B2 (en) Confidential message exchange using benign, context-aware cover message generation
JP7133285B2 (ja) ユーザ端末、メッセージを送受信する方法及びコンピュータプログラム
JP4148979B2 (ja) 電子メールシステム、電子メール中継装置、電子メール中継方法及び電子メール中継プログラム
US20150326512A1 (en) Message transmission system and method for a structure of a plurality of organizations
GB2568966A (en) An encryption process
CN111343202B (zh) 一种基于私有云的物联网数据安全存储系统
WO2020019387A1 (fr) Procédé d'acquisition de fichier de ressources vidéo, et système de gestion
JP2002024147A (ja) セキュアメールプロキシシステム及び方法並びに記録媒体
CN104365127B (zh) 用于在远程显示单元上追踪移动设备的方法
US10417437B2 (en) Maintaining data security in a network device
KR101541165B1 (ko) 모바일 메시지 암호화 방법, 이 방법을 수행하는 프로그램을 기록한 컴퓨터 판독가능 기록매체 및 이 방법을 저장한 다운로드 서버
KR102293610B1 (ko) 보안 인스턴트 메시징 방법 및 장치
WO2021237388A1 (fr) Procédés de chiffrement et de déchiffrement de message de groupe, et procédé de transmission de message
CN116057893A (zh) 用于安全加密和解密系统的多因素地理围栏系统
CN112769783A (zh) 数据传输方法及云服务器、接收端和发送端
TWI712307B (zh) 加、解密群組訊息及傳遞訊息之方法
CN109302287B (zh) 消息转发方法和系统
CN1997141A (zh) 一种即时通信中控制视频截图传送的方法及系统
KR20180017979A (ko) 메시징 서버 및 이에 의한 채팅 서비스 제공 방법, 단말 장치 및 이에 의한 채팅 서비스 이용 방법
CN100369405C (zh) 认证收据
US20240283635A1 (en) Communication system, user terminal, communication method, and communication program
CN120238533A (zh) 一种附件文件发送方法、接收方法及设备
CN115795410A (zh) 一种在线和离线相结合的软件鉴权方法

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20937403

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20937403

Country of ref document: EP

Kind code of ref document: A1