Information data transmission method and device

By verifying and encrypting the serial number of the terminal device, an offline data packet is generated, which solves the problems of reliability and controllability of intelligence data transmission, ensures that only designated devices can obtain intelligence data, and improves the security of data transmission.

CN115941342BActive Publication Date: 2026-06-19BEIJING TOPSEC NETWORK SECURITY TECH +2

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
BEIJING TOPSEC NETWORK SECURITY TECH
Filing Date
2022-12-16
Publication Date
2026-06-19

AI Technical Summary

Technical Problem

How to improve the reliability and controllability of intelligence data transmission, especially to avoid data leakage and unauthorized access when transmitting sensitive data.

Method used

By verifying the serial number of the terminal device and encrypting the intelligence data when the verification is valid, an offline data packet is generated, ensuring that only the designated terminal device can decrypt and obtain the intelligence data.

Benefits of technology

It improves the controllability and reliability of intelligence data transmission, ensures that only authorized devices can obtain intelligence data, and enhances the security of data transmission.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN115941342B_ABST
    Figure CN115941342B_ABST
Patent Text Reader

Abstract

This application relates to the field of data processing technology, and provides a method and apparatus for transmitting intelligence data. The method includes: verifying the serial number of at least one terminal device from an obtained authorization code based on preset authorization information, and obtaining a verification result for the serial number; determining that the verification result indicates the serial number is valid, encrypting intelligence data, and obtaining an offline data packet including the intelligence data; sending the offline data packet to the terminal device, so that the terminal device decrypts the offline data packet and obtains the intelligence data. The intelligence data transmission method provided by this application can improve the reliability and controllability of intelligence data transmission.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This application relates to the field of data processing technology, specifically to an intelligence data transmission method and apparatus. Background Technology

[0002] Intelligence data, such as threat intelligence, is evidence-based knowledge that includes scenarios, mechanisms, indicators, implications, and actionable recommendations. This knowledge concerns existing or emerging threats or dangers against assets and provides decision-making information for agents to respond to such threats or dangers. Because intelligence data is sensitive, improving the reliability and controllability of intelligence data transmission is a pressing technical challenge. Summary of the Invention

[0003] This application aims to address at least one of the technical problems existing in related technologies. To this end, this application proposes an intelligence data transmission method that can improve the reliability and controllability of intelligence data transmission.

[0004] This application also proposes an intelligence data transmission device.

[0005] This application also proposes an electronic device.

[0006] This application also proposes a computer-readable storage medium.

[0007] The information data transmission method according to the first aspect of this application includes:

[0008] Based on the preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified, and the verification result of the serial number is obtained.

[0009] Once the verification result confirms that the serial number is valid, the intelligence data is encrypted, and an offline data packet containing the intelligence data is obtained.

[0010] The offline data packet is sent to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0011] The intelligence data transmission method provided in this application verifies the serial number of at least one terminal device in the obtained authorization code by pre-setting authorization information. When the serial number is verified to be valid, the intelligence data is encrypted, and an offline data packet is obtained and sent to the terminal device. The terminal device then decrypts the offline data packet to obtain the intelligence data. By verifying the serial number of the terminal device, the method ensures that the intelligence data can only be obtained by the designated terminal device, thereby improving the controllability of intelligence data transmission. Furthermore, by encrypting the transmitted intelligence data, the reliability of intelligence data transmission is further enhanced.

[0012] According to one embodiment of this application, it also includes:

[0013] The authorization code received from the target terminal is decrypted to obtain the serial number from the authorization code;

[0014] The authorization code is obtained by the target terminal encrypting at least one serial number with a first timestamp attached using an intelligence public key; the first timestamp is the timestamp when the target terminal obtains the serial number.

[0015] According to one embodiment of this application, decrypting the authorization code received from the target terminal to obtain the serial number from the authorization code includes:

[0016] The authorization code is decrypted to obtain the serial number with the first timestamp appended.

[0017] If the time interval between the first timestamp and the current time is less than a preset time interval, the sequence number is obtained.

[0018] According to one embodiment of this application, the step of verifying the serial number of at least one terminal device in the obtained authorization code based on preset authorization information, and obtaining the verification result of the serial number, includes:

[0019] The serial number is verified based on each preset serial number in the preset authorization information;

[0020] If at least one of the preset serial numbers matches the serial number, the serial number verification result is determined to be valid.

[0021] According to one embodiment of this application, after determining that the verification result indicates the serial number is valid, the process includes:

[0022] Obtain the authorization application parameters corresponding to the serial number from the preset authorization information;

[0023] Based on the authorization application parameters, the intelligence data corresponding to the authorization application parameters is obtained from the intelligence database;

[0024] The authorization application parameters include the type of intelligence data and the time range of the intelligence data.

[0025] According to one embodiment of this application, encrypting the intelligence data and obtaining an offline data packet including the intelligence data includes:

[0026] The intelligence data is encrypted using a preset key to obtain an encrypted data packet;

[0027] The offline data packet is generated based on the encrypted data packet and the data packet identifier corresponding to the encrypted data packet;

[0028] The data packet identifier is obtained by encrypting the preset key with a second timestamp appended to the sequence number;

[0029] The second timestamp is the timestamp when the data packet identifier was generated.

[0030] According to one embodiment of this application, the serial number is a device serial number encrypted using a secure hash algorithm.

[0031] The information data transmission apparatus according to a second aspect embodiment of this application includes:

[0032] The serial number verification module is used to verify the serial number of at least one terminal device in the obtained authorization code according to the preset authorization information, and obtain the verification result of the serial number.

[0033] The data packet acquisition module is used to determine that the verification result is valid for the serial number, encrypt the intelligence data, and acquire an offline data packet including the intelligence data;

[0034] The intelligence data transmission module is used to send the offline data packet to the terminal device, so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0035] An electronic device according to a third aspect of this application includes a processor and a memory storing a computer program, wherein the processor executes the computer program to implement the information data transmission method described in any of the above embodiments.

[0036] A computer-readable storage medium according to a fourth aspect of this application stores a computer program thereon, which, when executed by a processor, implements the information data transmission method described in any of the above embodiments.

[0037] A computer program product according to a fifth aspect of this application includes: when the computer program is executed by a processor, it implements the information data transmission method as described in any of the above embodiments.

[0038] The above-described one or more technical solutions in the embodiments of this application have at least one of the following technical effects:

[0039] By using preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified. If the serial number is verified to be valid, the intelligence data is then encrypted, and an offline data packet is obtained and sent to the terminal device. The terminal device then decrypts the offline data packet to obtain the intelligence data. By verifying the serial number of the terminal device, it is ensured that the intelligence data can only be obtained by the designated terminal device, thereby improving the controllability of intelligence data transmission. Furthermore, by encrypting the transmitted intelligence data, the reliability of intelligence data transmission is further enhanced. Attached Figure Description

[0040] To more clearly illustrate the technical solutions in this application or the prior art, the drawings used in the description of the embodiments or the prior art will be briefly introduced below. Obviously, the drawings described below are some embodiments of this application. For those skilled in the art, other drawings can be obtained based on these drawings without creative effort.

[0041] Figure 1 This is a flowchart illustrating the information data transmission method provided in an embodiment of this application;

[0042] Figure 2 This is a schematic diagram of the serial number acquisition process in an embodiment of this application;

[0043] Figure 3 Yes Figure 1 A flowchart for further refining the acquisition of serial number verification results in the intelligence data transmission method;

[0044] Figure 4 Yes Figure 1 The flowchart for further refining the acquisition of intelligence data in the intelligence data transmission method;

[0045] Figure 5 Yes Figure 1 A flowchart for further refining the acquisition of offline data packets in the intelligence data transmission method;

[0046] Figure 6 This is a schematic diagram of the structure of the intelligence data transmission device provided in the embodiments of this application;

[0047] Figure 7 This is a schematic diagram of the structure of the electronic device provided in the embodiments of this application. Detailed Implementation

[0048] To make the objectives, technical solutions, and advantages of this application clearer, the technical solutions of this application will be clearly and completely described below with reference to the accompanying drawings of the embodiments. Obviously, the described embodiments are only some embodiments of this application, not all embodiments. Based on the embodiments of this application, all other embodiments obtained by those skilled in the art without creative effort are within the scope of protection of this application.

[0049] The information data transmission method and apparatus provided in this application will be described in detail and explained below through several specific embodiments.

[0050] Therefore, in one embodiment, an intelligence data transmission method is provided, which is applied to an authorization platform. The authorization platform can be a user terminal, a user terminal cluster, or a server. The user terminal can be a desktop or portable terminal, such as a desktop computer or a laptop. The server can be a standalone server or a server cluster composed of multiple servers. It can also be a cloud server providing basic cloud computing services such as cloud services, cloud message databases, cloud computing, cloud functions, cloud storage, network services, cloud communication, middleware services, domain name services, security services, CDN, and large message data and artificial intelligence sampling point devices.

[0051] like Figure 1 As shown, this embodiment provides an intelligence data transmission method, including:

[0052] Step 101: Based on the preset authorization information, verify the serial number of at least one terminal device in the obtained authorization code, and obtain the verification result of the serial number;

[0053] Step 102: Determine that the verification result is that the serial number is valid, encrypt the intelligence data, and obtain an offline data packet containing the intelligence data;

[0054] Step 103: Send the offline data packet to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0055] By using preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified. If the serial number is verified to be valid, the intelligence data is then encrypted, and an offline data packet is obtained and sent to the terminal device. The terminal device then decrypts the offline data packet to obtain the intelligence data. By verifying the serial number of the terminal device, it is ensured that the intelligence data can only be obtained by the designated terminal device, thereby improving the controllability of intelligence data transmission. Furthermore, by encrypting the transmitted intelligence data, the reliability of intelligence data transmission is further enhanced.

[0056] In one embodiment, the authorization platform pre-stores preset authorization information, which includes a preset serial number set. This preset serial number set may contain one or more preset serial numbers, which can be device serial numbers or device serial numbers encrypted using a secure hash algorithm. The preset authorization information also includes authorization application parameters corresponding to any preset serial number, such as intelligence type and intelligence time interval. That is, each preset serial number in the preset authorization information has its corresponding intelligence type and intelligence time interval. The intelligence type indicates the type of intelligence data that can be requested, and the intelligence time interval includes the start and end times, indicating the range of intelligence data that can be requested. The minimum time unit for the intelligence time interval can be agreed to be one day; that is, the minimum time interval for requestable intelligence data is 00:00:00—23:59:59 of one day.

[0057] The authorization code serves as a credential for acquiring intelligence data and is sent by the target terminal that needs to specify a particular terminal device for data transmission. The target terminal can obtain the serial number sent by the terminal device itself, or receive a serial number of a terminal device input by a user. It then combines these serial numbers into an authorization code and sends it to the authorization platform. The serial number can be a device serial number; for example, N device serial numbers can be BASE64 encoded to generate a BASE64 string for each device serial number. These BASE64 strings are then separated by commas and combined to form the authorization code.

[0058] To enhance the security of the authorization code and prevent the serial number within it from being stolen, the target terminal can use an intelligence public key to encrypt at least one of the serial numbers, which is appended with a first timestamp, to obtain the authorization code. The first timestamp is the timestamp at which the target terminal obtains the serial number. To further improve data transmission security, the serial number can be a device serial number encrypted using a secure hash algorithm.

[0059] For example, the target device can first receive device serial numbers from multiple terminal devices. Then, for any given device serial number, it encrypts it using a full hash algorithm, such as SHA256 encryption, to obtain the SN-SHA256 string, which is the serial number. Next, it appends the timestamp (WITH IME) used by the target terminal to obtain the serial number, resulting in the SN-SHA256_WITH IME string. Finally, it uses the intelligence public key ct i-pubkey to...

[0060] The encrypted string SN-SHA256_WI THT I ME-RSAct i-pubkey is then BASE64 encoded, outputting the string SN-SHA256_WI THT I ME-RSAct i-pubkey-BASE64, which is the BASE64 string corresponding to the serial number. After obtaining the BASE64 strings corresponding to all serial numbers, these strings can be separated by commas and combined into an authorization code to be sent to the authorization platform.

[0061] After receiving the authorization code from the target terminal, the authorization platform decrypts the authorization code and can then obtain the serial number of the terminal device from it.

[0062] To further improve the reliability of intelligence data transmission, in one embodiment, such as Figure 2 As shown, the authorization code received from the target terminal is decrypted to obtain the serial number from the authorization code, including:

[0063] Step 201: Decrypt the authorization code to obtain the serial number with the first timestamp appended;

[0064] Step 202: Determine that the time interval between the first timestamp and the current time is less than a preset time interval, and obtain the sequence number.

[0065] In one embodiment, when the authorization platform receives the authorization code sent by the target terminal, assuming the authorization code includes multiple BASE64 strings, for any one of the BASE64 strings, such as SN-SHA256_WITHHTIME-RSAct i-pubkey-BASE64 in the authorization code, BASE64 decoding is performed to obtain the serial number SN-SHA256_WITHHTIME-RSAct i-pubkey with a first timestamp appended from the BASE64 string. Then, using the intelligence private key ct i-pr i vatekey corresponding to the intelligence public key, SN-SHA256_WITHHTIME-RSAct i-pubkey is decrypted to obtain the serial number SN-SHA256_WITHHTIME with the first timestamp appended. After obtaining the serial number SN-SHA256_WITHITEME with an appended first timestamp, the first timestamp WITHITEME is extracted from it. This first timestamp WITHITEME is compared with the current time to determine whether the serial number in the authorization code is valid. If the time interval between the first timestamp and the current time is less than a preset time interval (e.g., less than 7 days), the serial number is valid, and the first timestamp is removed, yielding the serial number SN-SHA256. If the time interval between the first timestamp and the current time is not less than the preset time interval (e.g., not less than 7 days), the serial number is invalid, and it is ignored. A message indicating that the serial number has expired is sent to the target terminal.

[0066] Once the serial number is obtained, it can be matched against the preset serial numbers in the preset authorization information to obtain the verification result. Specifically, for example... Figure 3 As shown, based on preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified, and the verification result of the serial number is obtained, including:

[0067] Step 301: Verify the serial number according to each preset serial number in the preset authorization information;

[0068] Step 302: At least one of the preset serial numbers matches the serial number, and the serial number verification result is determined to be that the serial number is valid.

[0069] For example, after obtaining the serial number SN-SHA256, it is matched with each preset serial number in the preset authorization information. If the terminal device corresponding to one of the preset serial numbers is the same as the terminal device corresponding to the serial number SN-SHA256, it can be determined that the serial number SN-SHA256 has a corresponding authorization record, and the serial number SN-SHA256 is valid. Otherwise, the serial number is determined to be invalid, and intelligence data is not transmitted to the terminal device corresponding to the serial number.

[0070] After verifying the serial number's validity, intelligence data can be retrieved from the intelligence database and sent to the terminal device corresponding to that serial number. Since there may be multiple serial numbers for the authorization code, multiple serial numbers may pass verification. In this case, intelligence data retrieved from the intelligence database can be sent to multiple terminal devices simultaneously.

[0071] Considering that different terminal devices have different access permissions to intelligence data, in order to prevent unauthorized terminal devices from obtaining relevant intelligence data and thus improve the security of intelligence data transmission, in one embodiment, such as... Figure 4 As shown, after determining that the verification result indicates the serial number is valid, the process includes:

[0072] Step 401: Obtain the authorization application parameters corresponding to the serial number from the preset authorization information;

[0073] Step 402: Based on the authorization application parameters, retrieve the intelligence data corresponding to the authorization application parameters from the intelligence database;

[0074] The authorization application parameters include the type of intelligence data and the time range of the intelligence data.

[0075] In one embodiment, since the preset authorization information pre-records the authorization application parameters corresponding to each preset serial number, after confirming the validity of the serial number, the authorization application parameters corresponding to the preset serial number can be obtained from the preset authorization information based on the preset serial number that matches the serial number. The obtained authorization application parameters are then the authorization application parameters corresponding to the serial number. After obtaining the authorization application parameters corresponding to the serial number, the intelligence data in the intelligence database can be traversed according to the intelligence type and intelligence time interval in the authorization application parameters to obtain the intelligence data corresponding to the intelligence type within the intelligence time interval from the intelligence database.

[0076] In this way, by obtaining the authorization application parameters corresponding to the serial number, including the intelligence data type and the intelligence data time range, the intelligence data corresponding to the authorization application parameters can be obtained from the intelligence database. This allows for the acquisition and transmission of different intelligence data for terminal devices with different permissions, preventing unauthorized terminal devices from obtaining relevant intelligence data and further improving the security of intelligence data transmission.

[0077] Once the intelligence data is obtained, it can be encrypted. For example, an AES symmetric encryption key can be generated based on a random number using the AES CBC mode, and then the intelligence data can be encrypted using this AES symmetric encryption key to obtain an offline data packet containing the intelligence data.

[0078] To improve the security of the acquired offline data packets, in one embodiment, such as... Figure 5 As shown, encrypting intelligence data and obtaining an offline data packet containing the intelligence data includes:

[0079] Step 501: Encrypt the intelligence data according to the preset key to obtain the encrypted data packet;

[0080] Step 502: Generate the offline data packet based on the encrypted data packet and the data packet identifier corresponding to the encrypted data packet;

[0081] The data packet identifier is obtained by encrypting the preset key with a second timestamp appended to the sequence number;

[0082] The second timestamp is the timestamp when the data packet identifier was generated.

[0083] In one embodiment, after acquiring intelligence data, all intelligence data can be compressed to output a packaged data packet DATApkg. Then, using AES CBC mode and an AES symmetric encryption key KEYpkg generated by a random number, the data packet DATApkg is encrypted to obtain an encrypted data packet DATApkg_KEYpkg. When encrypting the data packet DATApkg using the AES symmetric encryption key KEYpkg, it is necessary to first check whether the AES symmetric encryption key KEYpkg is empty. If it is not empty, then the AES symmetric encryption key KEYpkg is used to encrypt the data packet DATApkg.

[0084] Simultaneously, the packet identifier generation process is initiated. A packet identifier (the current timestamp at the start of the packet identifier generation process) is appended to the AES symmetric encryption key KEYpkg, resulting in KEYpkg_WITHHT IME. Then, KEYpkg_WITHHT IME is encrypted using the serial number of the terminal device receiving the intelligence data, such as SN-SHA256, as the key, yielding the encrypted string KEYpkg_WITHHT IME-AESsn-sha256. After obtaining the encrypted string, KEYpkg_WITHHT IME-AESsn-sha256, it is BASE64 encoded to obtain the string KEYpkg_WITHHT IME-AESsn-sha256-BASE64. This string is the packet identifier corresponding to the encrypted packet.

[0085] After obtaining the encrypted data packet and its corresponding data packet identifier, the encrypted data packet and its corresponding data packet identifier are encapsulated to obtain the offline data packet, which can then be sent to the terminal device.

[0086] In this way, by generating offline data packets from encrypted data and the corresponding data packet identifiers, the encryption results of offline data packets obtained by different terminal devices will be different, thereby further improving the security of intelligence data transmission.

[0087] When a terminal device receives this offline data packet, it can first determine the serial number based on its device serial number. For example, it can perform SHA256 calculation on the device serial number, outputting the serial number SN-SHA256. Then, it can parse the received offline data packet to obtain intelligence data.

[0088] For example, assuming the offline data packet includes the string KEYpkg_WITHHTIME-AESsn-sha256-BASE64 and DATApkg_KEYpkg, when the terminal device receives the offline data packet, it performs ZIP decompression to obtain the data packet identifier and the encrypted data packet. Then, it iterates through the pre-stored preset identifiers. If the data packet identifier does not exist in any of the preset identifiers, it means that the offline data packet does not match or is not applicable to the terminal device. Otherwise, it performs BASE64 decoding on the data packet identifier, outputting KEYpkg_WITHHTIME-AESsn-sha256. Then, based on the generated SN_SHA256, it performs AES decryption on KEYpkg_WITHHTIME-AESsn-sha256. If the decryption is successful, it outputs KEYpkg_WITHHTIME. It then extracts the WITHHTIME from KEYpkg_WITHHTIME and compares it with the current time to verify whether the offline data packet is valid. The offline data package has a default validity period of 30 days. This means that the downloaded offline data package must be imported into the terminal device within 30 days, otherwise it will expire. If verification is successful, the original key (KEYpkg) after removing the time is obtained. Then, KEYpkg is used to decrypt the data package DATApkg_KEYpkg using AES, outputting a decrypted data file package (ZIP). Parsing the original ZIP data package, according to the data model specifications, yields the intelligence data.

[0089] The intelligence data transmission apparatus provided in this application is described below. The intelligence data transmission apparatus described below and the intelligence data transmission method described above can be referred to in correspondence.

[0090] In one embodiment, such as Figure 6 As shown, an intelligence data transmission device is provided, comprising:

[0091] The serial number verification module 210 is used to verify the serial number of at least one terminal device in the obtained authorization code according to the preset authorization information, and obtain the verification result of the serial number.

[0092] The data packet acquisition module 220 is used to determine that the verification result is that the serial number is valid, encrypt the intelligence data, and acquire an offline data packet including the intelligence data;

[0093] The intelligence data transmission module 230 is used to send the offline data packet to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0094] By using preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified. If the serial number is verified to be valid, the intelligence data is then encrypted, and an offline data packet is obtained and sent to the terminal device. The terminal device then decrypts the offline data packet to obtain the intelligence data. By verifying the serial number of the terminal device, it is ensured that the intelligence data can only be obtained by the designated terminal device, thereby improving the controllability of intelligence data transmission. Furthermore, by encrypting the transmitted intelligence data, the reliability of intelligence data transmission is further enhanced.

[0095] In one embodiment, the serial number verification module 210 is further configured to:

[0096] The authorization code received from the target terminal is decrypted to obtain the serial number from the authorization code;

[0097] The authorization code is obtained by the target terminal encrypting at least one serial number with a first timestamp attached using an intelligence public key; the first timestamp is the timestamp when the target terminal obtains the serial number.

[0098] In one embodiment, the serial number verification module 210 is specifically used for:

[0099] The authorization code is decrypted to obtain the serial number with the first timestamp appended.

[0100] If the time interval between the first timestamp and the current time is less than a preset time interval, the sequence number is obtained.

[0101] In one embodiment, the serial number verification module 210 is specifically used for:

[0102] The serial number is verified based on each preset serial number in the preset authorization information;

[0103] If at least one of the preset serial numbers matches the serial number, the serial number verification result is determined to be valid.

[0104] In one embodiment, the data packet acquisition module 220 is further configured to:

[0105] After confirming that the verification result indicates the serial number is valid, the authorization application parameters corresponding to the serial number are obtained from the preset authorization information.

[0106] Based on the authorization application parameters, the intelligence data corresponding to the authorization application parameters is obtained from the intelligence database;

[0107] The authorization application parameters include the type of intelligence data and the time range of the intelligence data.

[0108] In one embodiment, the data packet acquisition module 220 is specifically used for:

[0109] The intelligence data is encrypted using a preset key to obtain an encrypted data packet;

[0110] The offline data packet is generated based on the encrypted data packet and the data packet identifier corresponding to the encrypted data packet;

[0111] The data packet identifier is obtained by encrypting the preset key with a second timestamp appended to the sequence number;

[0112] The second timestamp is the timestamp when the data packet identifier was generated.

[0113] In one embodiment, the serial number is a device serial number encrypted using a secure hash algorithm.

[0114] Figure 7 An example is a schematic diagram of the physical structure of an electronic device, such as... Figure 7 As shown, the electronic device may include: a processor 810, a communication interface 820, a memory 830, and a communication bus 840, wherein the processor 810, the communication interface 820, and the memory 830 communicate with each other via the communication bus 840. The processor 810 can call a computer program in the memory 830 to execute an information data transmission method, such as including:

[0115] Based on the preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified, and the verification result of the serial number is obtained.

[0116] Once the verification result confirms that the serial number is valid, the intelligence data is encrypted, and an offline data packet containing the intelligence data is obtained.

[0117] The offline data packet is sent to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0118] Furthermore, the logical instructions in the aforementioned memory 830 can be implemented as software functional units and, when sold or used as independent products, can be stored in a computer-readable storage medium. Based on this understanding, the technical solution of this application, in essence, or the part that contributes to the prior art, or a portion of the technical solution, can be embodied in the form of a software product. This computer software product is stored in a storage medium and includes several instructions to cause a computer device (which may be a personal computer, server, or network device, etc.) to execute all or part of the steps of the methods in the various embodiments of this application. The aforementioned storage medium includes various media capable of storing program code, such as USB flash drives, portable hard drives, read-only memory (ROM), random access memory (RAM), magnetic disks, or optical disks.

[0119] On the other hand, embodiments of this application also provide a processor-readable storage medium storing a computer program for causing a processor to execute the methods provided in the above embodiments, such as including:

[0120] Based on the preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified, and the verification result of the serial number is obtained.

[0121] Once the verification result confirms that the serial number is valid, the intelligence data is encrypted, and an offline data packet containing the intelligence data is obtained.

[0122] The offline data packet is sent to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data.

[0123] Processor-readable storage media can be any available medium or message data storage device that the processor can access, including but not limited to magnetic memory (e.g., floppy disk, hard disk, magnetic tape, magneto-optical disk (MO)), optical memory (e.g., CD, DVD, BD, HVD), and semiconductor memory (e.g., ROM, EPROM, EEPROM, non-volatile memory (NAND FLASH), solid-state drive (SSD)).

[0124] The device embodiments described above are merely illustrative. The units described as separate components may or may not be physically separate, and the components shown as units may or may not be physical units; that is, they may be located in one place or distributed across multiple network units. Some or all of the modules can be selected to achieve the purpose of this embodiment according to actual needs. Those skilled in the art can understand and implement this without any creative effort.

[0125] Through the above description of the embodiments, those skilled in the art can clearly understand that each embodiment can be implemented by means of software plus necessary general-purpose hardware platforms, and of course, it can also be implemented by hardware. Based on this understanding, the above technical solutions, in essence or the part that contributes to the prior art, can be embodied in the form of a software product. This computer software product can be stored in a computer-readable storage medium, such as ROM / RAM, magnetic disk, optical disk, etc., and includes several instructions to cause a computer device (which may be a personal computer, server, or network device, etc.) to execute the methods described in the various embodiments or some parts of the embodiments.

[0126] Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of this application, and are not intended to limit them. Although this application has been described in detail with reference to the foregoing embodiments, those skilled in the art should understand that modifications can still be made to the technical solutions described in the foregoing embodiments, or equivalent substitutions can be made to some of the technical features. Such modifications or substitutions do not cause the essence of the corresponding technical solutions to deviate from the spirit and scope of the technical solutions of the embodiments of this application.

Claims

1. A method for transmitting intelligence data, characterized in that, include: Based on the preset authorization information, the serial number of at least one terminal device in the obtained authorization code is verified, and the verification result of the serial number is obtained. Once the verification result confirms that the serial number is valid, the intelligence data is encrypted, and an offline data packet containing the intelligence data is obtained. The offline data packet is sent to the terminal device so that the terminal device can decrypt the offline data packet and obtain the intelligence data; After determining that the verification result indicates the serial number is valid, the process includes: Obtain the authorization application parameters corresponding to the serial number from the preset authorization information; Based on the intelligence type and intelligence time interval in the authorization application parameters, the intelligence database is traversed to obtain the intelligence data corresponding to the intelligence type within the intelligence time interval from the intelligence database. The process of encrypting intelligence data and obtaining an offline data packet containing the intelligence data includes: The intelligence data is encrypted using a preset key to obtain an encrypted data packet; The offline data packet is generated based on the encrypted data packet and the data packet identifier corresponding to the encrypted data packet; The data packet identifier is obtained by encrypting the preset key with a second timestamp appended to the serial number of the terminal device; The second timestamp is the timestamp when the data packet identifier was generated.

2. The intelligence data transmission method according to claim 1, characterized in that, Also includes: The authorization code received from the target terminal is decrypted to obtain the serial number from the authorization code; The authorization code is obtained by the target terminal encrypting at least one serial number with a first timestamp attached using an intelligence public key; The first timestamp is the timestamp when the target terminal obtains the serial number.

3. The intelligence data transmission method according to claim 2, characterized in that, Decrypting the authorization code received from the target terminal to obtain the serial number from the authorization code includes: The authorization code is decrypted to obtain the serial number with the first timestamp appended. If the time interval between the first timestamp and the current time is less than a preset time interval, the sequence number is obtained.

4. The intelligence data transmission method according to claim 1, characterized in that, The step of verifying the serial number of at least one terminal device in the obtained authorization code according to preset authorization information, and obtaining the verification result of the serial number, includes: The serial number is verified based on each preset serial number in the preset authorization information; If at least one of the preset serial numbers matches the serial number, the serial number verification result is determined to be valid.

5. The intelligence data transmission method according to claim 1, characterized in that, The serial number is a device serial number encrypted using a secure hash algorithm.

6. An intelligence data transmission device, characterized in that, include: The serial number verification module is used to verify the serial number of at least one terminal device in the obtained authorization code according to the preset authorization information, and obtain the verification result of the serial number. The data packet acquisition module is used to determine that the verification result is valid for the serial number, encrypt the intelligence data, and acquire an offline data packet including the intelligence data; The intelligence data transmission module is used to send the offline data packet to the terminal device, so that the terminal device can decrypt the offline data packet and obtain the intelligence data; The data packet acquisition module is also used for: After confirming that the verification result indicates the serial number is valid, the authorization application parameters corresponding to the serial number are obtained from the preset authorization information. Based on the intelligence type and intelligence time interval in the authorization application parameters, the intelligence database is traversed to obtain the intelligence data corresponding to the intelligence type within the intelligence time interval from the intelligence database. The data packet acquisition module is specifically used for: The intelligence data is encrypted using a preset key to obtain an encrypted data packet; The offline data packet is generated based on the encrypted data packet and the data packet identifier corresponding to the encrypted data packet; The data packet identifier is obtained by encrypting the preset key with a second timestamp appended to the serial number of the terminal device; The second timestamp is the timestamp when the data packet identifier was generated.

7. An electronic device comprising a processor and a memory storing a computer program, characterized in that, When the processor executes the computer program, it implements the intelligence data transmission method according to any one of claims 1 to 5.

8. A computer-readable storage medium having a computer program stored thereon, characterized in that, When the computer program is executed by the processor, it implements the intelligence data transmission method according to any one of claims 1 to 5.