CN102664887A - Input information protecting method, device and system - Google Patents
Input information protecting method, device and system Download PDFInfo
- Publication number
- CN102664887A CN102664887A CN201210115703XA CN201210115703A CN102664887A CN 102664887 A CN102664887 A CN 102664887A CN 201210115703X A CN201210115703X A CN 201210115703XA CN 201210115703 A CN201210115703 A CN 201210115703A CN 102664887 A CN102664887 A CN 102664887A
- Authority
- CN
- China
- Prior art keywords
- aes
- input
- data unit
- protocol data
- parameter
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The embodiment of the invention provides an input information protecting method, an input information protecting device and an input information protecting system, belonging to the technical field of information security. The input information protecting method comprises the following steps: receiving a protocol data unit which is sent by a host computer by an input information security protecting device, wherein the protocol data unit comprises encryption algorithm parameters; according to corresponding relations of preset encryption algorithm parameters and encryption algorithms, selecting the encryption algorithms corresponding to the encryption algorithm parameters in the protocol data unit; acquiring data input by a user; encrypting the data input by the user by the selected encryption algorithms; and sending the encrypted data to the host computer. Multiple corresponding rations of the encryption algorithms and the encryption algorithm parameters are arranged in the input information security protecting device, the protocol data unit comprises the encryption algorithm parameters corresponding to a network service program, and thus the encryption algorithms corresponding to the network service program are appointed, so that the input information protecting method, the input information protecting device and the input information protecting system are good in university and can ensure the security of information input by the user.
Description
Technical field
The present invention relates to field of information security technology, relate in particular to a kind of input information guard method, device and system.
Background technology
Nowadays, network is being played the part of important role in daily life, and various network services progressively are being penetrated among people's the study, life, work.Yet, network security problem day by day seriously brought inconvenience to daily life, especially steal the information of user, like number of the account, password etc. from keyboard input through trojan horse.
In the prior art, mainly prevent that through method of encrypting the information that the user imports is stolen.Particularly, can be with the information of user's input, mail to main frame again after the special-purpose input information encryption device of employing is encrypted, and then mail to the webserver.
The inventor finds that there is following problem at least in prior art in realizing process of the present invention:
Existing input information encryption device all is the AES that adopts predetermined special use; Information to user's input is encrypted, and these equipment all are special-purpose, so its scope of application is very limited; Be difficult to satisfy simultaneously the needs of various network services, versatility is poor.
Summary of the invention
The input information encryption device scope of application in the prior art is limited in order to overcome, the defective of versatility difference, the invention provides a kind of input information guard method, device and system.Said technical scheme is following:
On the one hand, the embodiment of the invention provides a kind of input information guard method, and said method comprises:
The input message safety protective device receives the protocol Data Unit that main frame sends, and comprises the AES parameter in the said protocol Data Unit;
According to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of said AES parameter in selection and the protocol Data Unit;
Obtain the data of user's input;
Adopt the said AES of selecting, encrypt the data of said user's input;
Data encrypted is sent to said main frame.
Preferably; Also comprise the data cell type parameter in the said protocol Data Unit; Then at said corresponding relation according to preset encryption algorithm parameter and AES, before the corresponding AES of AES parameter in selection and the protocol Data Unit, said method also comprises:
Judge according to said data cell type parameter whether said protocol Data Unit is to encrypt input type, if then obtain the AES parameter in the said protocol Data Unit.
Preferably, at said corresponding relation according to preset encryption algorithm parameter and AES, before the corresponding AES of AES parameter in selection and the protocol Data Unit, said method also comprises:
Server is carried out authentication.
Preferably, said method also comprises: obtain interrupt instruction, and carry out said interrupt instruction.
Preferably, said method also comprises: on said input message safety protective device, show said input message safety protective device current working state and service data.
Another aspect, the embodiment of the invention provide a kind of input information protective device, and said device comprises:
Receiver module is used to receive the protocol Data Unit that main frame sends, and comprises the AES parameter in this protocol Data Unit;
Select module, be used for corresponding relation, the corresponding AES of said AES parameter in the protocol Data Unit of selecting to receive with said receiver module according to preset encryption algorithm parameter and AES;
Acquisition module is used to obtain the data of user's input;
Encrypting module is used for the AES according to said selection module selection, encrypts the data that said acquisition module obtains;
Sending module is used for said the encrypting module data encrypted being sent to said main frame.
Preferably, also comprise the data cell type parameter in the said protocol Data Unit, then said device also comprises:
Judge module is used for according to said data cell type parameter, judges whether said protocol Data Unit is to encrypt input type, if then obtain the AES parameter in the said protocol Data Unit.
Preferably, said device also comprises: authentication module is used for server is carried out authentication.
Preferably, said device also comprises: the interrupt instruction Executive Module is used to obtain interrupt instruction, and carries out said interrupt instruction.
Preferably, said device also comprises: display module is used to show said input message safety protective device current working state and service data.
Another aspect, the embodiment of the invention also provide a kind of input information protection system, and said system comprises.
Main frame is used to send protocol Data Unit, comprises the AES parameter in the said protocol Data Unit;
The input information protective device is used to receive the protocol Data Unit that said main frame sends; According to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of said AES parameter in selection and the protocol Data Unit; Obtain the data of user's input; Adopt the said AES of selecting, encrypt the data of said user's input; Data encrypted is sent to said main frame.
Further, said system also comprises:
Server is used for sending encryption input solicited message to said main frame;
Correspondingly, also comprise said encryption input solicited message in the said protocol Data Unit that said main frame sends, and said main frame is used for also the data encrypted that said input information protective device sends is sent to said server.
The beneficial effect of the technical scheme that the embodiment of the invention provides is: through the corresponding relation of multiple encryption algorithms and AES parameter is set in the input message safety protective device in advance; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Same input message safety protective device just can be the main frame and the server that move different application provides required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.
Description of drawings
Fig. 1 is the flow chart of the input information guard method that provides of the embodiment of the invention 1;
Fig. 2 is the flow chart of the input information guard method that provides of the embodiment of the invention 2;
Fig. 3 is the structured flowchart of the input information protective device that provides of the embodiment of the invention 3;
Fig. 4 is the structured flowchart of the input information protective device that provides of the embodiment of the invention 4;
Fig. 5 is the structured flowchart of the input information protection system that provides of the embodiment of the invention 5.
Embodiment
For making the object of the invention, technical scheme and advantage clearer, will combine accompanying drawing that embodiment of the present invention is done to describe in detail further below.
Embodiment 1
As shown in Figure 1, present embodiment provides a kind of input information guard method, and this method comprises:
Step 101: the input information protective device receives the protocol Data Unit that main frame sends, and comprises the AES parameter in this protocol Data Unit.
Particularly; For example; When the user need visit a certain server, carry out alternately through main frame and server, main frame obtains the encryption input solicited message of server; Like (the account information request normally requires to provide the protocol Data Unit of account number, password) after the account request, it is sent to the input message safety protective device as after " DATA " field encapsulation.In this application, " main frame " is meant that computer removes the main body part beyond the input-output equipment.
Again for example, when the user need land local application, after main frame obtains application program and requires the request of account number, password is provided, send to the input message safety protective device after it is encapsulated as " DATA " field.
That is to say, the AES parameter in the protocol Data Unit be with server or main frame on application program corresponding.
Step 102: according to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of AES parameter in selection and the protocol Data Unit.
The corresponding relation of this preset encryption algorithm parameter and AES is arranged in the input message safety protective device in advance.
Step 103: the data of obtaining user's input.
Step 104: adopt the AES of selecting, the data of encrypting user input.
Step 105: data encrypted is sent to main frame.
The embodiment of the invention is through be provided with the corresponding relation of multiple encryption algorithms and AES parameter in advance in the input message safety protective device; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Main frame and server that same input message safety protective device just can be various objectives provide required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.
Embodiment 2
As shown in Figure 2, present embodiment provides a kind of input information guard method, and this method comprises:
Step 201: the input information protective device receives the protocol Data Unit that main frame sends, and comprises the AES parameter in this protocol Data Unit.
Particularly, can also comprise the protocol Data Unit type parameter in this protocol Data Unit.The type of this protocol Data Unit can be but be not limited to transmit control, software upgrading, input unit certificate request, server certificate request and encrypt input.Wherein, transmission control is used for satisfying the demands such as transmitted in packets of confirming ACK (Acknowledgement confirms), repeat requests NAK (Negative Acknowledge, negative response), chunk data (for example upgrade software).When server need obtain digital certificate or the PKI of input information protective device, main frame can be asked for digital certificate to the input information protective device through the protocol Data Unit of input unit certificate request type.Certainly, also can on main frame, preserve this digital certificate, directly pass to server.It is pointed out that the legal source of desired digital certificate comprises memory in this input information protective device, main frame, webserver or the like here, its digital signature must be reliable.Be the difficulty in the law identification of guaranteeing reliability and avoiding occurring, the manufacturer that can adopt the processor of input information protective device is the certification chain of root.In addition, for some safe service, need forcibly server (being actually the entity that security parameter is provided) to be carried out authentication, at this moment, the input information protective device can send the digital certificate that certificate request requires to provide server.
Particularly, this protocol Data Unit can be following form:
Wherein, synchronous code is used to identify the beginning of a data unit, and its length is relevant with communication link.For example, when communication link was the PS2 interface, synchronous code was a bebinning character; When communication link was synchronization link, synchronous code should be a beginning flag piece.Check code is the same with synchronous code, and is relevant with communication link.
Total length refers to from type | the length of all fields that protocol fields begins does not comprise synchronous code, version field and total length field itself.
Type | agreement is used for representing the AES parameter and the data cell type parameter of preceding text, in the present embodiment, preferably adopts unified numeral number.In other implementation, also can separately represent.
DATA is the data all types of, that protocol Data Unit is corresponding, and the general i.e. packet of this agreement is like the X509 digital certificate of server.
More preferably, the identification of protocol Data Unit type for ease can be adopted the type discrete method, for example, adopts high 3 (binary system) unlabeled data cell types following:
000 transmission control
001 software upgrading
010 device authentication
011 server authentication
10x encrypts
11x keeps
Wherein, x represents 0 or 1, according to this scheme, can be used for the figure place of mark encryption agreement always to have 6 binary digits, and the agreement number that can indicate reaches 64 kinds.Add reserve part, cryptographic protocol can reach 128 kinds at most, goes for the multiple network service routine.
Preferably, the transmission of all protocol Data Units is all adopted and is stopped to wait for agreement.Consider that user input data is slow relatively, therefore when the input information protective device receives a protocol Data Unit, accomplishing the acknowledgement frame that to reply an ACK or NAK immediately after the verification, so that main frame in time makes accurate judgment to take next step action.
Particularly; For example, when the user need visit a certain server, carry out alternately through main frame and server; Main frame obtains the encryption input solicited message of server; After the account request, (the account information request normally requires to provide the protocol Data Unit of account number, password) sends to the input message safety protective device with it as after " DATA " field encapsulation.
Again for example, when the user need land local application, after main frame obtains application program and requires the request of account number, password is provided, send to the input message safety protective device after it is encapsulated as " DATA " field.
That is to say, the AES parameter in the protocol Data Unit be with server or main frame on application program corresponding.
Step 202: whether the version of judging the protocol Data Unit that receives can be compatible, if then execution in step 203; If not, then give host response available edition information.
Step 203: judge according to the data cell type parameter whether protocol Data Unit is to encrypt input type; If then execution in step 204, if not; Then carry out the processing of non-encrypted input type, like transmission control, software upgrading, device authentication, server authentication etc.
Step 204: judge whether the AES parameter can be handled, if can handle, then execution in step 205; If can not handle, then can reply non-supported protocol information.
Particularly; Can be in the input information protective device in the preset encryption algorithm parameter; Search whether exist with this protocol Data Unit in the identical AES parameter of AES parameter; If exist, represent that then the AES parameter can handle, otherwise represent that then this AES parameter can not handle.
Step 205: judge whether and to carry out authentication to server that if need, then execution in step 206; If do not need, then execution in step 208.
Particularly, can judge whether that needs carry out authentication to server according to being provided with in advance of user.
Step 206: whether contain the digital certificate that server sends in the detection protocol data cell; If then execution in step 207; If not, then to main frame send server certificate request.
Step 207: verify whether the digital certificate in this protocol Data Unit is legal, if then execution in step 208; If not, to the host response authentication failure message.
Through above-mentioned steps 205-207, can realize server is carried out authentication.
Step 208: according to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of AES parameter in selection and the protocol Data Unit.
The corresponding relation of this preset encryption algorithm parameter and AES is arranged in the input message safety protective device in advance.
Particularly, the corresponding encryption algorithm steps of AES parameter in the protocol Data Unit of selecting and receiving comprises:
AES parameter corresponding processing function pointer is given the pointer variable func that points to the processing function and carried out the initialization of this processing function, so that when the user imports, carry out corresponding encryption through the processing function that calls the func indication.Can AES parameter and corresponding processing function pointer be made a table and be stored in the input information protective device, so that the upgrading processing program updates.
Step 209: the data of obtaining user's input.
Particularly, at this moment, the input information protective device gets into the Encryption Keyboard state, and a NKS (normal keyboard status, common keyboard Status Flag) variable can be set, when NKS=N, and expression Encryption Keyboard state; When NKS=Y, represent non-encrypted keyboard state, i.e. the common keyboard state.State during system start-up is the common keyboard state.
Step 211: adopt the AES of selecting that the data of user's input in the step 210 are encrypted.
In practical application, can after user's input finishes, NKS=Y be set, return to the common keyboard state.
Step 212: data encrypted is sent to main frame.
Particularly, can data encrypted be packaged into protocol Data Unit as " DATA " field and send to main frame.After main frame is received, perhaps, perhaps give server with the data forwarding of " DATA " field by the data of the deciphering of the application program on the main frame and use " DATA " field.
Need to prove that the data interaction of input information protective device and main frame can be passed through PS2 interface, USB interface or wave point.
In the implementation of above-mentioned steps 201-212, this method also comprises:
Receive user's interrupt instruction, and carry out the interrupt service routine corresponding, to handle accordingly with this interrupt instruction.
Particularly, these interrupt instructions can comprise: instruction, forcible authentication instruction, forced termination instruction and all data keies are set.
Wherein, Instruction is set is used to be provided with some options, for example whether hidden demonstration and with the password of the hidden explicit user input of what symbol, whether display server identifies; Whether always carry out the server forcible authentication, whether will pass through during system upgrade that the user confirms etc.Can carry out all possible setting with the mode of mutual question and answer.
The method of present embodiment also comprises: on this input information protective device, show input message safety protective device current working state and service data.This operating state and service data include but not limited to encrypt the data of input state, authentication result, user's input etc.
The embodiment of the invention is through be provided with the corresponding relation of multiple encryption algorithms and AES parameter in advance in the input message safety protective device; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Main frame and server that same input message safety protective device just can be various objectives provide required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.In addition, the embodiment of the invention can also realize the two-way authentication between input message safety protective device and the server, has further improved the fail safe of input information.
Embodiment 3
As shown in Figure 3, the embodiment of the invention provides a kind of input message safety protective device, and this device comprises:
Encrypting module 304 is used for encrypting the data that acquisition module 303 obtains according to the AES of selecting module 302 to select;
Sending module 305 is used for encrypting module 304 data encrypted are sent to main frame.
Particularly, the input message safety protective device of present embodiment can be used as independent device and common keyboard is compatible, also can directly be integrated on the keyboard, as the part of keyboard.
The beneficial effect of the technical scheme that the embodiment of the invention provides is: through the corresponding relation of multiple encryption algorithms and AES parameter is set in the input message safety protective device in advance; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Main frame and server that same input message safety protective device just can be various objectives provide required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.
Embodiment 4
As shown in Figure 4, the embodiment of the invention provides a kind of input message safety protective device, and this device comprises:
Encrypting module 304 is used for encrypting the data that acquisition module 303 obtains according to the AES of selecting module 302 to select;
Sending module 305 is used for encrypting module 304 data encrypted are sent to main frame.
Preferably, also comprise the data cell type parameter in this protocol Data Unit, then this device also comprises:
Correspondingly, select module 302 when the judged result of said judge module 406 when being, according to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of AES parameter in selection and the protocol Data Unit.
Preferably, this device also comprises: authentication module 407 is used for server is carried out authentication.
Preferably, this device also comprises: interrupt instruction Executive Module 408 is used to obtain interrupt instruction, and carries out the interrupt service routine corresponding with this interrupt instruction.
Particularly, this interrupt instruction can comprise instruction, forcible authentication instruction, forced termination instruction and all data keies are set.
Preferably, this device also comprises display module 409, be used to show the input message safety protective device current operating state and service data.This operating state and service data include but not limited to encrypt the data of input state, authentication result, user's input etc.
Preferably, this device also comprises: the software upgrading module, the software of the said input message safety protective device that is used for upgrading comprises AES.
In concrete a realization of present embodiment; This interrupt instruction Executive Module 408 can include but not limited to display mode switching push button, mandatory services device authentication button, termination and cancellation load button, data key or the like, and this display module 409 can comprise indicator light and display screen or the like.
Through the corresponding relation of multiple encryption algorithms and AES parameter is set in the input message safety protective device in advance; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Main frame and server that same input message safety protective device just can be various objectives provide required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.In addition, the embodiment of the invention can also realize the two-way authentication between input message safety protective device and the server, has further improved the fail safe of input information.
Embodiment 5
Present embodiment provides a kind of input information protection system, and this system comprises: main frame 52 and input information protective device 51, wherein, the input information protective device that input information protective device 51 can provide for embodiment 3 or 4; Main frame 52 is used for sending protocol Data Unit to input information protective device 51, comprises the AES parameter in this protocol Data Unit.
Further, this system can also comprise: server 53 is used for sending encryption input solicited message to main frame 52;
Correspondingly, also comprise this encryption input information request in the protocol Data Unit that main frame 52 sends, and main frame is used for also the data encrypted that the input information protective device sends is sent to server.
The embodiment of the invention is through be provided with the corresponding relation of multiple encryption algorithms and AES parameter in advance in the input message safety protective device; And in the protocol Data Unit that sends to the input message safety protective device, specify AES and provide required encryption parameter, and then the input message safety protective device can select specific AES on the input message safety protective device, the data of user's input to be encrypted according to the requirement of main frame or server.Like this; Main frame and server that same input message safety protective device just can be various objectives provide required separately encryption input service; Overcome the deficiency that special-purpose input message safety protective device algorithm is single, range of application is narrow and small; Also having overcome universal input device can not provide the defective of required separately encryption input service for main frame and server, has taken into account fail safe, versatility, flexibility.
Need to prove: input information protective device that the foregoing description provides and system are when the protection input information; Only the division with above-mentioned each functional module is illustrated; In the practical application; Can as required above-mentioned functions be distributed by the different functional completion, the internal structure that is about to device is divided into different functional, to accomplish all or part of function of above description.In addition, input information protective device that the foregoing description provides and system and input information guard method embodiment belong to same design, and its concrete implementation procedure sees method embodiment for details, repeats no more here.
The all or part of step that one of ordinary skill in the art will appreciate that realization the foregoing description can be accomplished through hardware; Also can instruct relevant hardware to accomplish through program; Described program can be stored in a kind of computer-readable recording medium; The above-mentioned storage medium of mentioning can be a read-only memory, disk or CD etc.
The above is merely preferred embodiment of the present invention, and is in order to restriction the present invention, not all within spirit of the present invention and principle, any modification of being done, is equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (12)
1. an input information guard method is characterized in that, said method comprises:
The input message safety protective device receives the protocol Data Unit that main frame sends, and comprises the AES parameter in the said protocol Data Unit;
According to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of said AES parameter in selection and the protocol Data Unit;
Obtain the data of user's input;
Adopt the said AES of selecting, encrypt the data of said user's input;
Data encrypted is sent to said main frame.
2. method according to claim 1; It is characterized in that; Also comprise the data cell type parameter in the said protocol Data Unit; Then at said corresponding relation according to preset encryption algorithm parameter and AES, before the corresponding AES of AES parameter in selection and the protocol Data Unit, said method also comprises:
Judge according to said data cell type parameter whether said protocol Data Unit is to encrypt input type, if then obtain the AES parameter in the said protocol Data Unit.
3. method according to claim 1 is characterized in that, at said corresponding relation according to preset encryption algorithm parameter and AES, before the corresponding AES of AES parameter in selection and the protocol Data Unit, said method also comprises:
Server is carried out authentication.
4. method according to claim 1 is characterized in that, said method also comprises: obtain interrupt instruction, and execution and the corresponding interrupt service routine of said interrupt instruction.
5. method according to claim 1 is characterized in that, said method also comprises: on said input message safety protective device, show said input message safety protective device current working state and service data.
6. an input message safety device is characterized in that, said device comprises:
Receiver module is used to receive the protocol Data Unit that main frame sends, and comprises the AES parameter in this protocol Data Unit;
Select module, be used for corresponding relation, the corresponding AES of said AES parameter in the protocol Data Unit of selecting to receive with said receiver module according to preset encryption algorithm parameter and AES;
Acquisition module is used to obtain the data of user's input;
Encrypting module is used for the AES according to said selection module selection, encrypts the data that said acquisition module obtains;
Sending module is used for said the encrypting module data encrypted being sent to said main frame.
7. device according to claim 6 is characterized in that, also comprises the data cell type parameter in the said protocol Data Unit, and then said device also comprises:
Judge module is used for judging according to said data cell type parameter whether said protocol Data Unit is to encrypt input type, if then obtain the AES parameter in the said protocol Data Unit.
8. device as claimed in claim 6 is characterized in that, said device also comprises:
Authentication module is used for server is carried out authentication.
9. device as claimed in claim 6 is characterized in that, said device also comprises: the interrupt instruction Executive Module is used to obtain interrupt instruction, and carries out said interrupt instruction.
10. device as claimed in claim 6 is characterized in that, said device also comprises: display module is used to show said input message safety protective device current working state and service data.
11. an input information protection system is characterized in that, said system comprises:
Main frame is used to send protocol Data Unit, comprises the AES parameter in the said protocol Data Unit;
The input information protective device is used to receive the protocol Data Unit that said main frame sends; According to the corresponding relation of preset encryption algorithm parameter and AES, the corresponding AES of said AES parameter in selection and the protocol Data Unit; Obtain the data of user's input; Adopt the said AES of selecting, encrypt the data of said user's input; Data encrypted is sent to said main frame.
12. system as claimed in claim 11 is characterized in that, said system also comprises:
Server is used for sending encryption input solicited message to said main frame;
Correspondingly, also comprise said encryption input solicited message in the said protocol Data Unit that said main frame sends, and said main frame is used for also the data encrypted that said input information protective device sends is sent to said server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210115703XA CN102664887A (en) | 2012-04-19 | 2012-04-19 | Input information protecting method, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210115703XA CN102664887A (en) | 2012-04-19 | 2012-04-19 | Input information protecting method, device and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102664887A true CN102664887A (en) | 2012-09-12 |
Family
ID=46774297
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210115703XA Pending CN102664887A (en) | 2012-04-19 | 2012-04-19 | Input information protecting method, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102664887A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107209763A (en) * | 2014-10-20 | 2017-09-26 | 起元科技有限公司 | Specify the rule with application data |
| CN109117678A (en) * | 2018-08-10 | 2019-01-01 | 天地融科技股份有限公司 | A kind of information transferring method and system |
| CN109344608A (en) * | 2018-08-10 | 2019-02-15 | 天地融科技股份有限公司 | A kind of information transferring method and system |
| CN110532787A (en) * | 2019-07-26 | 2019-12-03 | 苏州浪潮智能科技有限公司 | It is a kind of for strengthening the method and apparatus of the safety of the confidential resources in cluster |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1638327A (en) * | 2004-01-09 | 2005-07-13 | 索尼株式会社 | Encryption device and program and method used along with the same |
| CN1929478A (en) * | 2005-09-09 | 2007-03-14 | 华为技术有限公司 | Method and system for reducing transmission band occupation |
| CN101043326A (en) * | 2006-03-22 | 2007-09-26 | 赵兴 | Dynamic information encrypting system and method |
| CN101064719A (en) * | 2006-04-27 | 2007-10-31 | 华为技术有限公司 | Cryptographic algorithm negotiating method in PON system |
| CN101169815A (en) * | 2007-11-27 | 2008-04-30 | 华为技术有限公司 | Computer system and data input method |
| CN101286837A (en) * | 2008-05-13 | 2008-10-15 | 江苏大学 | Message encryption device and method oriented to storage area network |
-
2012
- 2012-04-19 CN CN201210115703XA patent/CN102664887A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1638327A (en) * | 2004-01-09 | 2005-07-13 | 索尼株式会社 | Encryption device and program and method used along with the same |
| CN1929478A (en) * | 2005-09-09 | 2007-03-14 | 华为技术有限公司 | Method and system for reducing transmission band occupation |
| CN101043326A (en) * | 2006-03-22 | 2007-09-26 | 赵兴 | Dynamic information encrypting system and method |
| CN101064719A (en) * | 2006-04-27 | 2007-10-31 | 华为技术有限公司 | Cryptographic algorithm negotiating method in PON system |
| CN101169815A (en) * | 2007-11-27 | 2008-04-30 | 华为技术有限公司 | Computer system and data input method |
| CN101286837A (en) * | 2008-05-13 | 2008-10-15 | 江苏大学 | Message encryption device and method oriented to storage area network |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107209763A (en) * | 2014-10-20 | 2017-09-26 | 起元科技有限公司 | Specify the rule with application data |
| CN107209763B (en) * | 2014-10-20 | 2021-04-09 | 起元科技有限公司 | Rules for specifying and applying data |
| CN109117678A (en) * | 2018-08-10 | 2019-01-01 | 天地融科技股份有限公司 | A kind of information transferring method and system |
| CN109344608A (en) * | 2018-08-10 | 2019-02-15 | 天地融科技股份有限公司 | A kind of information transferring method and system |
| CN109344608B (en) * | 2018-08-10 | 2021-09-21 | 天地融科技股份有限公司 | Information transmission method and system |
| CN110532787A (en) * | 2019-07-26 | 2019-12-03 | 苏州浪潮智能科技有限公司 | It is a kind of for strengthening the method and apparatus of the safety of the confidential resources in cluster |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9807066B2 (en) | Secure data transmission and verification with untrusted computing devices | |
| US8484480B2 (en) | Transmitting information using virtual input layout | |
| CN109150910A (en) | Log in token generation and verification method, device and storage medium | |
| CN102708324B (en) | A kind of screen unlocking system and method | |
| CN110460439A (en) | Information transferring method, device, client, server-side and storage medium | |
| CN108347361B (en) | Application program testing method and device, computer equipment and storage medium | |
| WO2019134361A1 (en) | Method and device for calling an interface and responding to an interface call, electronic device, and medium | |
| US9942209B2 (en) | Technologies for secure extensible inter-device I/O redirection across a network | |
| US20170012774A1 (en) | Method and system for improving the data security during a communication process | |
| CN108880806A (en) | Encryption and decryption method, chip and readable storage medium storing program for executing | |
| CN110995720B (en) | Encryption method, device, host terminal and encryption chip | |
| CN107948170A (en) | Interface requests parameter encryption method, device, equipment and readable storage medium storing program for executing | |
| CN106127059A (en) | The realization of credible password module and method of servicing on a kind of ARM platform | |
| CN102664887A (en) | Input information protecting method, device and system | |
| CN106101188B (en) | A kind of data processing method of network cloud USB flash disk | |
| CN102811203B (en) | Method for identifying ID, system and user terminal in the Internet | |
| JP6192495B2 (en) | Semiconductor device, information terminal, semiconductor element control method, and information terminal control method | |
| CN102546168A (en) | Communication device for identity authentication | |
| CN104541488A (en) | Authentication system preserving secret data confidentiality | |
| CN101236674A (en) | Intelligent cipher key equipment and method for information exchange with external apparatus | |
| CN202918498U (en) | SIM card adapter, mobile terminal and digital signature authentication system | |
| EP2591437B1 (en) | Microcode-based challenge/response process | |
| CN114584971A (en) | Account registration method and device, electronic equipment and storage medium | |
| CN202818328U (en) | Security authentication and encryption communication module based on security processor | |
| CN108270741A (en) | Mobile terminal authentication method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120912 |