WO2015154464A1 - Encryption method and device - Google Patents

Encryption method and device Download PDF

Info

Publication number
WO2015154464A1
WO2015154464A1 PCT/CN2014/091170 CN2014091170W WO2015154464A1 WO 2015154464 A1 WO2015154464 A1 WO 2015154464A1 CN 2014091170 W CN2014091170 W CN 2014091170W WO 2015154464 A1 WO2015154464 A1 WO 2015154464A1
Authority
WO
WIPO (PCT)
Prior art keywords
application
encryption
encrypted
security password
database
Prior art date
Application number
PCT/CN2014/091170
Other languages
French (fr)
Chinese (zh)
Inventor
常喆
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2015154464A1 publication Critical patent/WO2015154464A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication

Definitions

  • the present invention relates to the field of mobile applications, and in particular, to an encryption method and apparatus.
  • the embodiment of the invention provides an application encryption method and device to solve the problem that the mobile terminal operating system leaks user information.
  • An encryption method including:
  • the application information is normally displayed.
  • the method further includes:
  • a security password is set for the encryption application, and a one-to-one mapping relationship between the encryption application and the corresponding security password is saved in the encryption database, and the application is set to the encryption mode.
  • the method further includes:
  • the method further includes:
  • the method further includes:
  • the range of the application information includes any one or more of the following:
  • the embodiment of the invention further provides an encryption device, including:
  • the encrypted display module is configured to encrypt and display the application information preset to the encrypted application
  • a password matching module configured to detect whether a security password input by the user is consistent with a security password corresponding to the application stored in the encryption database
  • Decrypting the display module configured to decrypt the display of the application information when the security password input by the user is consistent with the security password corresponding to the encrypted application stored in the encryption database.
  • the device further includes:
  • the password management module is configured to set a security password for the encryption application, and save a one-to-one mapping relationship between the encryption application and the corresponding security password in the encryption database, and set the application to be an encryption mode.
  • the password management module is further configured to delete a one-to-one mapping relationship between the encrypted application stored in the encryption database and the security password corresponding to the encrypted application.
  • the password management module is further configured to modify a security password corresponding to the encrypted application in the encrypted database.
  • the password management module is further configured to set a range of application information of the encrypted application, where the scope of the application information includes any one or more of the following:
  • the embodiment of the invention further provides a computer program and a carrier thereof, the computer program comprising a program
  • the instructions when executed by the user equipment, cause the user equipment to implement the encryption method described above.
  • the embodiment of the invention provides an encryption method and device, which encrypts and displays the application information preset to the encryption application, retrieves the security password of the encrypted application from the preset encryption database, and detects the security password entered by the user. Whether the security password corresponding to the encrypted application stored in the encryption database is consistent, and the application information is normally displayed when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
  • the encryption protection of the direct display information such as the prompt information of the application is realized, and the problem that the mobile terminal operating system leaks the user information is solved.
  • FIG. 1 is a schematic diagram of an application encryption system according to Embodiment 1 of the present invention.
  • FIG. 2 is a flowchart of an application encryption method according to Embodiment 2 of the present invention.
  • Embodiment 3 is a flowchart of an application encryption method according to Embodiment 3 of the present invention.
  • Embodiment 4 is a flowchart of an application encryption method according to Embodiment 4 of the present invention.
  • FIG. 5 is a flowchart of an application encryption method according to Embodiment 5 of the present invention.
  • FIG. 6 is a schematic structural diagram of an application encryption apparatus according to Embodiment 6 of the present invention.
  • embodiments of the present invention provide an application encryption method and apparatus. Embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
  • Embodiment 1 of the present invention provides an application encryption system, as shown in FIG. 1 , applicable to a user equipment, such as a mobile phone, where the user equipment includes a microprocessor and a memory.
  • the user encryption system includes an encryption unit, an operation portal provided to the user for the system, configured to set a password for any one of the user equipments, select a scope of the password, and store the mapping of the application and the password into the database. ;
  • decryption unit which in turn contains two parts: the first part is the normal startup application, if it is an encrypted application, and the application is encrypted, the user needs to input the correct password before entering; the second part is the application When a notification message or dialog box is popped up, if it is an encrypted application and the notification bar message is encrypted, the original message content is replaced with an encrypted prompt.
  • It also contains a storage unit: it saves the password set by the user for the target application, and the scope of encryption. Because the amount of data is small, it is preferable to use the xml text database.
  • the user enters the setting entry of the encryption function, selects the application, enters and confirms a password, and then selects the scope of the encryption (the scope of action includes launching the application, popping up the notification bar message and pop-up dialog box), and storing the above information in the database. Thereafter, when the user opens the encrypted application, it is required to input the correct password before it can run normally. Or when the encryption application actively pops up the notification or the dialog box, the original information is hidden, and the prompt information is given, prompting the user to decrypt and enter the application before viewing.
  • the scope of action includes launching the application, popping up the notification bar message and pop-up dialog box
  • An embodiment of the present invention provides an application encryption method.
  • the process of encrypting and displaying application information by using the method is as shown in FIG. 2, and includes:
  • Step 201 The user selects the target encryption application A and sets a security password M for it.
  • the one-to-one mapping relationship between the encrypted application and the security password is stored in the encrypted database.
  • Step 202 The user selects the security password M to act on the range E of the application A (ie, the range of the application information of the encrypted application A).
  • This scope includes any or any of the following events: launching the application, popping up the notification bar message, and pop-up message dialog. These three can appear independently or in any combination.
  • Step 203 Create a data node according to the mapping relationship between the application A and the password M in step 201 and the scope E in step 202, and store the data node in the database.
  • the following is a specific implementation of the data node:
  • the encryption of the application is completed, and it is ensured that in the case of encryption, the application information (including the privacy information) cannot be directly viewed in the three ways, and the security is improved.
  • An embodiment of the present invention provides an application encryption method, and the process for encrypting and starting an application by using the method is as shown in FIG. 3, and includes:
  • Step 301 When the user starts the application, the system first performs encryption in the database according to the current application.
  • Step 302 Specifically:
  • Step 3021 According to the result of step 301: if the application does not exist in the encrypted database, then go to step 3023; if the application matches in the encrypted database, the application is an encrypted application and the encryption scope includes "starting the application , go to step 3022.
  • Step 3022 According to the result of step 3021, the pop-up password input box receives the security password set by the user input in step 201 of the second embodiment. If the input is correct, then go to step 3023; otherwise, go to step 3024.
  • Step 3023 The application starts normally, and the process ends.
  • Step 3024 The application fails to start, and the process ends.
  • the embodiment of the invention completes the protection of the application startup process, and restricts the user from opening and viewing the encrypted application content without the user inputting the correct password.
  • An embodiment of the present invention provides an application encryption method.
  • the process of encrypting and starting an application by using the method is as shown in FIG. 4, and includes:
  • Step 401 When the application actively pops up the notification bar message or the message dialog box, the system first encrypts the database according to the current application for matching.
  • Step 402 specifically comprising:
  • Step 4021 According to the result of step 401: if the application does not exist in the database, then go to step 4022; if the application matches in the database, and the scope of action includes "pop-up notification bar message or message dialog box", then The application is considered encrypted and jumps to step 4023.
  • Step 4022 The notification bar message or the message dialog box content is normally displayed, and the process ends.
  • Step 4023 According to the output result of step 4021, the original message information is replaced by using an encrypted prompt, and then popped up to inform the user that the user needs to decrypt the application to view the message content, and the process ends.
  • An embodiment of the present invention provides an application encryption method.
  • the process of encrypting and displaying an application information by using the method is as shown in FIG. 5, and includes:
  • Step 501 Encrypt display of application information preset to the encryption application
  • one or more of the applications loaded by the mobile phone are selected as an encryption application, a security password is set for the encryption application, and a one-to-one mapping between the encryption application and the corresponding security password is saved in the encryption database. Relationship, set the application to encryption mode.
  • the security password of the encrypted application may be edited, for example, deleting a one-to-one mapping relationship between the encrypted application stored in the encrypted database and its corresponding security password, and de-encrypting the encrypted application; or modifying the The security password corresponding to the encrypted application in the encrypted database.
  • the scope of the application information of the encryption application that is, the application scope of the security password, is set, and the scope of the application information includes any one or more of the following:
  • the above range may further include starting an encryption application.
  • Step 502 Detect whether the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
  • Step 503 When the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database, the application information is normally displayed.
  • An embodiment of the present invention provides an application encryption device, and the structure thereof is as shown in FIG. 6, and includes:
  • the encryption display module 601 is configured to encrypt and display the application information preset to the encrypted application;
  • the password matching module 602 is configured to detect whether the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database;
  • the decryption display module 603 is configured to decrypt and display the application information when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
  • the device further includes:
  • the password management module 604 is configured to set a security password for the application, and save a one-to-one mapping relationship between the encryption application and the corresponding security password in the encryption database, and set the application to be an encryption mode.
  • the password management module 604 is further configured to delete a one-to-one mapping relationship between the encrypted application stored in the encrypted database and its corresponding security password.
  • the password management module 604 is further configured to modify a security password corresponding to the encrypted application in the encrypted database.
  • the password management module 604 is further configured to set a range of application information of the encrypted application, where the range of the application information includes any one or more of the following:
  • An embodiment of the present invention provides an application encryption method and device, which encrypts and displays application information preset to an encryption application, retrieves a security password of the encrypted application from a preset encryption database, and detects security of user input. Whether the password is consistent with the security password corresponding to the application stored in the encryption database, and the application information is normally displayed when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
  • the encryption protection of the direct display information such as the prompt information of the application is realized, and the problem that the mobile terminal operating system leaks the user information is solved.
  • encryption path protection is also provided for bulletin messages, notification bar information, and other ways that may reveal user privacy information.
  • the embodiment of the present invention starts from the framework layer and performs more comprehensive protection on the application without affecting the android standard interface, thereby greatly reducing the possibility of user information leakage (especially The important information that will automatically pop up for SMS verification code or chat software information) enhances the user experience.
  • all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve. Thus, the invention is not limited to any specific combination of hardware and software.
  • the devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
  • each device/function module/functional unit in the above embodiment When each device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium.
  • the above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
  • the encryption method and device provided by the embodiment of the present invention encrypt and display the application information preset to the encryption application, retrieve the security password of the encrypted application from the preset encryption database, and detect the security password input by the user and the Whether the security password corresponding to the application stored in the encryption database is consistent, and when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database, the application information is normally displayed, and the application is implemented.
  • the prompt information and the like directly display the encryption protection of the information, and solve the problem that the mobile terminal operating system leaks the user information.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

An application encryption method and device. The method comprises: encrypting and displaying information about an application which is preset as an encrypted application; detecting whether a security password which is input by a user is consistent with a security password which is stored in an encrypted database and which corresponds to the application; and if the security password which is input by the user is consistent with the security password which is stored in the encrypted database and which corresponds to the encrypted application, normally displaying the information about the application. The technical solution provided in the present invention is suitable for an operating system of a mobile terminal, thereby solving the problem that the operating system of the mobile terminal leaks user information.

Description

一种加密方法和装置Encryption method and device 技术领域Technical field
本发明涉及移动应用领域,尤其涉及一种加密方法和装置。The present invention relates to the field of mobile applications, and in particular, to an encryption method and apparatus.
背景技术Background technique
在移动平台高速发展的现在,手机除了基本的通话、短信功能外,也承担起越来越多的社交、金融、商务服务,这些服务中保存了大量的用户基本账户信息、身份信息甚至银行卡信息。虽然目前已有的一些加密手段,但基本上只是简单的限制应用启动。而考虑到UI交互的特性,很多敏感信息(比如短信内容,聊天消息)会通过通知栏消息或对话框消息形式呈现给用户。当手机丢失或者被周围人拿去恶意操作,如果使用传统方式加密手段,隐私或信息泄露的风险就非常高。Nowadays, with the rapid development of mobile platforms, mobile phones, in addition to basic call and SMS functions, also undertake more and more social, financial and business services. These services save a large number of user basic account information, identity information and even bank cards. information. Although there are some encryption methods available at present, it is basically a simple restriction on application startup. Considering the characteristics of UI interaction, many sensitive information (such as SMS content, chat messages) will be presented to the user through a notification bar message or a dialog message. When a mobile phone is lost or maliciously manipulated by people around it, the risk of privacy or information leakage is very high if traditional methods of encryption are used.
发明内容Summary of the invention
本发明实施例提供了一种应用加密方法和装置,解决移动终端操作***泄露用户信息的问题。The embodiment of the invention provides an application encryption method and device to solve the problem that the mobile terminal operating system leaks user information.
一种加密方法,包括:An encryption method, including:
对预置为加密应用的应用信息加密显示;Encrypted display of application information preset to the encryption application;
检测用户输入的安全密码与所述加密数据库中存储的所述加密应用对应的安全密码是否一致;Detecting whether the security password input by the user is consistent with the security password corresponding to the encrypted application stored in the encryption database;
在用户输入的安全密码与所述加密数据库中存储的所述加密应用对应的安全密码一致时,正常显示所述应用信息。When the security password input by the user is consistent with the security password corresponding to the encryption application stored in the encryption database, the application information is normally displayed.
可选地,该方法还包括:Optionally, the method further includes:
为加密应用设置安全密码,在所述加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。A security password is set for the encryption application, and a one-to-one mapping relationship between the encryption application and the corresponding security password is saved in the encryption database, and the application is set to the encryption mode.
可选地,该方法还包括: Optionally, the method further includes:
删除所述加密数据库中保存的加密应用与所述加密应用对应的安全密码之间的一一映射关系。Deleting a one-to-one mapping relationship between the encrypted application stored in the encrypted database and the secure password corresponding to the encrypted application.
可选地,该方法还包括:Optionally, the method further includes:
修改所述加密数据库中加密应用对应的安全密码。Modify the security password corresponding to the encrypted application in the encrypted database.
可选地,该方法还包括:Optionally, the method further includes:
设置所述加密应用的应用信息的范围,所述应用信息的范围包括以下任一项或任意多项:Setting a range of application information of the encrypted application, the range of the application information includes any one or more of the following:
启动应用、弹出的通知栏消息和弹出的消息对话框内容。Launch the app, the pop-up notification bar message, and the pop-up message dialog content.
本发明实施例还提供了一种加密装置,包括:The embodiment of the invention further provides an encryption device, including:
加密显示模块,设置为对预置为加密应用的应用信息加密显示;The encrypted display module is configured to encrypt and display the application information preset to the encrypted application;
密码比对模块,设置为检测用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码是否一致;a password matching module, configured to detect whether a security password input by the user is consistent with a security password corresponding to the application stored in the encryption database;
解密显示模块,设置为当用户输入的安全密码与所述加密数据库中存储的所述加密应用对应的安全密码一致时,解密显示所述应用信息。Decrypting the display module, configured to decrypt the display of the application information when the security password input by the user is consistent with the security password corresponding to the encrypted application stored in the encryption database.
可选地,该装置还包括:Optionally, the device further includes:
密码管理模块,设置为对加密应用设置安全密码,在所述加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。The password management module is configured to set a security password for the encryption application, and save a one-to-one mapping relationship between the encryption application and the corresponding security password in the encryption database, and set the application to be an encryption mode.
可选地,所述密码管理模块,还设置为删除所述加密数据库中保存的加密应用与所述加密应用对应的安全密码之间的一一映射关系。Optionally, the password management module is further configured to delete a one-to-one mapping relationship between the encrypted application stored in the encryption database and the security password corresponding to the encrypted application.
可选地,所述密码管理模块,还设置为修改所述加密数据库中加密应用对应的安全密码。Optionally, the password management module is further configured to modify a security password corresponding to the encrypted application in the encrypted database.
可选地,所述密码管理模块,还设置为设置所述加密应用的应用信息的范围,所述应用信息的范围包括以下任一项或任意多项:Optionally, the password management module is further configured to set a range of application information of the encrypted application, where the scope of the application information includes any one or more of the following:
启动应用、弹出的通知栏消息和弹出的消息对话框内容。Launch the app, the pop-up notification bar message, and the pop-up message dialog content.
本发明实施例还提供一种计算机程序及其载体,该计算机程序包括程序 指令,当该程序被用户设备执行时,使得该用户设备可以实施上述的加密方法。The embodiment of the invention further provides a computer program and a carrier thereof, the computer program comprising a program The instructions, when executed by the user equipment, cause the user equipment to implement the encryption method described above.
本发明实施例提供了一种加密方法和装置,对预置为加密应用的应用信息加密显示,再从预置的加密数据库中检索所述加密应用的安全密码,并检测用户输入的安全密码与所述加密数据库中存储的所述加密应用对应的安全密码是否一致,在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码一致时,正常显示所述应用信息。实现了对应用的提示信息等直接显示信息的加密保护,解决了移动终端操作***泄露用户信息的问题。The embodiment of the invention provides an encryption method and device, which encrypts and displays the application information preset to the encryption application, retrieves the security password of the encrypted application from the preset encryption database, and detects the security password entered by the user. Whether the security password corresponding to the encrypted application stored in the encryption database is consistent, and the application information is normally displayed when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database. The encryption protection of the direct display information such as the prompt information of the application is realized, and the problem that the mobile terminal operating system leaks the user information is solved.
附图概述BRIEF abstract
图1是本发明的实施例一提供的一种应用加密***的原理图;1 is a schematic diagram of an application encryption system according to Embodiment 1 of the present invention;
图2是本发明的实施例二提供的一种应用加密方法的流程图;2 is a flowchart of an application encryption method according to Embodiment 2 of the present invention;
图3是本发明的实施例三提供的一种应用加密方法的流程图;3 is a flowchart of an application encryption method according to Embodiment 3 of the present invention;
图4是本发明的实施例四提供的一种应用加密方法的流程图;4 is a flowchart of an application encryption method according to Embodiment 4 of the present invention;
图5是本发明的实施例五提供的一种应用加密方法的流程图;FIG. 5 is a flowchart of an application encryption method according to Embodiment 5 of the present invention; FIG.
图6是本发明的实施例六提供的一种应用加密装置的结构示意图。FIG. 6 is a schematic structural diagram of an application encryption apparatus according to Embodiment 6 of the present invention.
本发明的较佳实施方式Preferred embodiment of the invention
为了解决上述问题,本发明的实施例提供了一种应用加密方法和装置。下文中将结合附图对本发明的实施例进行详细说明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。In order to solve the above problems, embodiments of the present invention provide an application encryption method and apparatus. Embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
首先,对本发明的实施例一进行说明。First, the first embodiment of the present invention will be described.
本发明实施例一提供了一种应用加密***,如图1所示,适用于用户设备,如手机,所述用户设备包含微处理器和存储器。所述用户加密***包含一个加密单元,为***提供给用户的一个操作入口,设置为给用户设备中任意一个应用设置密码,并选择该密码的作用范围,并将应用与密码的映射存入数据库; Embodiment 1 of the present invention provides an application encryption system, as shown in FIG. 1 , applicable to a user equipment, such as a mobile phone, where the user equipment includes a microprocessor and a memory. The user encryption system includes an encryption unit, an operation portal provided to the user for the system, configured to set a password for any one of the user equipments, select a scope of the password, and store the mapping of the application and the password into the database. ;
还包含一个解密单元,这个单元又包含两个部分:第一部分是正常启动应用时,如果是已加密应用,且对启动应用加密,则需要用户先输入正确密码才可以进入;第二部分是应用弹出通知消息或者对话框时,如果是已加密应用,且对通知栏消息加密,则用加密提示代替原消息内容。It also includes a decryption unit, which in turn contains two parts: the first part is the normal startup application, if it is an encrypted application, and the application is encrypted, the user needs to input the correct password before entering; the second part is the application When a notification message or dialog box is popped up, if it is an encrypted application and the notification bar message is encrypted, the original message content is replaced with an encrypted prompt.
还包含一个存储单元:保存用户对目标应用设置的密码,以及加密作用范围,因为数据量较小,优选使用xml文本数据库。It also contains a storage unit: it saves the password set by the user for the target application, and the scope of encryption. Because the amount of data is small, it is preferable to use the xml text database.
使用上述应用加密***完成加密显示部分应用信息的流程如下:The process of encrypting and displaying part of the application information by using the above application encryption system is as follows:
用户进入加密功能的设置入口,选择应用,输入并确认一个密码,然后选择该项加密的作用范围(作用范围包括启动应用、弹出通知栏消息和弹出对话框),将上述信息存入数据库。此后,当用户打开加密应用时,先要求输入正确密码,之后才能正常运行。或者加密应用自己主动弹出通知或对话框的时候,会将原始信息隐藏,并给出提示信息,提示用户解密后进入应用才可以查看。The user enters the setting entry of the encryption function, selects the application, enters and confirms a password, and then selects the scope of the encryption (the scope of action includes launching the application, popping up the notification bar message and pop-up dialog box), and storing the above information in the database. Thereafter, when the user opens the encrypted application, it is required to input the correct password before it can run normally. Or when the encryption application actively pops up the notification or the dialog box, the original information is hidden, and the prompt information is given, prompting the user to decrypt and enter the application before viewing.
下面,对本发明的实施例二进行说明。Next, a second embodiment of the present invention will be described.
本发明实施例提供了一种应用加密方法,使用该方法对应用信息进行加密显示的流程如图2所示,包括:An embodiment of the present invention provides an application encryption method. The process of encrypting and displaying application information by using the method is as shown in FIG. 2, and includes:
步骤201:用户选择目标加密应用A,为其设置一个安全密码M。并将这个加密应用跟安全密码建立一对一的映射关系,存储于加密数据库中。Step 201: The user selects the target encryption application A and sets a security password M for it. The one-to-one mapping relationship between the encrypted application and the security password is stored in the encrypted database.
步骤202:用户选择安全密码M作用于应用A的范围E(即加密应用A的应用信息的范围)。该作用范围包括以下事件的任一项或任意多项:启动应用、弹出通知栏消息和弹出消息对话框。这三者既可以独立出现,也可以以任意组合形式同时出现。Step 202: The user selects the security password M to act on the range E of the application A (ie, the range of the application information of the encrypted application A). This scope includes any or any of the following events: launching the application, popping up the notification bar message, and pop-up message dialog. These three can appear independently or in any combination.
步骤203:根据步骤201中的应用A和密码M的映射关系以及步骤202中的作用范围E,创建数据节点,存入数据库。以下为数据节点的一种具体实现:Step 203: Create a data node according to the mapping relationship between the application A and the password M in step 201 and the scope E in step 202, and store the data node in the database. The following is a specific implementation of the data node:
Figure PCTCN2014091170-appb-000001
Figure PCTCN2014091170-appb-000001
Figure PCTCN2014091170-appb-000002
Figure PCTCN2014091170-appb-000002
本发明实施例中完成了对应用的加密,确保了在加密情况下,三种途径都无法直接查看到应用信息(当然也包括隐私信息),提高了安全性。In the embodiment of the present invention, the encryption of the application is completed, and it is ensured that in the case of encryption, the application information (including the privacy information) cannot be directly viewed in the three ways, and the security is improved.
下面结合附图,对本发明的实施例三进行说明。Embodiment 3 of the present invention will be described below with reference to the accompanying drawings.
本发明实施例提供了一种应用加密方法,使用该方法加密启动应用的流程如图3所示,包括:An embodiment of the present invention provides an application encryption method, and the process for encrypting and starting an application by using the method is as shown in FIG. 3, and includes:
步骤301:用户启动应用时,***首先会根据当前应用去加密数据库中进行匹配。Step 301: When the user starts the application, the system first performs encryption in the database according to the current application.
步骤302:具体包括:Step 302: Specifically:
步骤3021:根据步骤301的结果:如果该应用不存在于加密数据库中,则跳转到步骤3023;如果该应用在加密数据库中匹配到,则该应用为加密应用且加密作用范围包括“启动应用”,跳转到步骤3022。Step 3021: According to the result of step 301: if the application does not exist in the encrypted database, then go to step 3023; if the application matches in the encrypted database, the application is an encrypted application and the encryption scope includes "starting the application , go to step 3022.
步骤3022:根据步骤3021的结果,弹出密码输入框接收用户输入在实施例二的步骤201中设置的安全密码。如果输入正确,则跳转到步骤3023;否则跳转到步骤3024。Step 3022: According to the result of step 3021, the pop-up password input box receives the security password set by the user input in step 201 of the second embodiment. If the input is correct, then go to step 3023; otherwise, go to step 3024.
步骤3023:应用正常启动,流程结束。Step 3023: The application starts normally, and the process ends.
步骤3024:应用启动失败,流程结束。Step 3024: The application fails to start, and the process ends.
本发明实施例完成了对应用启动过程的保护,在用户没有输入正确密码的前提下,限制用户打开并查看加密应用内容。The embodiment of the invention completes the protection of the application startup process, and restricts the user from opening and viewing the encrypted application content without the user inputting the correct password.
下面对本发明的实施例四进行说明。 Next, a fourth embodiment of the present invention will be described.
本发明实施例提供了一种应用加密方法,使用该方法加密启动应用的流程如图4所示,包括:An embodiment of the present invention provides an application encryption method. The process of encrypting and starting an application by using the method is as shown in FIG. 4, and includes:
步骤401:当应用主动弹出通知栏消息或者消息对话框,***首先会根据当前应用去加密数据库中进行匹配。Step 401: When the application actively pops up the notification bar message or the message dialog box, the system first encrypts the database according to the current application for matching.
步骤402,具体包括: Step 402, specifically comprising:
步骤4021:根据步骤401的结果:如果该应用不存在于数据库中,则跳转到步骤4022;如果该应用在数据库中匹配到,且作用范围包括“弹出通知栏消息或者消息对话框”,则认为是应用已加密,跳转到步骤4023。Step 4021: According to the result of step 401: if the application does not exist in the database, then go to step 4022; if the application matches in the database, and the scope of action includes "pop-up notification bar message or message dialog box", then The application is considered encrypted and jumps to step 4023.
步骤4022:正常显示通知栏消息或者消息对话框内容,流程结束。Step 4022: The notification bar message or the message dialog box content is normally displayed, and the process ends.
步骤4023:根据步骤4021的输出结果,使用加密提示语替换原始消息信息,然后再弹出,告知用户需要解密进入应用后才可以查看消息内容,流程结束。Step 4023: According to the output result of step 4021, the original message information is replaced by using an encrypted prompt, and then popped up to inform the user that the user needs to decrypt the application to view the message content, and the process ends.
下面结合附图,对本发明的实施例五进行说明。Embodiment 5 of the present invention will be described below with reference to the accompanying drawings.
本发明实施例提供了一种应用加密方法,使用该方法对应用信息加密显示的流程如图5所示,包括:An embodiment of the present invention provides an application encryption method. The process of encrypting and displaying an application information by using the method is as shown in FIG. 5, and includes:
步骤501、对预置为加密应用的应用信息加密显示;Step 501: Encrypt display of application information preset to the encryption application;
本发明实施例中,可从手机装载的应用中选择一个或多个设为加密应用,为加密应用设置安全密码,在加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。In the embodiment of the present invention, one or more of the applications loaded by the mobile phone are selected as an encryption application, a security password is set for the encryption application, and a one-to-one mapping between the encryption application and the corresponding security password is saved in the encryption database. Relationship, set the application to encryption mode.
可选地,还可以对加密应用的安全密码进行编辑,如:删除所述加密数据库中保存的加密应用与其对应的安全密码之间的一一映射关系,将加密应用解除加密;或,修改所述加密数据库中加密应用对应的安全密码。Optionally, the security password of the encrypted application may be edited, for example, deleting a one-to-one mapping relationship between the encrypted application stored in the encrypted database and its corresponding security password, and de-encrypting the encrypted application; or modifying the The security password corresponding to the encrypted application in the encrypted database.
在确定加密应用后,还需要设置所述加密应用的应用信息的范围,即安全密码的应用范围,所述应用信息的范围包括以下任一项或任意多项:After determining the encryption application, the scope of the application information of the encryption application, that is, the application scope of the security password, is set, and the scope of the application information includes any one or more of the following:
启动应用、弹出的通知栏消息,弹出的消息对话框内容。Start the application, the pop-up notification bar message, and the content of the pop-up message dialog box.
可选地,上述范围还可以包括启动加密应用。 Optionally, the above range may further include starting an encryption application.
步骤502、检测用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码是否一致;Step 502: Detect whether the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
步骤503、在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码一致时,正常显示所述应用信息。Step 503: When the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database, the application information is normally displayed.
此外,在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码不一致时,提示用户重新输入。也可以出于安全性的考虑,限制错误输入的次数。In addition, when the security password input by the user is inconsistent with the security password corresponding to the application stored in the encryption database, the user is prompted to re-enter. It is also possible to limit the number of erroneous inputs for security reasons.
下面结合附图,对本发明的实施例六进行说明。Embodiment 6 of the present invention will be described below with reference to the accompanying drawings.
本发明实施例提供了一种应用加密装置,其结构如图6所示,包括:An embodiment of the present invention provides an application encryption device, and the structure thereof is as shown in FIG. 6, and includes:
加密显示模块601,设置为对预置为加密应用的应用信息加密显示;The encryption display module 601 is configured to encrypt and display the application information preset to the encrypted application;
密码比对模块602,设置为检测用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码是否一致;The password matching module 602 is configured to detect whether the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database;
解密显示模块603,设置为在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码一致时,解密显示所述应用信息。The decryption display module 603 is configured to decrypt and display the application information when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database.
可选地,该装置还包括:Optionally, the device further includes:
密码管理模块604,设置为对应用设置安全密码,在所述加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。The password management module 604 is configured to set a security password for the application, and save a one-to-one mapping relationship between the encryption application and the corresponding security password in the encryption database, and set the application to be an encryption mode.
可选地,所述密码管理模块604,还设置为删除所述加密数据库中保存的加密应用与其对应的安全密码之间的一一映射关系。Optionally, the password management module 604 is further configured to delete a one-to-one mapping relationship between the encrypted application stored in the encrypted database and its corresponding security password.
可选地,所述密码管理模块604,还设置为修改所述加密数据库中加密应用对应的安全密码。Optionally, the password management module 604 is further configured to modify a security password corresponding to the encrypted application in the encrypted database.
可选地,所述密码管理模块604,还设置为设置所述加密应用的应用信息的范围,所述应用信息的范围包括以下任一项或任意多项:Optionally, the password management module 604 is further configured to set a range of application information of the encrypted application, where the range of the application information includes any one or more of the following:
启动应用、弹出的通知栏消息,弹出的消息对话框内容。 Start the application, the pop-up notification bar message, and the content of the pop-up message dialog box.
本发明的实施例提供了一种应用加密方法和装置,对预置为加密应用的应用信息加密显示,再从预置的加密数据库中检索所述加密应用的安全密码,并检测用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码是否一致,在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码一致时,正常显示所述应用信息。实现了对应用的提示信息等直接显示信息的加密保护,解决了移动终端操作***泄露用户信息的问题。An embodiment of the present invention provides an application encryption method and device, which encrypts and displays application information preset to an encryption application, retrieves a security password of the encrypted application from a preset encryption database, and detects security of user input. Whether the password is consistent with the security password corresponding to the application stored in the encryption database, and the application information is normally displayed when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database. The encryption protection of the direct display information such as the prompt information of the application is realized, and the problem that the mobile terminal operating system leaks the user information is solved.
除对应用启动做限制之外,对弹框消息、通知栏信息等可能泄露用户隐私信息的途径也进行了加密保护。以安卓(android)平台为例,本发明的实施例从框架层入手,在不影响android标准接口的前提下,对应用做了更全面的保护,大大降低了用户信息泄露的可能性(尤其是对短信验证码或聊天软件信息等会自动弹出的重要信息),提升了用户体验。In addition to restrictions on application launching, encryption path protection is also provided for bulletin messages, notification bar information, and other ways that may reveal user privacy information. Taking the Android platform as an example, the embodiment of the present invention starts from the framework layer and performs more comprehensive protection on the application without affecting the android standard interface, thereby greatly reducing the possibility of user information leakage (especially The important information that will automatically pop up for SMS verification code or chat software information) enhances the user experience.
本领域普通技术人员可以理解上述实施例的全部或部分步骤可以使用计算机程序流程来实现,所述计算机程序可以存储于一计算机可读存储介质中,所述计算机程序在相应的硬件平台上(如***、设备、装置、器件等)执行,在执行时,包括方法实施例的步骤之一或其组合。One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.
可选地,上述实施例的全部或部分步骤也可以使用集成电路来实现,这些步骤可以被分别制作成一个个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve. Thus, the invention is not limited to any specific combination of hardware and software.
上述实施例中的各装置/功能模块/功能单元可以采用通用的计算装置来实现,它们可以集中在单个的计算装置上,也可以分布在多个计算装置所组成的网络上。The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
上述实施例中的各装置/功能模块/功能单元以软件功能模块的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。上述提到的计算机可读取存储介质可以是只读存储器,磁盘或光盘等。When each device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
任何熟悉本技术领域的技术人员在本发明揭露的技术范围内,可轻易想到变化或替换,都应涵盖在本发明的保护范围之内。因此,本发明的保护范 围应以权利要求所述的保护范围为准。Variations or substitutions are readily conceivable within the scope of the present invention by those skilled in the art and are within the scope of the present invention. Therefore, the protection model of the present invention The scope of protection stated in the claims shall prevail.
工业实用性Industrial applicability
本发明实施例提供的加密方法和装置,对预置为加密应用的应用信息加密显示,再从预置的加密数据库中检索所述加密应用的安全密码,并检测用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码是否一致,在用户输入的安全密码与所述加密数据库中存储的所述应用对应的安全密码一致时,正常显示所述应用信息,实现了对应用的提示信息等直接显示信息的加密保护,解决移动终端操作***泄露用户信息的问题。 The encryption method and device provided by the embodiment of the present invention encrypt and display the application information preset to the encryption application, retrieve the security password of the encrypted application from the preset encryption database, and detect the security password input by the user and the Whether the security password corresponding to the application stored in the encryption database is consistent, and when the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database, the application information is normally displayed, and the application is implemented. The prompt information and the like directly display the encryption protection of the information, and solve the problem that the mobile terminal operating system leaks the user information.

Claims (12)

  1. 一种加密方法,包括:An encryption method, including:
    对预置为加密应用的应用信息加密显示;Encrypted display of application information preset to the encryption application;
    检测用户输入的安全密码与加密数据库中存储的所述加密应用对应的安全密码是否一致;Detecting whether the security password input by the user is consistent with the security password corresponding to the encrypted application stored in the encryption database;
    当用户输入的安全密码与所述加密数据库中存储的所述加密应用对应的安全密码一致时,正常显示所述应用信息。When the security password input by the user is consistent with the security password corresponding to the encryption application stored in the encryption database, the application information is normally displayed.
  2. 根据权利要求1所述的方法,还包括:The method of claim 1 further comprising:
    为加密应用设置安全密码,在所述加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。A security password is set for the encryption application, and a one-to-one mapping relationship between the encryption application and the corresponding security password is saved in the encryption database, and the application is set to the encryption mode.
  3. 根据权利要求2所述的方法,还包括:The method of claim 2 further comprising:
    删除所述加密数据库中保存的加密应用与所述加密应用对应的安全密码之间的一一映射关系。Deleting a one-to-one mapping relationship between the encrypted application stored in the encrypted database and the secure password corresponding to the encrypted application.
  4. 根据权利要求2所述的方法,还包括:The method of claim 2 further comprising:
    修改所述加密数据库中加密应用对应的安全密码。Modify the security password corresponding to the encrypted application in the encrypted database.
  5. 根据权利要求2所述的方法,还包括:The method of claim 2 further comprising:
    设置加密应用的应用信息的范围,所述应用信息的范围包括以下任一项或任意多项:Setting a range of application information of the encrypted application, the range of the application information includes any one or more of the following:
    启动应用、弹出的通知栏消息和弹出的消息对话框内容。Launch the app, the pop-up notification bar message, and the pop-up message dialog content.
  6. 一种加密装置,包括:An encryption device comprising:
    加密显示模块,设置为对预置为加密应用的应用信息加密显示;The encrypted display module is configured to encrypt and display the application information preset to the encrypted application;
    密码比对模块,设置为检测用户输入的安全密码与加密数据库中存储的所述应用对应的安全密码是否一致;The password comparison module is configured to detect whether the security password input by the user is consistent with the security password corresponding to the application stored in the encryption database;
    解密显示模块,设置为当用户输入的安全密码与所述加密数据库中存储 的所述加密应用对应的安全密码一致时,解密显示所述应用信息。Decrypting the display module, set to be stored in the encrypted database when the user enters a secure password When the security password corresponding to the encryption application is consistent, the application information is decrypted and displayed.
  7. 根据权利要求6所述的装置,还包括:The apparatus of claim 6 further comprising:
    密码管理模块,设置为对加密应用设置安全密码,在所述加密数据库中保存所述加密应用与对应的安全密码之间的一一映射关系,设置该应用为加密模式。The password management module is configured to set a security password for the encryption application, and save a one-to-one mapping relationship between the encryption application and the corresponding security password in the encryption database, and set the application to be an encryption mode.
  8. 根据权利要求7所述的装置,其中,The apparatus according to claim 7, wherein
    所述密码管理模块,还设置为删除所述加密数据库中保存的加密应用与所述加密应用对应的安全密码之间的一一映射关系。The password management module is further configured to delete a one-to-one mapping relationship between the encrypted application stored in the encrypted database and the security password corresponding to the encrypted application.
  9. 根据权利要求7所述的装置,其中,The apparatus according to claim 7, wherein
    所述密码管理模块,还设置为修改所述加密数据库中与加密应用对应的安全密码。The password management module is further configured to modify a security password corresponding to the encrypted application in the encrypted database.
  10. 根据权利要求7所述的装置,其中,The apparatus according to claim 7, wherein
    所述密码管理模块,还设置为设置加密应用的应用信息的范围,所述应用信息的范围包括以下任一项或任意多项:The password management module is further configured to set a range of application information of the encrypted application, where the scope of the application information includes any one or more of the following:
    启动应用、弹出的通知栏消息和弹出的消息对话框内容。Launch the app, the pop-up notification bar message, and the pop-up message dialog content.
  11. 一种计算机程序,包括程序指令,当该程序指令被用户设备执行时,使得该用户设备可执行权利要求1-5任一项的方法。A computer program comprising program instructions that, when executed by a user device, cause the user device to perform the method of any of claims 1-5.
  12. 一种载有权利要求11所述计算机程序的载体。 A carrier carrying the computer program of claim 11.
PCT/CN2014/091170 2014-09-04 2014-11-14 Encryption method and device WO2015154464A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410449175.0 2014-09-04
CN201410449175.0A CN105426712A (en) 2014-09-04 2014-09-04 Application encryption method and apparatus

Publications (1)

Publication Number Publication Date
WO2015154464A1 true WO2015154464A1 (en) 2015-10-15

Family

ID=54287221

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/091170 WO2015154464A1 (en) 2014-09-04 2014-11-14 Encryption method and device

Country Status (2)

Country Link
CN (1) CN105426712A (en)
WO (1) WO2015154464A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109728996A (en) * 2018-06-01 2019-05-07 平安科技(深圳)有限公司 Methods of exhibiting, user equipment, storage medium and the device of communication information

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105933503B (en) * 2016-03-29 2020-02-21 联想(北京)有限公司 Information processing method and electronic equipment
CN107426163A (en) * 2017-05-10 2017-12-01 深圳天珑无线科技有限公司 A kind of method and device of encryption
CN107491683B (en) 2017-09-07 2020-07-07 Oppo广东移动通信有限公司 Application decryption method and device, terminal and computer readable storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477890A (en) * 2003-06-18 2004-02-25 �ż��� Personal information protection method for handset
CN102938032A (en) * 2012-10-17 2013-02-20 中兴通讯股份有限公司 Method and system for encrypting and decrypting application program on communication terminal as well as terminal
CN103491391A (en) * 2013-09-17 2014-01-01 深圳创维数字技术股份有限公司 Method and device for managing and controlling video playing and terminal equipment
CN103617382A (en) * 2013-11-22 2014-03-05 北京奇虎科技有限公司 Privacy protection method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1477890A (en) * 2003-06-18 2004-02-25 �ż��� Personal information protection method for handset
CN102938032A (en) * 2012-10-17 2013-02-20 中兴通讯股份有限公司 Method and system for encrypting and decrypting application program on communication terminal as well as terminal
CN103491391A (en) * 2013-09-17 2014-01-01 深圳创维数字技术股份有限公司 Method and device for managing and controlling video playing and terminal equipment
CN103617382A (en) * 2013-11-22 2014-03-05 北京奇虎科技有限公司 Privacy protection method and device

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109728996A (en) * 2018-06-01 2019-05-07 平安科技(深圳)有限公司 Methods of exhibiting, user equipment, storage medium and the device of communication information

Also Published As

Publication number Publication date
CN105426712A (en) 2016-03-23

Similar Documents

Publication Publication Date Title
US10587591B2 (en) Generating a password
WO2019218919A1 (en) Private key management method and apparatus in blockchain scenario, and system
EP3700161B1 (en) Secure messaging
US9917817B1 (en) Selective encryption of outgoing data
EP2657871A2 (en) Secure configuration of mobile application
US20140208405A1 (en) Simplified and Safe User Authentication
CN105981398B (en) Content security method and electronic device for providing content security function
US20160112376A1 (en) Secure mobile data sharing
US20140359305A1 (en) Application integrity protection via secure interaction and processing
CN108880791A (en) Cryptographic key protection method, terminal and computer readable storage medium
US9576124B2 (en) Multi-level password authorization
US11500984B2 (en) Systems and methods for providing configurable responses to threat identification
WO2015154464A1 (en) Encryption method and device
CN105975867A (en) Data processing method
US20240031342A1 (en) System, method, and computer-accessible medium for hiding messages sent to third parties
US20130283387A1 (en) Method for data security and electronic device having data security function
US10218505B1 (en) Server based settings for client software with asymmetric signing
CN113127844A (en) Variable access method, device, system, equipment and medium
WO2023046104A1 (en) Object moving method and device
WO2018059303A1 (en) Method and device for encrypting and decrypting information in short message
US10205599B2 (en) Methods and systems of increasing security quality of computing-device communications
US9537842B2 (en) Secondary communications channel facilitating document security
JP2015065615A (en) Data encryption device, data encryption program, and data encryption method
CN103902921A (en) File encryption method and system
US20200244627A1 (en) User device and method of providing notification in messaging application on user device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14888567

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14888567

Country of ref document: EP

Kind code of ref document: A1