CN102013973A - Encryption and decryption commutator - Google Patents
Encryption and decryption commutator Download PDFInfo
- Publication number
- CN102013973A CN102013973A CN2009100922770A CN200910092277A CN102013973A CN 102013973 A CN102013973 A CN 102013973A CN 2009100922770 A CN2009100922770 A CN 2009100922770A CN 200910092277 A CN200910092277 A CN 200910092277A CN 102013973 A CN102013973 A CN 102013973A
- Authority
- CN
- China
- Prior art keywords
- data
- communication interface
- decrypting
- encrypting
- adapter
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention relates to an encryption and decryption commutator belonging to the technical field of information safety. The encryption and decryption commutator comprises one or more communication interfaces used for being connected with an information product and interacting plaintext data and ciphertext data, and an algorithm processing module mutually connected with the communication interface(s) and used for respectively encrypting and decrypting the plaintext data and ciphertext data obtained by the communication interface(s). Compared with the prior art, the invention can conveniently provide encryption operation for various information products, and has the characteristics of easy development, high encryption and decryption speed and low cost.
Description
Technical field
The present invention relates to information security technology, particularly a kind of encrypting and decrypting adapter.
Background technology
Along with fast development of information technology, information security more and more is subject to people's attention, the following dual mode of the general employing of the safety precautions of existing information product: a kind of is to adopt universal cpu, micro-control unit (Micro Controller Unit, hereinafter to be referred as MCU) or Digital Signal Processing (Digital Signal Processing, hereinafter to be referred as DSP) platform, realize the information security function with software mode; Another kind is to adopt information security embedded system (System On Chip is hereinafter to be referred as SOC) to realize certain information specific safety function.Above-mentioned two kinds of information products safeguard protection modes have certain defective separately.Adopt by the platform mode, though during exploitation restricted less, be easy to realize that its safe coefficient is lower that data encrypting and deciphering speed often is subjected to the restriction of processing unit processes speed such as CPU, and realizes that cost is higher relatively; Adopt the information products of SOC mode, though data encrypting and deciphering speed is fast when using, cost is low, owing to carry out the SOC design early stage, for any information product, all need a large amount of time and cost input, and need product designer to have abundant technological accumulation.
Summary of the invention
At the defective that exists in the above-mentioned prior art, the purpose of this invention is to provide a kind of encrypting and decrypting adapter.It can easily be for the various information product provides encryption and decryption operation, have be easy to develop, encryption/decryption speed is fast, cost is low characteristics.
For achieving the above object, technical scheme of the present invention realizes as follows:
A kind of encrypting and decrypting adapter is characterized in that it comprises:
One or more communication interface is used for linking to each other with information products, mutual clear data and encrypt data;
Algorithm processing module interconnects with described communication interface, and the clear data and the encrypt data that are used for described communication interface is got access to carry out encryption and decryption respectively.
In above-mentioned encrypting and decrypting adapter, described communication interface is connected with information products by data wire or links to each other with one or more information products by bus.
In above-mentioned encrypting and decrypting adapter, described encrypting and decrypting adapter also comprises control module.Control module links to each other respectively with communication interface and/or algorithm processing module, is used to control the data interaction of communication interface and/or the encryption and decryption processing of control algolithm processing module.
In above-mentioned encrypting and decrypting adapter, described algorithm processing module comprises the asymmetric key algorithm unit that is used to store and carry out the symmetric key algorithm unit of symmetric key algorithm and is used to store and carry out asymmetric key algorithm, and symmetric key algorithm unit and asymmetric key algorithm unit interconnect with communication interface respectively.
In above-mentioned encrypting and decrypting adapter, be provided with the intercepting and capturing unit in the described communication interface, intercept and capture the unit and from information products, intercept and capture clear data or encrypt data.
In above-mentioned encrypting and decrypting adapter, be provided with the Data Format Transform unit in the described communication interface, the Data Format Transform unit carries out format conversion to clear data mutual between algorithm processing module and information products and encrypt data.
In above-mentioned encrypting and decrypting adapter, connect the data buffer zone between described communication interface and the algorithm processing module, the data buffer zone is used for the mutual data of buffer memory communication interface.
In above-mentioned encrypting and decrypting adapter, described communication interface is the interface of time division duplex mode or full duplex mode interaction data.
In above-mentioned encrypting and decrypting adapter, described communication interface adopts USB (universal serial bus), 7816 interfaces, universal asynchronous reception/dispensing device interface, Serial Peripheral Interface, internal integrated circuit interface or general input/output interface.
The present invention is owing to adopted technique scheme, and the encrypting and decrypting adapter can provide independently encryption and decryption functions for information products.Encrypting and decrypting adapter of the present invention adopts algorithm processing module that the data of information products are carried out encryption and decryption and handles, and data processing rate height, cost are low.In addition, the highly versatile of encrypting and decrypting adapter of the present invention goes for the information products in the every field, need not designer's special design on stream, and development cost is low, and is low to developer's specification requirement, is easy to realize.
The invention will be further described below in conjunction with the drawings and specific embodiments.
Description of drawings
Fig. 1 is the application mode structural representation of the embodiment of the invention one;
Fig. 2 is application mode one structural representation of the embodiment of the invention two;
Fig. 3 is application mode two structural representations of the embodiment of the invention two;
Fig. 4 is the application mode structural representation of the embodiment of the invention three.
Embodiment
Referring to Fig. 1 to Fig. 4, encrypting and decrypting adapter of the present invention is a kind of safety information product adapter general-purpose platform, can be plug-in or be embedded on the information products.It comprises: one or more communication interface, algorithm processing module and control module.Communication interface is used for linking to each other with information products, mutual clear data and encrypt data.Communication interface is connected with information products by data wire or links to each other with one or more information products by bus.Algorithm processing module and described communication interface interconnect, and the clear data and the encrypt data that are used for described communication interface is got access to carry out encryption and decryption respectively.Control module links to each other respectively with communication interface and/or algorithm processing module, is used to control the data interaction of communication interface and/or the encryption and decryption processing of control algolithm processing module.Algorithm processing module comprises the asymmetric key algorithm unit that is used to store and carry out the symmetric key algorithm unit of symmetric key algorithm and is used to store and carry out asymmetric key algorithm, and symmetric key algorithm unit and asymmetric key algorithm unit interconnect with communication interface respectively.Be provided with the intercepting and capturing unit in the communication interface, from information products, intercept and capture clear data or encrypt data; Also be provided with the Data Format Transform unit in the communication interface, clear data mutual between algorithm processing module and information products and encrypt data are carried out format conversion.Connect the data buffer zone between communication interface and the algorithm processing module, the data buffer zone is used for the mutual data of buffer memory communication interface.Communication interface is the interface of time division duplex mode or full duplex mode interaction data, and communication interface adopts USB (universal serial bus), 7816 interfaces, universal asynchronous reception/dispensing device interface, Serial Peripheral Interface, internal integrated circuit interface or general input/output interface.
Embodiment one
As shown in Figure 1, information products are a Common Facsimile Machine, and the encrypting and decrypting adapter among the present invention is for facsimile machine provides the encryption and decryption signaling transfer point, so that the data of transmitting for facsimile machine embed the information security feature.Facsimile machine is very high as a kind of versatility, the simple relatively equipment of principle, and the data that it sent are easy to be intercepted and captured by other people, thereby the problem of divulging a secret occurs.Therefore be necessary that the data that transmit to facsimile machine carry out encryption and decryption and handle, make it have the information security characteristic.The facsimile machine that one Daepori is logical comprises micro-control unit (Micro Controller Unit is hereinafter to be referred as MCU) and a plurality of modules of working under MCU control.The structure of the encrypting and decrypting adapter of present embodiment comprises communication interface, data buffer zone and algorithm processing module.The encrypting and decrypting adapter of present embodiment and the process of facsimile machine cooperating are as follows:
At first, the image scanning input module is finished the scanning input process of fax original text under the signal controlling that MCU sends, the plaintext digital signal that scanning produces, and promptly clear data is read and buffer memory by MCU; MCU sends clear data to the encrypting and decrypting adapter by communication interface then.Algorithm processing module in the encrypting and decrypting adapter is encrypted clear data, encrypt data is sent to the MCU of facsimile machine by communication interface again.Next MCU is again with this encrypt data, and promptly the ciphertext digital signal sends modulation module to, and encrypt data is transferred in the network by the facsimile signal output module with the form of analog signal.
The process that facsimile machine is received faxes is as follows:
At first, the ciphertext analog data signal that transmits on the telephone network is carried out demodulation and the ciphertext digital signal is read MCU; Then, with this ciphertext digital signal, promptly encrypt data sends the encrypting and decrypting adapter to MCU by communication interface; Algorithm process unit in the encrypting and decrypting adapter is decrypted encrypt data, after this, sends the clear data after the deciphering to MCU again; Next MCU is with clear data, and promptly expressly the image data information of digital signal form sends to facsimile signal printout module, finishes whole fax receiving course.
The content that traditional facsimile machine transmits in telephone network is exactly a genuine image itself to be passed, therefore, is easy to be intercepted and captured, steal.In Common Facsimile Machine, increase the encrypting and decrypting adapter and promptly can be Common Facsimile Machine increase information security characteristic.In the present embodiment, the facsimile machine that is connected with the encrypting and decrypting adapter becomes secure fax, and the signal that transmits on its telephone network all is the encrypt data signal through encryption.By the introducing of encrypting and decrypting adapter, on the basis of changing original facsimile machine product hardly, embedded the information security feature, thereby promoted the information security grade of existing product greatly to Common Facsimile Machine.
Preferably, the intercepting and capturing unit can be set in communication interface is used for linking to each other with information products.When having data flow to flow through in the information products, intercept and capture the unit and from information products, intercept and capture this data flow, promptly intercept and capture clear data and/or encrypt data.The encrypting and decrypting adapter that is provided with this intercepting and capturing unit is by in the respective lines that is connected information products, automatically the data flow in the acquisition of information product is carried out the encrypting and decrypting processing to it, therefore can easily this encrypting and decrypting adapter be connected on the existing information product and realize encryption and decryption functions.
Encrypting and decrypting adapter in the present embodiment links to each other with one-sided information products, and these one-sided information products are not limited to facsimile machine, can also be the information products of other types, for example phone, intercom etc.
Embodiment two
As shown in Figure 2, the encrypting and decrypting adapter in the present embodiment provides encryption and decryption functions for two information products of bilateral, and information products are mobile memory and computer.This encrypting and decrypting adapter comprises two communication interfaces and an algorithm processing module.First communication interface is read clear data or encrypt data from mobile memory, send into the algorithm processing module of encrypting and decrypting adapter and encrypt or decryption processing, encrypt data or clear data after will encrypting or decipher by the second communication interface then return to computer again.Encrypting and decrypting adapter in the present embodiment can be integrated in one of them information product, when two information products interaction datas, mutual data is carried out the encryption and decryption operation.
As shown in Figure 3, the present invention is in concrete the application, in first communication interface and second communication interface, also the intercepting and capturing unit can be set, be used for process at interaction data, from information products, intercept and capture clear data or encrypt data, to its encrypt or decryption oprerations after be transmitted back to again in original data transfer path.In order to guarantee the high-speed transfer of data, also can or the data buffer zone of a constant volume be set wherein on certain particular communication interface in each communication interface.
Embodiment three
As shown in Figure 4, encrypting and decrypting adapter of the present invention is connected and adopts between the interconnective information products of bus, for example adopts each network element in the continuous network of data/address bus.This encrypting and decrypting adapter is provided with communication interface and algorithm processing module.Communication interface links to each other with a plurality of information products by data/address bus.
Similar with the foregoing description one and embodiment two, in the communication interface of this encrypting and decrypting adapter, also the intercepting and capturing unit can be set, be used for from data flow transmitted intercepted data between each information product.Buffer cell can also be set, so that guarantee the high-speed transfer of data.
Close " SM1 " or the international data encryption standards such as " 3DES " that provides of doing of state can be provided in symmetric key algorithm unit in the algorithm processing module among the present invention; " RSA " algorithm or elliptic curve cipher asymmetric key algorithms such as (Elliptic Curve Cryptosystem are called for short ECC) can be stored in the asymmetric key algorithm unit.In addition, encrypting and decrypting adapter of the present invention can be provided for storing the polyalgorithm processing unit of various cryptographic algorithm, be connected on the communication interface, and can also select to dispose above-mentioned various forms of communication interface flexibly, can combined crosswise use, realize three kinds of different expression forms of encrypting and decrypting adapter.
Encrypting and decrypting adapter of the present invention can adopt single-chip to realize, two kinds of implementations specifically can be arranged, and a kind of is to adopt direct memory access (Direct Memory Access is called for short DMA) mode; Another kind is that CPU on the single-chip is as the control module Attended Operation in the encrypting and decrypting adapter, control module links to each other respectively with communication interface and/or algorithm processing module, be used to control the data interaction of communication interface, and/or the control algolithm processing module is handled to the encryption and decryption of data.Particularly, can adopt the CPU of 32 " C*Core " to realize, the realization of whole encrypting and decrypting adapter can be carried out under the control of CPU.In control module, a dispensing unit can also be set, be used to receive the configuration information of user's input, control module can be according to algorithm process unit independence or the work in combination in the configuration information control algolithm processing module of user's input.
Encrypting and decrypting adapter of the present invention need not carry out specific designing and developing at information products in the development phase, has reduced requirement and development cost to the designer, is easy to exploitation and realizes.Simultaneously, the algorithm processing module of encrypting and decrypting adapter of the present invention is exclusively used in the encryption and decryption functions of realizing data, and data processing speed is fast and reliable, and operating cost is low.The highly versatile of encrypting and decrypting adapter of the present invention, can generally be applicable to various information products, expanded the ability of every profession and trade for its information products embedding information security feature to a great extent, range of application of the present invention has been included wire communication, radio communication, memory device etc. in interior a plurality of applications.
It should be noted that at last: above embodiment only in order to technical scheme of the present invention to be described, is not intended to limit.Those of ordinary skill in the art is to be understood that: still can make amendment to the technical scheme that the various embodiments described above are put down in writing according to technical scheme of the present invention, perhaps part technical characterictic wherein is equal to replacement; And or else these modifications or be equal to replacement make the essence of appropriate technical solution break away from the technical thought of technical solution of the present invention, all should belong to protection scope of the present invention.
Claims (9)
1. encrypting and decrypting adapter is characterized in that it comprises:
One or more communication interface is used for linking to each other with information products, mutual clear data and encrypt data;
Algorithm processing module interconnects with described communication interface, and the clear data and the encrypt data that are used for described communication interface is got access to carry out encryption and decryption respectively.
2. encrypting and decrypting adapter according to claim 1 is characterized in that, described communication interface is connected with information products by data wire or links to each other with one or more information products by bus.
3. encrypting and decrypting adapter according to claim 1 and 2, it is characterized in that, described encryption and decryption adapter also comprises control module, control module links to each other respectively with communication interface and/or algorithm processing module, is used to control the data interaction of communication interface and/or the encryption and decryption processing of control algolithm processing module.
4. encrypting and decrypting adapter according to claim 3, it is characterized in that, described algorithm processing module comprises the asymmetric key algorithm unit that is used to store and carry out the symmetric key algorithm unit of symmetric key algorithm and is used to store and carry out asymmetric key algorithm, and symmetric key algorithm unit and asymmetric key algorithm unit interconnect with communication interface respectively.
5. encrypting and decrypting adapter according to claim 4 is characterized in that, is provided with the intercepting and capturing unit in the described communication interface, intercepts and captures the unit and intercept and capture clear data or encrypt data from information products.
6. encrypting and decrypting adapter according to claim 5, it is characterized in that, be provided with the Data Format Transform unit in the described communication interface, the Data Format Transform unit carries out format conversion to clear data mutual between algorithm processing module and information products and encrypt data.
7. encrypting and decrypting adapter according to claim 6 is characterized in that, connects the data buffer zone between described communication interface and the algorithm processing module, and the data buffer zone is used for the mutual data of buffer memory communication interface.
8. encrypting and decrypting adapter according to claim 7 is characterized in that, described communication interface is the interface of time division duplex mode or full duplex mode interaction data.
9. encrypting and decrypting adapter according to claim 8, it is characterized in that described communication interface adopts USB (universal serial bus), 7816 interfaces, universal asynchronous reception/dispensing device interface, Serial Peripheral Interface, internal integrated circuit interface or general input/output interface.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100922770A CN102013973A (en) | 2009-09-08 | 2009-09-08 | Encryption and decryption commutator |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100922770A CN102013973A (en) | 2009-09-08 | 2009-09-08 | Encryption and decryption commutator |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102013973A true CN102013973A (en) | 2011-04-13 |
Family
ID=43844004
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100922770A Pending CN102013973A (en) | 2009-09-08 | 2009-09-08 | Encryption and decryption commutator |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102013973A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103297736A (en) * | 2013-06-13 | 2013-09-11 | 深圳南方汉邦数字技术有限公司 | System and method for data storage and network transmission of video monitoring |
| CN105323249A (en) * | 2015-11-04 | 2016-02-10 | 大连理工大学 | Encryption and decryption communication system as well as encryption method and decryption method thereof |
| CN108881801A (en) * | 2018-06-29 | 2018-11-23 | 苏州科达科技股份有限公司 | Code stream transmission method, system, electronic equipment, the storage medium of video conference |
| CN112118573A (en) * | 2019-06-21 | 2020-12-22 | 普天信息技术有限公司 | Voice encryption communication method and device between different systems of wide-band and narrow-band clusters |
-
2009
- 2009-09-08 CN CN2009100922770A patent/CN102013973A/en active Pending
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103297736A (en) * | 2013-06-13 | 2013-09-11 | 深圳南方汉邦数字技术有限公司 | System and method for data storage and network transmission of video monitoring |
| CN105323249A (en) * | 2015-11-04 | 2016-02-10 | 大连理工大学 | Encryption and decryption communication system as well as encryption method and decryption method thereof |
| CN105323249B (en) * | 2015-11-04 | 2018-06-19 | 大连理工大学 | A kind of encrypting and decrypting communication system and its encrypting and decrypting method |
| CN108881801A (en) * | 2018-06-29 | 2018-11-23 | 苏州科达科技股份有限公司 | Code stream transmission method, system, electronic equipment, the storage medium of video conference |
| CN112118573A (en) * | 2019-06-21 | 2020-12-22 | 普天信息技术有限公司 | Voice encryption communication method and device between different systems of wide-band and narrow-band clusters |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101854353B (en) | Multi-chip parallel encryption method based on FPGA | |
| CN107103472B (en) | Algorithm processing module for block chain | |
| CN101290569A (en) | Method for parallel data processing adopting multi- password chip | |
| CN102081713B (en) | Office system for preventing data from being divulged | |
| CN104378649A (en) | Method and system for encrypting video streams in real time through SM1 cryptographic algorithm | |
| CN101568110A (en) | Wireless data transmission method and system | |
| CN101706854A (en) | USB information security equipment and method for communication between USB information security equipment and mainframe | |
| CN104239808A (en) | Method and device for encryption transmission of data | |
| CN102013973A (en) | Encryption and decryption commutator | |
| CN102739393B (en) | Hardware encrypting UART (Universal Asynchronous Receiver Transmitter) device based on APB (Advanced Peripheral Bus) bus | |
| CN101515853B (en) | Information terminal and information safety device thereof | |
| CN201479145U (en) | Enciphering deciphering adapter | |
| CN102012882B (en) | Method for high-speed data stream encryption transmission based on system-on-chip | |
| CN103458401B (en) | A kind of voice encryption communication system and communication means | |
| CN101655894B (en) | Method for improving throughput of grouping algorithm on general serial bus encryption lock | |
| CN111556004A (en) | Hybrid dual network encryption system | |
| CN103902932B (en) | Method for encryption through data encryption and decryption device for USB storage devices | |
| CN104053151A (en) | Point-to-point data secret communication terminal device | |
| US20190230067A1 (en) | Technologies for establishing secure channel between i/o subsystem and trusted application for secure i/o data transfer | |
| CN104426654A (en) | Encryption card encryption and decryption method based on multi-buffer mode | |
| CN102082660A (en) | Method for implementing network communication on encryption card and encryption card with network interface | |
| CN107979608B (en) | Interface-configurable data encryption and decryption transmission system and transmission method | |
| CN106487761A (en) | A kind of method for message transmission and the network equipment | |
| CN202696900U (en) | Bluetooth-networking-based terminal system for cardholder environment | |
| CN206894689U (en) | A kind of data encryption and decrypted transport device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20110413 |