Safe communication method and device

Abstract

The invention discloses a safe communication method and device, which relate to the field of information safety. In the embodiment of the invention, a public key of CA is verified to be integral or not and the digital signature of CA is verified to be effective or not. If the public key of CA is integral and the digital signature of CA is effective, the CA and TA would generate a symmetric secretkey through three times of hand shaking, and encrypted communication can be conducted based on the symmetric secret key. The invention is advantageous in that through verifying the public key and thedigital signature of CA, the tampered or counterfeited CA can be effectively identified; the CA and TA generate the symmetric secret key through three times of hand shaking, and encrypted communication can be conducted based on the symmetric secret key, and thereby the confidentiality and integrity of communication content can be ensured, and attackers can be effectively prevented from stealing sensitive data or destroying a communication system.

Description

technical field [0001] The invention relates to the field of information security, in particular to a method and equipment for secure communication. Background technique [0002] In the terminal device system that introduces TEE (Trusted Execution Environment, Trusted Execution Environment), it includes two subsystems, TEE and REE (Rich Execution Environment, Rich Execution Environment). TEE is responsible for processing transactions that require higher security protection, such as secret keys Storage, encryption and decryption, fingerprint identification, etc., REE is a common operating system, such as Android system, iOS Apple system, etc. CA (Client Application, customer application) and TA (Trusted Application, trusted application) running on the REE operating system applications) communicate through shared memory, such as figure 1 As shown, the rich execution environment 11 includes a client application 111 and a rich execution environment operating system 112, the tru...

AI Technical Summary

Problems solved by technology

[0003] However, in the process of realizing the present invention, the inventor of the present application found that for the CA, the existing solutions either have no protection or insufficient protection. For example, when the CA adopts the form of Android APK (Android Package, Android installation package) , CA APK can be signed, but Android uses a self-signed method. The signed certificate used in this self-signed method is not issued by an authoritative certification authority, but generated by the developer himself. Since the self-signed certificate cannot be used for authentication The organization's root certificate is verified, so an additional mechanism must be added to protect the integrity of the public key in the self-signed certificate, but Android does not have a relevant mechanism, so the integrity of the CA cannot be guaranteed in essence, that is to say, the CA may Has been tampered with or counterfeited, but the system does not detect

Attackers can pose a threat to the TEE system by tampering or counterfeiting the CA, such as stealing sensitive data, disrupting the normal operation of the TEE system, etc.

In addition, the existing solution does not protect the confidentiality and integrity of the shared memory communication between CA and TA, and GlobalPlatform (Global Platform International Standards Organization), the maker of the TEE specification, has not released relevant specifications, so that attackers can Malware steals or tampers with communication content, thereby stealing sensitive data or disrupting the normal operation of the TEE system

Images