Data encryption method, system and terminal

A data encryption and encryption key technology, applied in the field of information security, can solve the problems of being attacked, leaked, unable to modify the password, etc., to achieve the effect of enhancing security and ensuring security
CN110401538AActive Publication Date: 2019-11-01WATCHDATA SYST +1
5 Cites 9 Cited by

Patent Information

Authority / Receiving Office
CN ยท China
Patent Type
Applications(China)
Current Assignee / Owner
WATCHDATA SYST
Publication Date
2019-11-01

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The embodiment of the invention discloses a data encryption method, system and a terminal. The method comprises the following steps: a trusted component receiving a verification password input in a trusted environment; and if the verification password is successfully verified, performing corresponding operation on the encryption key and the association relationship between the encryption key and the user password based on a preset key management rule and operation information input in the trusted environment, encrypting the data based on the encryption key, and storing the encrypted data. According to the method, the system and the terminal, the user password can be input and verified in the trusted environment, and the password is prevented from being monitored, intercepted and leaked. Data is encrypted and stored in a trusted environment, so that the security is remarkably enhanced. A plurality of different encryption keys can be managed and protected by one password. The encryptionkey is not changed when the password is modified, the target data does not need to be encrypted again, and the security of the data can be ensured.
Need to check novelty before this filing date? Find Prior Art

Description

Technical field

[0001] The present invention relates to the technical field of information security, in particular to a data encryption method, system and terminal. Background technique

[0002] Currently, most of the terminals integrate a Trusted Execution Environment (TEE) and a Rich Execution Environment (REE). REE is composed of a client application (CA, ClientApplication) and an application operating system. TEE consists of a trusted application (TA, Trusted Application) and a trusted operating system (Trusted OS, Trusted Operating System). REE supports a wealth of applications, but REE has certain security risks. Existing data encryption and storage methods usually have the following shortcomings: input and verification of user passwords in an untrusted environment, there is a risk of leakage; data encryption and storage in an untrusted environment, there is a risk of attack; for encrypted Data, the password cannot be changed, or all data needs to be re-encrypted with a ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More