116results about How to "Enable secure communication" patented technology

The invention provides a mobile terminal and a control method of the mobile terminal provided with multiple operating systems. The multiple operating systems are mounted on the mobile terminal. The mobile terminal comprises an obtaining unit and a control unit, wherein the obtaining unit is suitable for obtaining selection signals corresponding to an operating system, and the control unit is suitable for suspending the running operating systems and running the operating system corresponding to the selection signals when the operating system corresponding to the selection signals is different from the running operating systems. The control method can obtain different selection signals corresponding to the different operating systems, achieves switching among the multiple operating systems based on the selection signals, achieves the purpose that the different operating systems are invoked according to demands, enables each operating system to play characteristics of each operating system, and reasonably uses system resources.

The invention relates to a device for establishing a network isolated channel and a method thereof. A safe communication channel is established between two or multiple network devices through a network channel isolating device. The network channel isolating device is provided with an internal network interface and an external network interface. The internal network interface is connected with an internal network device. The external network interface is connected with an external network device. The network device which is connected with the internal network interface is protected by the network channel isolating device. A set of network devices protected by the network channel isolating device is called as a network channel isolating device protection domain. Host computers in different domains can communicate safely. By establishing a virtual network isolated channel through a public network among different geographic locations and by adopting an encryption algorithm recommended by the State Secrecy Bureau to conduct high-strength encryption to communication data, any third party cannot effectively decrypt the encrypted data and the communication data cannot be falsified; and the problem that different departments of small and medium enterprises cannot communicate safely through the public network is solved.

The invention discloses a multi-user collaboration jamming power distribution method under the restraint of confidentiality interrupt probability in a wireless wiretap channel. The Alice-1 user emits useful signals to an expected receiving end Bob, and remaining K-1 users emit collaboration jamming signals, and the wiretap end Eve of a single antenna wiretaps information sent by the Alice-1 user. By means of the method, the secure communication rate is improved by optimizing the emitting powers of all the jamming users, and the physical layer safe communication in the wireless wiretap channel is achieved.

The invention relates to one anti-long time prediction rules impulse excitation compression codes global cell phone language coding method, which comprises the following steps: connecting cell phone language coding and decoding modules for coding computation to realize decoding function between A/D module and decoding module, wherein, the said decoding and coding module is one digital signal minimum system hardware module and the DSP process module is to process language signals coding computation; the power module is connected to power interface of DSP process module.

The invention discloses a physical layer safe communication method designed by combining signal feedback and artificial noise in a wireless communication network. The method comprises a first stage that a sending end sends information needing to be kept secret to a legal receiving end; a second stage that after the legal receiving end receives the information, a certain amount of artificial noise is mixed in the received information, and the mixed signal is fed back to the sending end; and a third stage that the sending end sends feedback signal to the receiving end. The legal receiving end knows the artificial noise mixed in the second stage, so that the legal receiving end can eliminate the artificial noise; an eavesdropping end cannot eliminate the noise, so that the performance is weakened by the artificial noise; and the safe communication between the sending end and the receiving end is realized. According to the scheme, the safe communication between the legal devices can be realized under the condition that the legal communication devices have no antenna, no external helper and no any channel information of the eavesdropping end. The method has superiority in the communication safety aspect.

The invention discloses an encrypting and authenticating equipment with dual safety chips, belonging to the technical field of identity authentication. The equipment comprises a shell, a USB plug outside the shell, a first safety chip, a second safety chip and a radio-frequency antenna, wherein the first safety chip, the second safety chip and the radio-frequency antenna are encapsulated in the shell; the first safety chip is connected with the USB plug, is connected with the second safety chip in the shell, and is also connected with an external system host computer by the USB plug; the second safety chip is connected with the radio-frequency antenna and is connected with a radio-frequency receiving terminal by the radio-frequency antenna; and the first safety chip and the second safety chip carry out communication with each other by an I/O interface. In the invention, two safety chips are used, the two safety chips are internally embedded in an intelligent card embedding software system respectively, thus realizing one corresponding application respectively; and the mutual independence of the two safety chips is effectively ensured, the safe and convenient multi-application formsare realized, furthermore, the two safety chips can realize the safe communication by the I/O interface.

The invention discloses a secure communication method and a secure communication system of a self-service device, and the self-service device, wherein the method comprises the following steps: a step1, a security module and a trusted end perform interactive identity authentication through issuing certificates and verifying signatures, and after passing identify authentication, the security moduleobtains an encryption secret key and a MAC secret key from the trusted end; a step 2, when the security module receives a service instruction, the security module identifies whether the service instruction is a preset critical service instruction, if so, the security module extracts sensitive data in the service instruction, and performs encryption treatment and security verification through theencryption secret key and the MAC secret key; a step 3, if the security verification in the step 2 is passed, the security module sends the service instruction to a matched critical service module. According to the invention, by the method, security services are provided for the critical service module on the self-service device, and security level of the self-service device is improved.

The invention discloses a safe communication method, a gateway, a network side server and a system. The safe communication method comprises the steps that a first hypertext transport protocol HTTP request message sent by a terminal is obtained by the gateway, the first HTTP request message comprises that the terminal demands to visit a URL of a first network side server through the gateway; the gateway confirms conducting encryption on the first request message utilizing the HTTP protocol according to the first HTTP request message; the gateway send a second HTTP request message to a second network side server to enable the second network side server to sends the second HTTP request message to the first network side server after encryption, and the second request message comprises that the terminal visits the UCL of the first network side server. Encryption communication between the second network side server and the first network side server is achieved, and thereby the safety communication between the terminal and a server is achieved.

The invention provides an intelligent home central control method based on user manipulation grade. The method comprises the steps that S0, a control privilege list of each formal family member and temporary visitor over each intelligent home device is configured, and the control privilege list is stored in a central controller of the intelligent home; privilege deadline information of a user terminal corresponding to the each formal family member and temporary visitor is configured in the central controller; S1, the central controller receives connection requirement information sent by the user terminal, and determines the type of the connection requirement information; S2, a connection record of the user terminal in the central controller is judged; S3, a mobile phone number of the user terminal is obtained, and whether the user terminal number exists in the list of formal family members or temporary visitors in the central controller or not is judged; S4, the central controller generates a random number, sends the random number after encryption to the user terminal, and the random number after being decoded by the user terminal is sent to the central controller after the random number is encrypted by an elliptic curve cryptography algorithm.

In a network system (100) for wireless communication an enrollee (110) accesses the network via a configurator (130). The enrollee acquires a data pattern (140) that represents a network public key via an out-of-band channel by a sensor (113). The enrollee derives a first shared key based on the network public key and the first enrollee private key, and encodes a second enrollee public key using the first shared key, and generates a network access request. The configurator also derives the first shared key, and verifies whether the encoded second enrollee public key was encoded by the first shared key, and, if so, generates security data and cryptographically protects data using a second shared key, and generates a network access message. The enrollee processor also derives the second shared key and verifies whether the data was cryptographically protected and, if so, engages the secure communication based on the second enrollee private key and the security data.

The invention discloses a transmitting method and a transmitting system suitable for key information such as the public key of a wireless delay tolerant network in which people are involved, and the like, and can ensure safety when a node uses the public key of an opposite side. The public key or other key information of the node is transmitted through a wireless broadband communication channel, corresponding authentication information is transmitted through an artificial narrowband communication channel, and the information transmitted in two ways is compared at a receiving end, so that the reliability of key information transmission can be ensured. The key information transmitting technology realized by the invention is also suitable for the updating of the public keys and the application of abolished information or public key multi-node forwarding.

The invention provides an OAM entanglement modulation key distribution network system with real-time tracking compensation. The OAM entanglement modulation key distribution network system comprises anOAM-OAM entanglement generation unit, a first multiplexing module, a second multiplexing module, an OAM modulation unit, a Bob client and a coincidence measurement unit, wherein the OAM-OAM entanglement generation unit is used for generating an orbital angular momentum and an orbital angular momentum mixed entanglement quantum state; the first multiplexing module and the second multiplexing module are used for separating any OAM state; the OAM modulation unit is used for carrying out phase deflection modulation on the orbital angular momentum and loading coding information; and the coincidence measurement unit is used for performing coincidence measurement on signal light and idle light to decode the quantum bit information. According to the invention, the security of the quantum key distribution system is improved; an adaptive optical system is introduced, phase distortion caused by atmospheric turbulence is reduced, and the mode consistency during OAM light interference is guaranteed; an M-Z interferometer is used for separating any OAM, the quantum coding capacity is expanded, and an efficiently coded quantum key distribution system is obtained; and the engineering applicationrange is wide, the structure is simple, and the expandability is high.

A quantum repeater network coding scheme based on a controller comprises three main steps as follows: step 1, a quantum repeater network model provided with the controller is established, and EPR (einstein-podolsky-rosen) pair allocation among repeater nodes is realized with an EPR pair distribution method; step 2, an LOCC (local operation and classical communication) is taken as a basis, a one-time pad communication method with an authentication function is introduced, QCon, QRem, QAdd, QRemAdd basic operations are provided to ensure that communication between any legal node and the controller in the coding process can resist active attack, and safety communication among nodes of a quantum repeater network is realized; step 3, in the quantum repeater network provided with the controller, EPR distributed to any adjacent repeater nodes is coded, and R1-Rn quantum entanglement channels are generated with a quantum channel generation method. The quantum repeater network coding scheme has practical value in the technical field of the communication network.

The invention discloses a safety communication method for a vehicle-mounted TBOX and a cloud server. The method comprises the following steps: a vehicle-mounted TBOX performs communication authentication with a cloud server, and acquires an RSA public key 2 from a CA certificate sent back by the cloud server; the vehicle-mounted TBOX negotiates with the cloud server to generate an AES key; the vehicle-mounted TBOX encrypts the plaintext message by using the AES key, and sends the encrypted message to the cloud server; meanwhile, the AES secret key is encrypted through an RSA public key 2, andthe encrypted AES secret key is sent to the cloud server; and the cloud server decrypts the received encrypted AES key by using the RSA private key 2 to obtain an AES key, and decrypts the received encrypted message by using the AES key to obtain a plaintext message. According to the invention, the AES secret key is generated through communication authentication and negotiation, the plaintext message is encrypted by using the AES secret key, and the encrypted AES secret key is sent, so that the safety of data transmission is greatly improved.

The invention provides an unmanned aerial vehicle base station flight planning method and system, a storage medium and an unmanned aerial vehicle base station. The method comprises the following steps: obtaining the instantaneous secrecy rate of the unmanned aerial vehicle base station and the distance from the unmanned aerial vehicle base station to the end point position in real time through anunmanned aerial vehicle base station operation model adopting a sight distance and non-sight distance mixed channel; performing reinforcement learning by taking the instantaneous secrecy rate as an income, and obtaining an optimized flight path of the unmanned aerial vehicle base station flying from an initial position to a maximum position of the instantaneous secrecy rate; and carrying out reinforcement learning by taking the instantaneous secrecy rate in combination with the distance from the unmanned aerial vehicle base station to the final position as an income, and obtaining an optimizedflight path of the unmanned aerial vehicle base station flying from the position with the maximum instantaneous secrecy rate to the final position.

The invention provides a communication implementation of a next generation wireless network. The method is characterized in that the wireless network is connected to the internet as an end network by an access router, wherein each mobile node with IPv6 address in the wireless network has the routing forwarding function; the mobile nodes move from one wireless network to another wireless network; the wireless network of home address is obtained by each mobile node as the home network of the mobile node, wherein the access router connected by the home network is treated as the home access router of the mobile node; the wireless network is called the external network of the mobile node when the mobile node is moved from the home network to another wireless network, and the access router connected by the external network is called the external access router of the mobile node. According to the safety communication implementation of the next generation wireless network, the privacy of a user can be protected while the safety communication is implemented when moving the nodes in either home network or external network.

The invention provides a rapid authentication method and system for a trusted execution environment, which are reasonable in design, fast in enclave authentication speed, small in calculation overhead and capable of rapidly establishing a trusted communication channel. The method comprises the following steps: when a trusted execution environment is initialized, an agent enclave receives an authentication request of a service provider, and pre-generates and obtains an own authentication report; the subordinate enclaves managed by the agent enclave sequentially initiate authentication requests, verification authentication is carried out according to a preset authentication program, if all the subordinate enclaves pass authentication, a safe communication channel between the agent enclave and the subordinate enclaves managed by the agent enclave is established, and otherwise, initialization is stopped; after initialization is completed, a user service request is received, and a pre-generated proxy enclave authentication report corresponding to the service request is sent to the user; and after interactive authentication with the user, the communication content is encrypted, a trusted communication channel between the user and the agent enclave and the slave enclave managed by the agent enclave is established, and rapid authentication of the trusted execution environment is completed.

The invention relates to a second generation USB (Universal Serial Bus) key system for implementing the safety pavement of mobile terminals, which comprises a USB interface module, a master-slave control module, a safety control module, a battery management module, a display module and a key module. The USB interface module adopts a standard mini UBS3.0 interface; an interface A is a USB2.0 interface for being connected with iOS (Internetwork Operating System)-series and Android-series mobile equipment; an interface B is a USB3.0 interface for being connected with a PC (Personal Computer); the master-slave control module adopts a CH374 chip; the safety control module uses a 3272L chip as a master control chip; the display module uses an A514 chip as a display chip; according to an MFi (Made for iPod/iPhone/iPad) authentication module, an IPOD_AC_2.0C Apple authentication coprocessor is connected with the 3272L chip by an I2C (Inter-Integrated Circuit) interface so as to implement the authentication on the iOS-series equipment; and by the interfaces, the master-slave control module, an online second generation key is connected into the PC, the Android equipment, the iOS-series equipment and OTG (On-The-Go) equipment to implement safety communication among various mobile terminal equipment. The problem of the limitation that the existing second generation key can only be connected into the PC to carry out network payment is solved.

The invention provides an encrypted communication method and device based on the SM9 algorithm. The method includes: the first user equipment uses the identification information of the second user equipment as the SM9 public key, and uses the SM9 algorithm to encrypt the first encryption key to obtain an encrypted first encryption key; the first encryption key is an encryption key of a preset first encryption algorithm; the first user equipment uses the first encryption algorithm to encrypt information to be sent according to the encrypted first encryption key to obtain encrypted information; the The first user equipment sends the encrypted information and the encrypted first encryption key to the second user equipment. The embodiment of the present invention realizes the safe communication between multiple user equipments and the function of safe group sending of messages.

The invention discloses a method for security encryption and signing based on an identity file. The method includes: obtaining configuration information of basic setting of a client and configuration information of advanced encryption standard setting of the client; registering and applying the identity file applicable to a mailbox at a server end; downloading data information of the identity file through the client; obtaining type information of a task to be executed selected by the client; and performing encryption and decryption to files through the client according to the identity file. By the method, important data of a user can be protected from being viewed or modified, safe communication on an originally unsafe channel can be achieved, and denial behaviors after using the user's identity to receive and transmit information can be avoided.