Method for encrypting webmail information

Abstract

The invention discloses a method for encrypting webmail information. An adopted encryption and decryption protecting module based on passwords is embedded in a webmail system, and is seamlessly integrated with the webmail system, so that the method does not depend on a complicated password system and a third-party certification authority, is not subject to a password algorithm patent, and has no need of complicated encryption exchange and complicated encryption management. The method has the advantages of simplification of operation and convenience for use.

Description

technical field [0001] The invention relates to a method for encrypting webpage mail information. Background technique [0002] Email (Email) is currently the most widely used application on the Internet. People not only use it for communication, but also often store some important personal information or materials in their personal mailboxes. At present, the webpage-based email (Webmail, referred to as webmail) implements its access control service through account / password authentication on the client side. Once the user account / password information is leaked, all email information in the user mailbox will be completely exposed to illegal users, including some important personal information. [0003] Such as figure 1 , the existing mail encryption system mainly considers the information confidentiality in the mail transmission process, that is, the sender encrypts the mail information when sending the mail in the mail communication, and the receiver decrypts the mail afte...

AI Technical Summary

Problems solved by technology

Therefore, key exchange and management are required, which has the disadvantage of inconvenient operation and use

Third, its key exchange adopts a PKI / CA-based authentication system, which must rely on a third-party organization, so it has the disadvantage of low versatility

Fourth, since the email encryption operation of the existing email encryption system is performed at the sending end, the email received by the receiving end cannot be encrypted and protected by the existing email encryption system

Fifth, the encryption system is mainly supported in the mail client (Outlook S / MIME, PGP for Outlook, Gnupg with ThunderBird), the existing web mail system itself does not have encryption support in this regard, that is, no web mail system itself provides The encryption service in this aspect is just that some third-party developers provide some encryption plug-ins (such as Gmail S / MIME; FireGPG) for specific webmail systems or browsers, which have the disadvantage of low system security, because this will affect webmail The security of the system itself

Sixth, in the existing web mail, it is also impossible to encrypt and protect the mail information displayed on the user's own web page

However, the above methods have different disadvantages: method (1) requires the public key of S / MIME to be stored in the digital certificate, and a third-party recognized organization CA center is responsible for generating and issuing it, and the authentication mechanism depends on the hierarchical certificate certification authority. The certificates of all lower-level organizations and individuals are certified by the upper-level organization, and the highest-level organizations (root certificates) are mutually authenticated. The entire trust relationship is basically a tree, which is the so-called Tree of Trust. , as a key certification authority, the CA center not only requires users to submit personal identification certificates such as ID cards and phone numbers, but also charges digital certificate usage fees according to a time limit, which is undoubtedly a huge obstacle for ordinary users. Every time you use a certificate, you must go to the CA center for verification, which also adversely affects the user experience. In addition, the management of a large number of certificates (public keys) has also become a headache for the CA center. At the same time, the mail system based on S / MIME only It can protect the sent e-mail information, but cannot encrypt and protect the received e-mail; the method (2) is different from the public key management mechanism of S / MIME, and PGP has developed a model of mutual trust between people The means of transferring public keys, this kind of private key referral, can better reflect people's natural social interactions, and people can freely choose trusted people to introduce, but because the object of trust is an individual person, It is not a public authority, so the security of its public key is lower than that of S / MIME. In addition, PGP also has complex operational problems such as key exchange and management. At the same time, like S / MIME, PGP only supports mail protection at the sending end of the mail system. , does not support the mail at the receiving end; method (3) using a third-party plug-in on the web mail has security problems in the web mail system itself

Images