CN112672098B - Cloud video conference encryption method, device and system - Google Patents
Cloud video conference encryption method, device and system Download PDFInfo
- Publication number
- CN112672098B CN112672098B CN202011601680.4A CN202011601680A CN112672098B CN 112672098 B CN112672098 B CN 112672098B CN 202011601680 A CN202011601680 A CN 202011601680A CN 112672098 B CN112672098 B CN 112672098B
- Authority
- CN
- China
- Prior art keywords
- conference
- encryption
- client
- encryption algorithm
- video
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention provides a cloud video conference encryption method, device and system, wherein an encryption and decryption interface library is deployed on a server and a participant client in a cloud video conference system, so that the cloud video conference system has the encryption and decryption functions of various encryption and decryption algorithms including an international standard encryption algorithm and a domestic standard encryption algorithm. After receiving the conference reservation request, the server can determine an encryption algorithm and a conference key of the video conference according to conference parameters carried in the conference reservation request, such as important conference level, scale, conference client types, communication network and the like, so that adaptive encryption and decryption of audio and video data in the video conference are realized, and the security of the video conference is improved.
Description
Technical Field
The invention relates to the technical field of network security, in particular to a cloud video conference encryption method, device and system.
Background
The cloud video conference takes cloud computing as a core, a service provider builds a cloud computing center, and provides a service for multi-party video communication in a conference room, a personal computer and a mobile state for a user in a mode of providing renting service for the user.
At present, an encryption algorithm is not usually adopted in a cloud video conference, and when encryption is required, an international standard encryption algorithm is often manually selected for encryption, so that the cloud video conference has great potential safety hazards.
Disclosure of Invention
In view of this, the invention provides a cloud video conference encryption method, device and system, which improve the security of a cloud video conference.
In order to achieve the above purpose, the invention provides the following specific technical scheme:
a cloud video conference encryption method is applied to a server in a cloud video conference system, the cloud video conference system further comprises a plurality of clients, the server and each client are respectively provided with an encryption and decryption interface library comprising an international standard encryption algorithm and a domestic standard encryption algorithm, and the method comprises the following steps:
under the condition of receiving a conference reservation request which is initiated by a reservation client and carries conference parameters, determining an encryption algorithm and a conference key of the video conference according to a preset corresponding relation between the conference parameters and the encryption algorithm, wherein the reservation client is any client;
sending the encryption algorithm and the conference key to a conference client of the video conference;
receiving audio and video data which are sent by the participating clients and encrypted by calling the encryption and decryption interface libraries;
and calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data, and sending the encrypted audio and video data to other meeting participating clients of the video conference.
Optionally, the determining an encryption algorithm and a conference key of the video conference according to a preset correspondence between conference parameters and encryption algorithms includes:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between the compatibility of the conference client and the encryption algorithm in the preset conference parameters;
and generating the conference key according to a preset symmetric grouping algorithm.
Optionally, the sending the encryption algorithm and the conference key to the participating clients of the video conference includes:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal;
and sending the encryption algorithm and the conference key to the participant terminals.
Optionally, the calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypt the decrypted audio and video data, and send the encrypted audio and video data to other participating clients of the video conference, including:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
A cloud video conference encryption device is applied to a server in a cloud video conference system, the cloud video conference system further comprises a plurality of clients, an encryption and decryption interface library comprising an international standard encryption algorithm and an domestic standard encryption algorithm is respectively deployed on the server and each client, and the device comprises:
the conference reservation system comprises an encryption algorithm determining unit, a conference reservation processing unit and a conference key determining unit, wherein the encryption algorithm determining unit is used for determining an encryption algorithm and a conference key of a video conference according to a preset corresponding relation between a conference parameter and the encryption algorithm under the condition that a conference reservation request which is initiated by a reservation client and carries the conference parameter is received, and the reservation client is any one client;
the encryption algorithm distribution unit is used for sending the encryption algorithm and the conference key to the conference participating clients of the video conference;
the audio and video data receiving unit is used for receiving the audio and video data which are sent by the participant client and are encrypted by calling the encryption and decryption interface library;
and the audio and video data forwarding unit is used for calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data and sending the encrypted audio and video data to other participant clients of the video conference.
Optionally, the encryption algorithm determining unit is specifically configured to:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between whether the conference clients are compatible with the national password and the encryption algorithm in the preset conference parameters;
and generating the conference key according to a preset symmetric grouping algorithm.
Optionally, the apparatus further includes a bidirectional authentication unit, specifically configured to:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
and under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal.
Optionally, the audio/video data forwarding unit is specifically configured to:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
A cloud video conference system comprises a server and a plurality of clients;
the server is used for executing the cloud video conference encryption method disclosed by the embodiment.
Optionally, under the condition that the participating client includes the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library, and encrypting the audio and video data by adopting an encryption and decryption card encryption mode;
and under the condition that the participating client does not comprise the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library and encrypting the audio and video data in a software encryption mode.
Compared with the prior art, the invention has the following beneficial effects:
the invention discloses a cloud video conference encryption method, which has the encryption and decryption functions of various encryption and decryption algorithms including an international standard encryption algorithm and a domestic standard encryption algorithm by deploying encryption and decryption interface libraries at a server and a conference participating client in a cloud video conference system. After receiving the conference reservation request, the server can determine an encryption algorithm and a conference key of the video conference according to conference parameters carried in the conference reservation request, such as conference importance levels, scales, conference client types, communication networks and the like, so that adaptive encryption and decryption of audio and video data in the video conference are realized, and the security of the video conference is improved.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the provided drawings without creative efforts.
Fig. 1 is a schematic flowchart of a cloud video conference encryption method disclosed in an embodiment of the present invention;
fig. 2 is a schematic diagram of a correspondence between a conference parameter and an encryption algorithm disclosed in an embodiment of the present invention;
fig. 3 is a schematic diagram of a bidirectional authentication method between a server and a participating client according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a cloud video conference encryption device disclosed in the embodiment of the present invention;
fig. 5 is a schematic structural diagram of a cloud video conference system disclosed in an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The invention discloses a cloud video conference encryption method, which is applied to a server in a cloud video conference system, wherein the cloud video conference system also comprises a plurality of clients, the server and each client are respectively provided with an encryption and decryption interface library comprising an international standard encryption algorithm and a domestic standard encryption algorithm, so that the server has the encryption and decryption functions of the encryption and decryption algorithms comprising the international standard encryption algorithm and the domestic standard encryption algorithm, and the server determines the encryption algorithm and a conference key of the video conference according to conference parameters, conference importance levels, scales, conference client types, a communication network and the like carried in a conference reservation request, thereby realizing the self-adaptive encryption and decryption of audio and video data in the video conference and improving the security of the video conference.
Specifically, referring to fig. 1, the cloud video conference encryption method disclosed in this embodiment includes the following steps:
s101: under the condition of receiving a conference reservation request which is initiated by a reservation client and carries conference parameters, determining an encryption algorithm and a conference key of the video conference according to a preset corresponding relation between the conference parameters and the encryption algorithm, wherein the reservation client is any client;
it should be noted that, when a client needs a server to provide a video conference service for the client, a conference reservation request needs to be initiated to the server in advance, and conference parameters carried by the conference reservation request include: conference importance level, scale, type of participating client, type of communication network, and whether participating clients are compatible with national password, etc.
An alternative correspondence between conference parameters and encryption algorithms is shown in fig. 2, where the higher the conference importance level is, the higher the encryption level is required, and the more encryption is required with the national standard encryption algorithm.
The participating client type can be a software terminal (such as a mobile phone, a tablet computer, a PC and the like which participate in the video conference through the APP), a mixture of software and hardware terminals (that is, the participating client includes both a terminal device which participates in the video conference through the APP and a video conference hardware terminal), and a hardware terminal (such as a video conference hardware terminal).
The communication network types comprise an internal network, an external network and a mixture of the internal network and the external network, wherein the external network has higher requirements on the safety of the video conference.
SM1, SM2, SM3, SM4, ZUC are domestic standard encryption algorithms, AES128 is international standard encryption algorithm.
The server generates a conference key of the video conference according to a preset symmetric grouping algorithm, and different keys are generated by the server for different video conferences.
S102: sending an encryption algorithm and a conference key to a conference client of the video conference;
preferably, in order to further ensure the security of the video conference, before the server sends the encryption algorithm and the conference key to the participating clients of the video conference, bidirectional identity authentication needs to be performed with the participating clients.
Referring to fig. 3, the mutual authentication method between the server and the participating clients is as follows:
s201: receiving an encrypted video conference authentication request sent by a participating client;
and the participating client sends an encrypted video conference authentication request to the server in the reserved video conference time.
S202: generating challenge data under the condition of verifying that the participation client certificate is valid, and sending the challenge data to the participation client;
s203: receiving a signature of challenge data sent by a participating client under the condition that a certificate of a verification server is valid;
s204: under the condition that the signature of the challenge data is verified to be valid, sending a response result that the bidirectional authentication is passed to the participant terminal;
s205: and sending the encryption algorithm and the conference key to the participant terminal.
All the participating clients of the video conference adopt the same encryption algorithm and the same conference key.
S103: receiving audio and video data which are sent by the participating clients and encrypted by calling the encryption and decryption interface libraries;
and the participating client encrypts the audio and video data by calling an interface corresponding to the encryption algorithm in the video conference in the encryption and decryption interface library of the participating client.
Further, under the condition that the participating client comprises the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library, and the audio and video data are encrypted by adopting an encryption and decryption card encryption mode, namely, the audio and video data are encrypted by adopting a hardware encryption mode, so that the security is higher.
And under the condition that the participating client does not comprise the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library and encrypting the audio and video data in a software encryption mode.
S104: and calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data, and sending the encrypted audio and video data to other meeting client sides of the video meeting.
Further, the server can adaptively send audio and video data with corresponding resolution and quality according to the performance of the participating clients, for example, adjust the audio and video data according to the CPU utilization rate, the memory utilization rate, the network bandwidth and the like of the participating clients, and send the audio and video data with corresponding resolution and quality.
Specifically, the server calls an interface corresponding to the encryption algorithm in an encryption and decryption interface library to decrypt the received encrypted audio and video data.
The server obtains current operation parameters of each participating client, such as CPU utilization rate, memory utilization rate, network bandwidth and the like.
And the server adjusts the resolution and quality of the audio and video data according to the current operating parameters of each participating client.
And the server calls an interface corresponding to the encryption algorithm in the encryption and decryption interface library, encrypts the adjusted audio and video data respectively, and correspondingly sends the encrypted audio and video data to other participating clients.
Therefore, in the cloud video conference encryption method disclosed in this embodiment, the server and the participating clients in the cloud video conference system are provided with the encryption and decryption interface libraries, so that the cloud video conference encryption method has the encryption and decryption functions of various encryption and decryption algorithms including the international standard encryption algorithm and the domestic standard encryption algorithm. After receiving the conference reservation request, the server can determine an encryption algorithm and a conference key of the video conference according to conference parameters carried in the conference reservation request, such as important conference level, scale, conference client types, communication network and the like, so that adaptive encryption and decryption of audio and video data in the video conference are realized, and the security of the video conference is improved.
Based on the cloud video conference encryption method disclosed in the above embodiments, this embodiment correspondingly discloses a cloud video conference encryption device, which is applied to a server in a cloud video conference system, the cloud video conference system further includes a plurality of clients, the server and each client are respectively deployed with an encryption and decryption interface library including an international standard encryption algorithm and a domestic standard encryption algorithm, please refer to fig. 4, and the device includes:
an encryption algorithm determining unit 100, configured to determine an encryption algorithm and a conference key of the video conference according to a preset correspondence between a conference parameter and an encryption algorithm when receiving a conference reservation request with a conference parameter initiated by a reservation client, where the reservation client is any one client;
the encryption algorithm distribution unit 200 is configured to send the encryption algorithm and the conference key to the participating clients of the video conference;
the audio and video data receiving unit 300 is used for receiving the audio and video data which are sent by the participating clients and encrypted by calling the encryption and decryption interface libraries;
and the audio and video data forwarding unit 400 is used for calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data and sending the encrypted audio and video data to other participant clients of the video conference.
Optionally, the encryption algorithm determining unit 100 is specifically configured to:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between whether the conference clients are compatible with the national password and the encryption algorithm in the preset conference parameters;
and generating the conference key according to a preset symmetric grouping algorithm.
Optionally, the apparatus further includes a bidirectional authentication unit, specifically configured to:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
and under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal.
Optionally, the audio/video data forwarding unit 400 is specifically configured to:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
The embodiment also discloses a cloud video conference system, please refer to fig. 5, which includes a server and a plurality of clients, where the server communicates with the plurality of clients via the internet, the server provides a key management service, an encryption/decryption service, and a video processing service, the client may be a mobile terminal or a hardware terminal, the client may be equipped with an encryption/decryption card or not, and the client dynamically updates keys for the client when participating in different video conferences, that is, different video conferences correspond to different keys.
The server is used for executing the following cloud video conference encryption method:
under the condition of receiving a conference reservation request which is initiated by a reservation client and carries conference parameters, determining an encryption algorithm and a conference key of the video conference according to a preset corresponding relation between the conference parameters and the encryption algorithm, wherein the reservation client is any client;
sending the encryption algorithm and the conference key to a conference client of the video conference;
receiving audio and video data which are sent by the participating clients and encrypted by calling the encryption and decryption interface libraries;
and calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data, and sending the encrypted audio and video data to other meeting participating clients of the video conference.
Further, the determining an encryption algorithm and a conference key of the video conference according to a preset correspondence between conference parameters and encryption algorithms includes:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between the compatibility of the conference client and the encryption algorithm in the preset conference parameters;
and generating the conference key according to a preset symmetric grouping algorithm.
Further, the sending the encryption algorithm and the conference key to the participating clients of the video conference includes:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal;
and sending the encryption algorithm and the conference key to the participant terminals.
Further, the calling of the encryption and decryption interface library decrypts the received encrypted audio and video data, encrypts the decrypted audio and video data, and sends the encrypted audio and video data to other participating clients of the video conference, including:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
Optionally, under the condition that the participating client includes the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library, and encrypting the audio and video data by adopting an encryption and decryption card encryption mode;
and under the condition that the participating client does not comprise the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library and encrypting the audio and video data in a software encryption mode.
According to the cloud video conference system disclosed by the embodiment, the server and the participating clients in the cloud video conference system are provided with the encryption and decryption interface libraries, so that the cloud video conference system has the encryption and decryption functions of various encryption and decryption algorithms including an international standard encryption algorithm and a domestic standard encryption algorithm. After receiving the conference reservation request, the server can determine an encryption algorithm and a conference key of the video conference according to conference parameters carried in the conference reservation request, such as important conference level, scale, conference client types, communication network and the like, so that adaptive encryption and decryption of audio and video data in the video conference are realized, and the security of the video conference is improved.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, and the same and similar parts among the embodiments are referred to each other. The device disclosed by the embodiment corresponds to the method disclosed by the embodiment, so that the description is simple, and the relevant points can be referred to the method part for description.
It is further noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied directly in hardware, in a software module executed by a processor, or in a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The above embodiments can be combined arbitrarily, and the features described in the embodiments in the present specification can be replaced or combined with each other in the above description of the disclosed embodiments, so that those skilled in the art can implement or use the present application.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present invention. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the invention. Thus, the present invention is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.
Claims (6)
1. A cloud video conference encryption method is applied to a server in a cloud video conference system, the cloud video conference system further comprises a plurality of clients, and an encryption and decryption interface library comprising an international standard encryption algorithm and a domestic standard encryption algorithm is respectively deployed on the server and each client, and the method comprises the following steps:
under the condition of receiving a conference reservation request which is initiated by a reservation client and carries conference parameters, determining an encryption algorithm and a conference key of the video conference according to a preset corresponding relation between the conference parameters and the encryption algorithm, wherein the reservation client is any client;
sending the encryption algorithm and the conference key to a conference client of the video conference;
receiving audio and video data which are sent by the participating clients and encrypted by calling the encryption and decryption interface libraries;
calling an encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data, and sending the encrypted audio and video data to other meeting client sides of the video meeting;
the determining an encryption algorithm and a conference key of the video conference according to the preset corresponding relationship between the conference parameters and the encryption algorithm comprises the following steps:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between the compatibility of the conference client and the encryption algorithm in the preset conference parameters;
generating the conference key according to a preset symmetric grouping algorithm;
the calling of the encryption and decryption interface library is used for decrypting the received encrypted audio and video data, encrypting the decrypted audio and video data and sending the encrypted audio and video data to other participating clients of the video conference, and the calling of the encryption and decryption interface library comprises the following steps:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
2. The method according to claim 1, wherein the sending the encryption algorithm and the conference key to the participating clients of the video conference comprises:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal;
and sending the encryption algorithm and the conference key to the participant terminals.
3. The utility model provides a cloud video conference encryption device which characterized in that is applied to the server in the cloud video conference system, the cloud video conference system still includes a plurality of clients, and server and every client are deployed respectively and are included the encryption interface storehouse of international standard encryption algorithm and domestic standard encryption algorithm, the device includes:
the conference reservation system comprises an encryption algorithm determining unit, a conference reservation processing unit and a conference key determining unit, wherein the encryption algorithm determining unit is used for determining an encryption algorithm and a conference key of a video conference according to a preset corresponding relation between a conference parameter and the encryption algorithm under the condition that a conference reservation request which is initiated by a reservation client and carries the conference parameter is received, and the reservation client is any one client;
the encryption algorithm distribution unit is used for sending the encryption algorithm and the conference key to the conference participating clients of the video conference;
the audio and video data receiving unit is used for receiving the audio and video data which are sent by the participant client and are encrypted by calling the encryption and decryption interface library;
the audio and video data forwarding unit is used for calling the encryption and decryption interface library to decrypt the received encrypted audio and video data, encrypting the decrypted audio and video data and sending the encrypted audio and video data to other participant clients of the video conference;
wherein the encryption algorithm determining unit is specifically configured to:
determining the encryption algorithm of the video conference according to the conference importance level, scale, conference client type, communication network type and the corresponding relation between the compatibility of the conference client and the encryption algorithm in the preset conference parameters;
generating the conference key according to a preset symmetric grouping algorithm;
the audio and video data forwarding unit is specifically configured to:
calling an interface corresponding to the encryption algorithm in an encryption and decryption interface library, and decrypting the received encrypted audio and video data;
acquiring current operation parameters of each participating client;
respectively adjusting the resolution and quality of audio and video data according to the current operating parameters of each participating client;
and calling an interface corresponding to the encryption algorithm in the encryption and decryption interface library, respectively encrypting the adjusted audio and video data, and correspondingly sending the encrypted audio and video data to other participating clients.
4. The apparatus according to claim 3, wherein the apparatus further comprises a mutual authentication unit, specifically configured to:
receiving an encrypted video conference authentication request sent by a participating client;
generating challenge data under the condition that the participation client certificate is verified to be valid, and sending the challenge data to the participation client;
receiving a signature of the challenge data sent by the participating client under the condition that the certificate of the verification server is valid;
and under the condition that the signature of the challenge data is verified to be valid, sending a response result that the mutual authentication is passed to the participant terminal.
5. A cloud video conference system is characterized by comprising a server and a plurality of clients;
the server is used for executing the cloud video conference encryption method according to any one of claims 1 or 2.
6. The cloud video conferencing system of claim 5,
under the condition that the participant client comprises an encryption and decryption card, the participant client is used for calling an interface corresponding to the encryption algorithm of the video conference in an encryption and decryption interface library and encrypting the audio and video data in an encryption and decryption card encryption mode;
and under the condition that the participating client does not comprise the encryption and decryption card, the participating client is used for calling an interface corresponding to the encryption algorithm of the video conference in the encryption and decryption interface library and encrypting the audio and video data in a software encryption mode.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011601680.4A CN112672098B (en) | 2020-12-30 | 2020-12-30 | Cloud video conference encryption method, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011601680.4A CN112672098B (en) | 2020-12-30 | 2020-12-30 | Cloud video conference encryption method, device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112672098A CN112672098A (en) | 2021-04-16 |
| CN112672098B true CN112672098B (en) | 2022-09-20 |
Family
ID=75410563
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011601680.4A Active CN112672098B (en) | 2020-12-30 | 2020-12-30 | Cloud video conference encryption method, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112672098B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116830564A (en) * | 2022-01-27 | 2023-09-29 | 京东方科技集团股份有限公司 | Conference data transmission method, device and system, electronic equipment and readable medium |
| CN114650131A (en) * | 2022-03-17 | 2022-06-21 | 北京中交兴路信息科技有限公司 | Key management method and system |
| CN115333865B (en) * | 2022-10-14 | 2023-03-10 | 华能信息技术有限公司 | Client data security management method of video conference system |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011022999A1 (en) * | 2009-08-27 | 2011-03-03 | 中兴通讯股份有限公司 | Method and system for encrypting video conference data by terminal |
| CN107872462A (en) * | 2017-11-22 | 2018-04-03 | 苏州科达科技股份有限公司 | Conference call method and device |
| CN108173860A (en) * | 2017-12-29 | 2018-06-15 | 深圳市泛海三江科技发展有限公司 | A kind of MQTT connection methods, system, terminal and the server of low side constrained devices |
| CN110992030A (en) * | 2019-12-03 | 2020-04-10 | 银清科技有限公司 | Transaction method and system based on super account book fabric |
| CN111355921A (en) * | 2020-04-13 | 2020-06-30 | 随锐科技集团股份有限公司 | Video conference encryption method and system |
| CN111865609A (en) * | 2020-07-03 | 2020-10-30 | 上海缔安科技股份有限公司 | Private cloud platform data encryption and decryption system based on state cryptographic algorithm |
-
2020
- 2020-12-30 CN CN202011601680.4A patent/CN112672098B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011022999A1 (en) * | 2009-08-27 | 2011-03-03 | 中兴通讯股份有限公司 | Method and system for encrypting video conference data by terminal |
| CN107872462A (en) * | 2017-11-22 | 2018-04-03 | 苏州科达科技股份有限公司 | Conference call method and device |
| CN108173860A (en) * | 2017-12-29 | 2018-06-15 | 深圳市泛海三江科技发展有限公司 | A kind of MQTT connection methods, system, terminal and the server of low side constrained devices |
| CN110992030A (en) * | 2019-12-03 | 2020-04-10 | 银清科技有限公司 | Transaction method and system based on super account book fabric |
| CN111355921A (en) * | 2020-04-13 | 2020-06-30 | 随锐科技集团股份有限公司 | Video conference encryption method and system |
| CN111865609A (en) * | 2020-07-03 | 2020-10-30 | 上海缔安科技股份有限公司 | Private cloud platform data encryption and decryption system based on state cryptographic algorithm |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112672098A (en) | 2021-04-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112672098B (en) | Cloud video conference encryption method, device and system | |
| CN111949953B (en) | Identity authentication method, system and device based on block chain and computer equipment | |
| JP6655616B2 (en) | Establish communication between mobile terminals | |
| CN111030814B (en) | Secret key negotiation method and device | |
| CN110933484A (en) | Management method and device of wireless screen projection equipment | |
| CN112823503B (en) | Data access method, data access device and mobile terminal | |
| CN108449357B (en) | Authorized login method and device, intelligent device and storage medium | |
| CN107483429B (en) | A kind of data ciphering method and device | |
| TW201830949A (en) | Methods for sharing sim card and mobile terminals | |
| WO2019061628A1 (en) | Data verification method, and server | |
| CN106604070B (en) | The distributed key management system and key management method of Streaming Media under cloud environment | |
| CN112566119A (en) | Terminal authentication method and device, computer equipment and storage medium | |
| CN112202882B (en) | Transmission method, client and transmission system | |
| CN114338618A (en) | Multi-party call method, system, conference server and electronic equipment | |
| CN107483430A (en) | A kind of testimony of a witness unification authentication method and device of the cloud identification of identity-based card | |
| CN114338247A (en) | Data transmission method and apparatus, electronic device, storage medium, and program product | |
| EP2845404A1 (en) | Network application function authorisation in a generic bootstrapping architecture | |
| CN109873818B (en) | Method and system for preventing illegal access to server | |
| CN103973543A (en) | Method and device for instant messaging | |
| CN112565656B (en) | Video call method, device, system, electronic equipment and storage medium | |
| CN114117406A (en) | Data processing method, device, equipment and storage medium | |
| CN108055356A (en) | A kind of information processing method, server, client and readable storage medium storing program for executing | |
| JP4718552B2 (en) | Method and system for managing authentication and payment for use of broadcast material | |
| CN108270917B (en) | Encrypted smart phone | |
| CN110213299B (en) | Multi-attribute authorization encryption method and device suitable for mobile cloud environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 100088 office b1106, block B, 11 / F, building 1, 12 Yumin Road, Chaoyang District, Beijing Applicant after: Beijing zhenshitong Digital Technology Co.,Ltd. Address before: 100088 office b1106, block B, 11 / F, building 1, 12 Yumin Road, Chaoyang District, Beijing Applicant before: Beijing Yitian Chengda Technology Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |