[go: up one dir, main page]

CN1592195A - Method for protecting information integrity - Google Patents

Method for protecting information integrity Download PDF

Info

Publication number
CN1592195A
CN1592195A CN 03156103 CN03156103A CN1592195A CN 1592195 A CN1592195 A CN 1592195A CN 03156103 CN03156103 CN 03156103 CN 03156103 A CN03156103 A CN 03156103A CN 1592195 A CN1592195 A CN 1592195A
Authority
CN
China
Prior art keywords
multicast
information
user
public key
pki
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN 03156103
Other languages
Chinese (zh)
Other versions
CN100454807C (en
Inventor
黄迎新
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CNB031561039A priority Critical patent/CN100454807C/en
Publication of CN1592195A publication Critical patent/CN1592195A/en
Application granted granted Critical
Publication of CN100454807C publication Critical patent/CN100454807C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

本发明公开了一种应用于无线领域的信息完整性的保护方法,该方法包含:用户获取多播/广播服务器的公钥并存储;多播/广播服务器将进行了完整性保护的信息发送给用户,用户使用公钥检验收到信息中的完整性保护信息是否有效,如果是,用户判定所述信息具有完整性;否则,用户判定所述信息不具有完整性。根据本发明提出的方法,对多播/广播服务器发送的信息进行安全性保护,使用户能够对收到的信息进行检验,从而确定收到的信息是否具有完整性,并且确定发送该信息的消息源是否可靠,有效防止多播/广播业务中信息被他人恶意篡改或伪造。另外,本发明通过对多播/广播服务器发送的信息附加时间戳,防止信息被他人重复使用。

Figure 03156103

The invention discloses a method for protecting the integrity of information applied in the wireless field. The method comprises: the user obtains and stores the public key of the multicast/broadcast server; the multicast/broadcast server sends the information with integrity protection to The user, the user uses the public key to check whether the integrity protection information in the received information is valid, and if so, the user determines that the information has integrity; otherwise, the user determines that the information does not have integrity. According to the method proposed by the present invention, the security protection of the information sent by the multicast/broadcast server is carried out, so that the user can check the received information, so as to determine whether the received information has integrity, and determine the message sending the information Whether the source is reliable can effectively prevent the information in the multicast/broadcast service from being maliciously tampered with or forged by others. In addition, the present invention prevents information from being reused by others by adding a time stamp to the information sent by the multicast/broadcast server.

Figure 03156103

Description

一种信息完整性的保护方法A Method of Protecting Information Integrity

技术领域technical field

本发明涉及多播/广播业务中的信息安全技术,特别是指一种信息完整性的保护方法。The invention relates to information security technology in multicast/broadcast services, in particular to a method for protecting information integrity.

背景技术Background technique

在无线通信网络中,多播/广播业务是指一点到多点的单向承载业务,数据信息由一个原实体发送至多个接收实体,数据信息由多播/广播服务器发送至多个用户设备,这些由一点到多点传送的数据信息,可以是多播/广播业务信息,也可以是用来控制多播/广播业务的信令信息。信令信息与业务信息相比要少得多,但信令信息相对于业务信息要重要得多,因为信令信息是控制多播/广播业务的。多播/广播服务器是指能够提供多播/广播业务服务,兼具密钥生成管理功能的功能实体,可以是在无线通信网络中新增的功能实体,也可以是现有无线通信网络中的一个功能实体或多个功能实体的组合。In a wireless communication network, multicast/broadcast services refer to point-to-multipoint unidirectional bearer services, where data information is sent from one original entity to multiple receiving entities, and data information is sent to multiple user equipments by a multicast/broadcast server. The data information transmitted from point to multipoint can be multicast/broadcast service information, or signaling information used to control multicast/broadcast service. Compared with the service information, the signaling information is much less, but the signaling information is much more important than the service information, because the signaling information controls the multicast/broadcast service. A multicast/broadcast server refers to a functional entity that can provide multicast/broadcast business services and has key generation and management functions. It can be a newly added functional entity in the wireless communication network, or it can be a A functional entity or a combination of multiple functional entities.

目前,已经将多播/广播业务中的业务信息加密后发送,例如,多播/广播服务器使用其与群组内用户共同拥有的群组共享密钥对业务信息进行加密后发送给群组内用户,群组内用户使用自身拥有的群组共享密钥对收到的业务信息进行解密,进而获取多播/广播业务信息。然而多播/广播业务中的信令信息通常不进行加密就直接广播发送,这是因为一些信令信息不适于加密,例如用于控制群组内用户当前使用哪个群组共享密钥的广播信令信息,如果将该信令信息加密,就会使那些原来不在多播/广播业务群组内,而刚加入多播/广播业务群组,却还没有使用正确群组共享密钥的用户无法收到广播的该信令信息;另外,信令信息中一般不携带需要保密的信息内容,所以根本不需要加密,但是,由于信令信息是用于控制多播/广播业务的,因此需要高度保证信令信息的完整性。At present, the service information in the multicast/broadcast service has been encrypted and sent. For example, the multicast/broadcast server uses the group shared key shared by the user in the group to encrypt the service information and then sends it to the group. Users, users in the group use their own group shared key to decrypt the received service information, and then obtain multicast/broadcast service information. However, the signaling information in the multicast/broadcast service is usually broadcast directly without encryption, because some signaling information is not suitable for encryption, such as the broadcast information used to control which group shared key is currently used by the users in the group. If the signaling information is encrypted, those users who are not in the multicast/broadcast service group but have just joined the multicast/broadcast service group and have not used the correct group shared key cannot Receive the broadcasted signaling information; in addition, the signaling information generally does not carry information content that needs to be kept secret, so there is no need for encryption at all. However, since the signaling information is used to control multicast/broadcast services, it needs to be highly Ensure the integrity of signaling information.

如果多播/广播服务器广播的信令信息被攻击者在发送途中修改,则可能导致多播/广播业务系统无法正常工作。例如,多播/广播服务器通知群组内用户使用编号为5的群组共享密钥解密后续收到的业务信息,由于该信令信息只携带了群组共享密钥的编号,并没有携带相应的群组共享密钥,因此该信令信息可采用明文发送;因为该信令信息没有进行相应的完整性保护,所以就有可能受到攻击,攻击者将该信令信息在发送途中由5修改为3,群组内用户收到信令信息后,并不知道该信令信息已被修改,就根据信令信息中的指示使用编号为3的群组共享密钥解密收到的业务信息,如此将导致所有群组内用户无法正常接收后续的多播/广播业务信息。攻击者也可用自己的信息替换掉真正多播/广播服务器广播发送的信令信息,或直接冒充多播/广播服务器广播发送信令信息,都将导致群组内用户无法正常接收多播/广播业务信息,多播/广播业务系统无法正常运行的严重后果。If the signaling information broadcast by the multicast/broadcast server is modified by an attacker during transmission, the multicast/broadcast service system may not work properly. For example, the multicast/broadcast server notifies the users in the group to use the group shared key numbered 5 to decrypt the subsequent received service information, because the signaling information only carries the number of the group shared key and does not carry the corresponding The group shared key, so the signaling information can be sent in plain text; because the signaling information is not protected by the corresponding integrity, it may be attacked, and the attacker modifies the signaling information by 5 during sending It is 3. After receiving the signaling information, the users in the group do not know that the signaling information has been modified, so they use the group shared key numbered 3 to decrypt the received service information according to the instructions in the signaling information. This will cause all users in the group to be unable to normally receive subsequent multicast/broadcast service information. Attackers can also use their own information to replace the signaling information broadcast by the real multicast/broadcast server, or directly impersonate the multicast/broadcast server to broadcast and send signaling information, which will cause users in the group to fail to receive multicast/broadcast normally Business information, serious consequences of multicast/broadcast business systems not operating normally.

发明内容Contents of the invention

有鉴于此,本发明的主要目的在于提供一种信息完整性的保护方法,保证群组内用户正常接收多播/广播业务的信息,同时保证多播/广播业务系统的正常运行。In view of this, the main purpose of the present invention is to provide a method for protecting information integrity, which ensures that users in a group normally receive information of multicast/broadcast services, and at the same time ensures the normal operation of the multicast/broadcast service system.

为了达到上述目的,本发明提供了一种信息完整性的保护方法,该方法包含以下步骤:In order to achieve the above object, the present invention provides a method for protecting information integrity, which method includes the following steps:

A、用户获取并存储多播/广播服务器的公钥;A. The user obtains and stores the public key of the multicast/broadcast server;

B、多播/广播服务器将进行了完整性保护的信息发送给用户;B. The multicast/broadcast server sends the integrity-protected information to the user;

C、用户使用所述公钥检验收到信息中的完整性保护信息是否有效,如果是,判定所述信息具有完整性,否则,判定所述信息不具有完整性。C. The user uses the public key to check whether the integrity protection information in the received information is valid, and if yes, it is determined that the information has integrity; otherwise, it is determined that the information does not have integrity.

所述步骤A包括:多播/广播服务器向用户发送多播/广播服务器公钥,用户存储收到的所述公钥。The step A includes: the multicast/broadcast server sends the multicast/broadcast server public key to the user, and the user stores the received public key.

所述步骤A进一步包括:多播/广播服务器使用用户加入多播/广播业务认证过程生成的完整性密钥和加密密钥对多播/广播服务器公钥进行完整性保护和加密,然后发送给用户,用户解密收到的所述公钥并进行完整性校验后进行存储。The step A further includes: the multicast/broadcast server uses the integrity key and the encryption key generated by the user to join the multicast/broadcast service authentication process to perform integrity protection and encryption on the multicast/broadcast server public key, and then send it to The user, the user decrypts the received public key and stores it after performing an integrity check.

所述步骤A进一步包括以下步骤:A1、多播/广播服务器向证书机构提供多播/广播服务器公钥,证书机构生成包含多播/广播服务器公钥的公钥证书后,使用证书机构的私钥加密多播/广播服务器的公钥证书,成为证书机构为多播/广播服务器颁发的公钥证书;A2、多播/广播服务器向用户发送所述证书机构为其颁发的公钥证书,用户存储包含多播/广播服务器公钥的公钥证书,所述步骤C包括:用户使用多播/广播服务器公钥证书中的公钥检验收到信息中的数字签名是否有效。Described step A further comprises the following steps: A1, the multicast/broadcast server provides the public key of the multicast/broadcast server to the certificate authority, and after the certificate authority generates the public key certificate that contains the public key of the multicast/broadcast server, it uses the private key of the certificate authority to key to encrypt the public key certificate of the multicast/broadcast server, and become the public key certificate issued by the certificate authority for the multicast/broadcast server; A2. The multicast/broadcast server sends the public key certificate issued by the certificate authority to the user, and the user Storing the public key certificate containing the public key of the multicast/broadcast server, the step C includes: the user uses the public key in the public key certificate of the multicast/broadcast server to verify whether the digital signature in the received information is valid.

所述步骤A2进一步包括:用户请求证书机构向其提供与证书机构私钥相对应的公钥,用户存储收到的所述证书机构公钥,并使用证书机构公钥检验所述公钥证书的有效性,如果有效,则用户存储所述公钥证书;否则,用户丢弃所述公钥证书。The step A2 further includes: the user requests the certificate authority to provide the public key corresponding to the private key of the certificate authority, the user stores the received public key of the certificate authority, and uses the public key of the certificate authority to verify the validity of the public key certificate Validity, if valid, the user stores the public key certificate; otherwise, the user discards the public key certificate.

较佳地,所述步骤B包括:多播/广播服务器使用与步骤A中所述公钥相对应的多播/广播服务器私钥对信息进行数字签名后发送给用户;所述步骤C包括:用户使用步骤A中所述公钥检验收到信息中的数字签名是否有效。Preferably, the step B includes: the multicast/broadcast server uses the multicast/broadcast server private key corresponding to the public key in step A to digitally sign the information and then sends it to the user; the step C includes: The user uses the public key mentioned in step A to verify whether the digital signature in the received information is valid.

所述步骤B进一步包括以下步骤:B1、多播/广播服务器使用摘要算法对信息内容进行摘要处理后,使用所述多播/广播服务器私钥对所述摘要进行加密,然后将信息内容与加密后的摘要一同发送给用户;B2、用户收到信息后,使用所述摘要算法对信息内容进行摘要处理后得到摘要;B3、用户使用与多播/广播服务器私钥相对应的多播/广播服务器公钥对接收信息内容中的摘要进行解密,然后判断解密得到的摘要是否与用户计算出的摘要相一致。The step B further includes the following steps: B1. After the multicast/broadcast server digests the information content using a digest algorithm, it encrypts the digest with the private key of the multicast/broadcast server, and then combines the information content with the encrypted The final summary is sent to the user together; B2. After the user receives the information, the user uses the summary algorithm to perform summary processing on the information content to obtain a summary; B3. The user uses the multicast/broadcast corresponding to the multicast/broadcast server private key The server public key decrypts the digest in the received information content, and then judges whether the decrypted digest is consistent with the digest calculated by the user.

所述步骤B之前进一步包括:多播/广播服务器在信息内容中附加标识信息发送时间的时间戳;步骤C中所述判定所述信息具有完整性之后进一步包括:用户判断信息的时间戳是否晚于自身存储的时间戳,如果是,将自身存储的时间戳更新为收到信息的时间戳;否则,认为该消息是非法重复使用的,抛弃该消息。Before the step B, it further includes: the multicast/broadcast server adds a time stamp identifying the sending time of the information to the information content; after the step C determines that the information has integrity, it further includes: the user judges whether the time stamp of the information is late If it is based on the timestamp stored by itself, update the timestamp stored by itself to the timestamp of the received message; otherwise, consider the message to be illegally reused and discard the message.

步骤C中所述判定所述信息不具有完整性之后进一步包括D:用户经过时间延迟后向多播/广播服务器反馈异常信息。After determining that the information is not complete in step C, it further includes D: after a time delay, the user feeds back abnormal information to the multicast/broadcast server.

所述步骤D之后进一步包括E:多播/广播服务器通知所有用户停止反馈异常信息。After the step D, it further includes E: the multicast/broadcast server notifies all users to stop feeding abnormal information.

不同用户具有不同的所述时间延迟。Different users have different said time delays.

若所述信息是多播/广播业务信息,则所述步骤B进一步包括:多播/广播服务器加密所述多播/广播业务信息。If the information is multicast/broadcast service information, the step B further includes: the multicast/broadcast server encrypts the multicast/broadcast service information.

根据本发明提出的方法,对多播/广播服务器发送的信息进行安全性保护,使用户能够对收到的信息进行检验,从而确定收到的信息是否具有完整性,并且确定发送该信息的消息源是否可靠,有效防止多播/广播业务中信息被他人恶意篡改或伪造。另外,本发明通过对多播/广播服务器发送的信息附加时间戳,防止信息被他人重复使用。本发明还提供多种实施方式,可根据实际应用进行灵活选择;在采用数字签名方式保证信息完整性及安全性时,多播/广播服务器将公钥加密后发送给用户,可防止攻击者在公钥发送途中进行篡改或替换。According to the method proposed by the present invention, the security protection of the information sent by the multicast/broadcast server is carried out, so that the user can check the received information, thereby determining whether the received information has integrity, and determining the message sending the information Whether the source is reliable can effectively prevent the information in the multicast/broadcast service from being maliciously tampered with or forged by others. In addition, the present invention prevents information from being reused by others by adding a time stamp to the information sent by the multicast/broadcast server. The present invention also provides multiple implementations, which can be flexibly selected according to actual applications; when digital signatures are used to ensure information integrity and security, the multicast/broadcast server encrypts the public key and sends it to the user, which can prevent attackers from The public key is tampered with or replaced during transmission.

附图说明Description of drawings

图1为本发明中实现信令信息完整性及安全性的流程图;Fig. 1 is the flow chart that realizes signaling information integrity and security in the present invention;

图2为本发明中另一实施例示意图。Fig. 2 is a schematic diagram of another embodiment of the present invention.

具体实施方式Detailed ways

为使本发明的目的、技术方案和优点更加清楚,下面结合附图对本发明作进一步的详细描述。In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings.

本发明中,多播/广播服务器使用私钥对发送的信息内容进行完整性保护,群组内用户使用与私钥相对应的公钥检验收到的信息中的完整性信息是否有效,如果是,则证明信息内容没有在发送途中被修改并且发送信息的消息源是可靠的,因此信息具有完整性,按照信息的指示进行相应操作,否则,信息不具有完整性,不对收到的信息进行处理,从而保证用户收到信息的完整可靠性。In the present invention, the multicast/broadcast server uses the private key to protect the integrity of the sent information content, and the users in the group use the public key corresponding to the private key to check whether the integrity information in the received information is valid. , it proves that the content of the information has not been modified during sending and the source of the sending information is reliable, so the information has integrity, and the corresponding operation is performed according to the instructions of the information, otherwise, the information does not have integrity, and the received information is not processed , so as to ensure the integrity and reliability of the information received by users.

图1为本发明中实现信令信息完整性及安全性的流程图,如图1所示,实现信令信息完整性及安全性的处理流程包括以下步骤:Fig. 1 is the flow chart that realizes signaling information integrity and security in the present invention, as shown in Fig. 1, the processing flow that realizes signaling information integrity and security comprises the following steps:

步骤101~步骤103:多播/广播服务器向群组内用户发送自身的公钥。多播/广播服务器使用与公钥相对应的私钥对信令信息内容进行数字签名,然后广播给群组内用户;群组内用户使用公钥验证信令信息中的数字签名是否有效,如果是,则证明信令信息内容没有在发送途中被修改并且发送信令信息的消息源是可靠的,因此信令信息具有完整性和安全性,按照信令信息的指示进行相应操作,否则,不对收到的信令信息进行处理,或经过一定的时间延迟后执行步骤104。Step 101 to Step 103: the multicast/broadcast server sends its own public key to the users in the group. The multicast/broadcast server uses the private key corresponding to the public key to digitally sign the content of the signaling information, and then broadcasts it to the users in the group; the users in the group use the public key to verify whether the digital signature in the signaling information is valid, if Yes, it proves that the content of the signaling information has not been modified during transmission and the source of the signaling information is reliable, so the signaling information has integrity and security, and the corresponding operations are performed according to the instructions of the signaling information, otherwise, no The received signaling information is processed, or step 104 is executed after a certain time delay.

为增加公钥的安全性,防止公钥在发送途中被他人恶意篡改,多播/广播服务器可将公钥进行完整性保护和加密后发送给群组内用户,群组内用户对收到的公钥进行解密并验证完整性后才进行存储。In order to increase the security of the public key and prevent the public key from being maliciously tampered with by others during transmission, the multicast/broadcast server can protect the integrity and encryption of the public key and send it to the users in the group. The public key is decrypted and its integrity verified before being stored.

步骤104~步骤105:经过一定的时间延迟后,群组内用户向多播/广播服务器反馈异常信息,多播/广播服务器收到群组内用户反馈的异常信息后,可以根据相应的策略通知所有群组内用户停止反馈异常信息,避免所有群组内用户反馈相同的异常信息,造成对多播/广播业务系统资源的浪费,相应的策略可以是反馈异常的群组内用户超过一定的数目才发送停止反馈通知,因为可能出现某个群组内用户做完整性校验时自身错误,而不是真正的信令信息被修改,这样就不会有大量群组内用户反馈,停止反馈的通知也就没有必要,如果群组内用户自身出现了异常就要进入其它处理流程,不在本发明描述范围之内。为避免大量群组内用户在同一时间向多播/广播服务器反馈相同的异常信息,更为有效地避免对多播/广播业务系统资源的浪费,可使不同群组内用户的时间延迟不相同,这样,多播/广播服务器只要收到相对少数量群组内用户反馈的异常信息后,就可通知所有群组内用户停止反馈异常信息。Step 104~Step 105: After a certain time delay, users in the group feed back abnormal information to the multicast/broadcast server, and the multicast/broadcast server can notify All users in the group stop feeding back abnormal information, so as to avoid all users in the group feeding back the same abnormal information, resulting in a waste of multicast/broadcast service system resources. The corresponding strategy can be that the number of users in the group that feedback abnormality exceeds a certain number The stop feedback notification is only sent, because there may be a user error in a certain group when doing the integrity check, rather than the real signaling information being modified, so there will not be a large number of users in the group feedback, stop feedback notification It is not necessary, if the user in the group has an abnormality, it will enter into other processing flow, which is not within the description scope of the present invention. In order to prevent a large number of users in a group from feeding back the same abnormal information to the multicast/broadcast server at the same time, and more effectively avoid the waste of multicast/broadcast service system resources, the time delay of users in different groups can be different In this way, as long as the multicast/broadcast server receives abnormal information fed back by a relatively small number of users in the group, it can notify all users in the group to stop feeding abnormal information.

为有效防止进行数字签名的信令信息被他人重复使用,可在多播/广播服务器广播的信令信息中进一步增加时间戳,多播/广播服务器对信令信息内容和时间戳一起进行数字签名,群组内用户验证数字签名有效后,继续通过时间戳判断当前收到的信令信息是否为最新的,即判断时间戳是否为新鲜的,如果是,则按照信令信息的指示进行相应操作;否则,不对收到的信令信息进行处理。In order to effectively prevent the digitally signed signaling information from being reused by others, a time stamp can be further added to the signaling information broadcast by the multicast/broadcast server, and the multicast/broadcast server digitally signs the content of the signaling information and the time stamp After verifying that the digital signature is valid, the users in the group continue to judge whether the currently received signaling information is the latest through the timestamp, that is, judge whether the timestamp is fresh, and if so, perform corresponding operations according to the instructions of the signaling information ; Otherwise, do not process the received signaling information.

群组内用户存储有多播/广播服务器发送信令信息的时间变量,以多播/广播服务器第一次发送信令信息的时间戳作为时间变量的初始值,群组内用户每收到一个具有完整性和安全性的信令信息,就更新自身存储的时间变量为当前收到信令信息的时间戳。判断时间戳是否为新鲜的过程为:群组内用户收到信令信息后,将该信令信息中的时间戳与自身存储的时间戳相比较,如果当前收到信令信息的时间戳比自身存储的时间戳晚,则确认该信令信息是有效的新信令信息,按照信令信息的指示进行相应操作并更新自身存储的时间戳为当前收到信令信息的时间戳;如果当前收到信令信息的时间戳比自身存储的时间戳早或相同,则确认该信令信息为无效的信令信息,不对收到的信令信息进行处理。如果有多个多播/广播服务器,则群组内用户针对不同的多播/广播服务器存储与每个多播/广播服务器相对应的时间变量。The users in the group store the time variable of the signaling information sent by the multicast/broadcast server. The initial value of the time variable is the time stamp when the multicast/broadcast server sends the signaling information for the first time. Every time a user in the group receives a For signaling information with integrity and security, the time variable stored in itself is updated to be the timestamp of the currently received signaling information. The process of judging whether the timestamp is fresh is as follows: After receiving the signaling information, the users in the group compare the timestamp in the signaling information with the timestamp stored in themselves. If the timestamp of the currently received signaling information is older than If the timestamp stored by itself is late, confirm that the signaling information is valid new signaling information, perform corresponding operations according to the instructions of the signaling information and update the timestamp stored by itself to the timestamp of the current received signaling information; if the current If the time stamp of the received signaling information is earlier or the same as the time stamp stored in itself, the signaling information is confirmed to be invalid signaling information, and the received signaling information is not processed. If there are multiple multicast/broadcast servers, the users in the group store time variables corresponding to each multicast/broadcast server for different multicast/broadcast servers.

图2为本发明中另一实施例示意图,如图2所示,本实施例中实现信令信息完整性及安全性的处理流程包括以下步骤:FIG. 2 is a schematic diagram of another embodiment of the present invention. As shown in FIG. 2, the processing flow for realizing the integrity and security of signaling information in this embodiment includes the following steps:

步骤201~步骤202:用户请求加入多播/广播业务,多播/广播服务器对用户身份进行验证,验证用户身份的同时,多播/广播服务器和用户同时生成并存储加密密钥和用于完整性保护的完整性密钥;如果用户通过身份验证,则用户被多播/广播服务器确认为群组内用户,多播/广播服务器向群组内用户发送经过完整性密钥保护和加密密钥加密的公钥;群组内用户收到加密的公钥后,使用自身存储的加密密钥和完整性密钥进行解密进行完整性校验,从解密成功且完整性校验通过后存储该公钥。如果用户没有通过身份验证,则多播/广播服务器拒绝向其提供多播/广播业务服务。Steps 201 to 202: The user requests to join the multicast/broadcast service, and the multicast/broadcast server verifies the user's identity. While verifying the user's identity, the multicast/broadcast server and the user simultaneously generate and store an encryption key and an encryption key for complete Integrity key with permanent protection; if the user passes the identity verification, the user will be confirmed as a user in the group by the multicast/broadcast server, and the multicast/broadcast server will send the integrity key protected and encrypted key to the user in the group Encrypted public key; after users in the group receive the encrypted public key, they use their own stored encryption key and integrity key to decrypt and perform integrity verification, and store the public key after the decryption succeeds and the integrity verification passes. key. If the user is not authenticated, the multicast/broadcast server refuses to provide the multicast/broadcast service.

步骤203~步骤204:多播/广播服务器使用与公钥相对应的私钥对信令信息内容和时间戳一起进行数字签名,然后广播发送给群组内用户;群组内用户使用公钥验证信令信息中的数字签名是否有效,如果是,则证明信令信息内容和时间戳没有在发送途中被修改,并且发送信令信息的消息源是可靠的,因此信令信息具有完整性和安全性,然后执行步骤205,否则,不对收到的信令信息进行处理,或经过一定的时间延迟后执行步骤206。Steps 203 to 204: The multicast/broadcast server uses the private key corresponding to the public key to digitally sign the content of the signaling information and the time stamp, and then broadcasts it to the users in the group; the users in the group use the public key to verify Whether the digital signature in the signaling information is valid, if so, it proves that the content and time stamp of the signaling information have not been modified during the transmission, and the source of the signaling information is reliable, so the signaling information has integrity and security , then execute step 205, otherwise, do not process the received signaling information, or execute step 206 after a certain time delay.

可通过摘要算法对信令信息内容和时间戳一起进行数字签名,可使用的摘要算法包括MD5算法、SHA-1算法等,使用摘要算法对信令信息中内容和时间戳一起进行摘要处理,然后使用只有多播/广播服务器自己知道的私钥对摘要进行加密,最后将加密后的摘要附在信令信息内容和时间戳的后面,成为信令信息内容和时间戳的数字签名,广播发送给群组内用户。The content of the signaling information and the timestamp can be digitally signed through the digest algorithm. The digest algorithm that can be used includes the MD5 algorithm, the SHA-1 algorithm, etc., and the digest algorithm is used to perform digest processing on the content of the signaling information and the timestamp together, and then The digest is encrypted with a private key that only the multicast/broadcast server itself knows, and finally the encrypted digest is attached to the content of the signaling information and the time stamp to become a digital signature of the content of the signaling information and the time stamp, and broadcast to users in the group.

群组内用户收到信令信息后,使用与私钥相对应的公钥检验信令信息中的数字签名是否有效,检验的过程是:使用相同的摘要算法对信令信息内容和时间戳进行摘要处理后得到摘要,然后使用公钥对数字签名进行解密,将自身计算得到的摘要与解密得到的摘要进行比较,如果一致,则证明信令信息内容和时间戳没有在发送途中被修改,并且发送信令信息的消息源是可靠的,具有完整性和安全性;否则,信令信息不具有完整性和安全性。After the users in the group receive the signaling information, they use the public key corresponding to the private key to verify whether the digital signature in the signaling information is valid. After the digest is processed, the digest is obtained, and then the digital signature is decrypted using the public key, and the digest obtained by itself is compared with the digest obtained by decryption. If they are consistent, it proves that the content of the signaling information and the time stamp have not been modified during transmission, and The message source that sends the signaling information is reliable and has integrity and security; otherwise, the signaling information does not have integrity and security.

摘要算法可对不固定长度的输入计算出固定长度的输出,并且根据输出无法反推出输入是什么,不同的输入对应的输出是不同的,而且即使对输入进行很小的改动,都会得到不同的输出,甚至导致变化非常大的输出。由于私钥只有多播/广播服务器自己知道,因此通过数字签名使他人无法假冒多播/广播服务器向群组内用户广播信令信息;并且通过对数字签名的验证,使他人无法在信令信息的发送途中修改信令信息内容和时间戳,而不被群组内用户发现。The abstract algorithm can calculate a fixed-length output for an input of an unfixed length, and it is impossible to deduce what the input is based on the output. Different inputs correspond to different outputs, and even if a small change is made to the input, a different result will be obtained. output, even resulting in very variable output. Since the private key is only known by the multicast/broadcast server itself, it is impossible for others to fake the multicast/broadcast server to broadcast signaling information to users in the group through digital signatures; Modify the signaling information content and time stamp during the sending process without being discovered by users in the group.

步骤205:群组内用户检查信令信息的时间戳是否是新鲜的,如果是,更新自身存储的时间变量为当前收到信令信息的时间戳,并按照信令信息的指示进行相应操作;否则,不对收到的信令信息进行处理,或经过一定的时间延迟后执行步骤206。Step 205: The users in the group check whether the time stamp of the signaling information is fresh, if so, update the time variable stored by themselves to the time stamp of the currently received signaling information, and perform corresponding operations according to the instructions of the signaling information; Otherwise, the received signaling information is not processed, or step 206 is executed after a certain time delay.

步骤206~步骤207:群组内用户的时间延迟各不相同,某个群组内用户经过一定的自身时间延迟后,向多播/广播服务器反馈异常信息,多播/广播服务器收到群组内用户反馈的异常信息后,通知所有群组内用户停止反馈异常信息,避免所有群组内用户反馈相同的异常信息,造成对多播/广播业务系统资源的浪费。Step 206-Step 207: The time delays of users in a group are different. After a certain time delay of a user in a group, the abnormal information is fed back to the multicast/broadcast server, and the multicast/broadcast server receives the group After receiving abnormal information fed back by internal users, notify all users in the group to stop feeding abnormal information, so as to avoid the waste of multicast/broadcast service system resources caused by feedback of the same abnormal information by users in all groups.

另外,无线通信网络可同公钥基础设施(PKI)相结合。PKI系统由若干设备组成,提供一个可信任的应用环境,使上述公钥/私钥加密解密的方法能够应用于各种业务服务。PKI系统中包含证书机构(CA),证书机构是一个权威机构,可被所有用户或实体完全信任。In addition, the wireless communication network can be combined with a public key infrastructure (PKI). The PKI system is composed of several devices, providing a trusted application environment, so that the above public key/private key encryption and decryption method can be applied to various business services. Included in the PKI system is a Certificate Authority (CA), which is an authority that is fully trusted by all users or entities.

多播/广播服务器将其公钥安全地提供给证书机构,由证书机构作成公钥证书,公钥证书包括多播/广播服务器的公钥和私有信息,私有信息包括名称、地址等信息。证书机构将多播/广播服务器的公钥和私有信息作成公钥证书,并使用自身的私钥对公钥证书进行数字签名而成为正式的公钥证书,证书机构的数字签名证明该公钥证书是其颁发的。由于证书机构是一个权威机构,因此所有用户或实体可以绝对信任的其颁发的公钥证书。证书机构的私钥是需要极度保密的;与证书机构的私钥相对应的公钥是公开的,群组内用户安全的获取证书机构的公钥后,就可使用证书机构的公钥检验多播广播服务器的公钥证书的有效性。The multicast/broadcast server securely provides its public key to the certificate authority, and the certificate authority makes a public key certificate. The public key certificate includes the public key and private information of the multicast/broadcast server. The private information includes information such as name and address. The certificate authority makes the public key and private information of the multicast/broadcast server into a public key certificate, and uses its own private key to digitally sign the public key certificate to become a formal public key certificate. The digital signature of the certificate authority proves the public key certificate issued by it. Since the certificate authority is an authority, all users or entities can absolutely trust the public key certificates issued by it. The private key of the certificate authority needs to be kept extremely confidential; the public key corresponding to the private key of the certificate authority is public. After the users in the group securely obtain the public key of the certificate authority, they can use the public key of the certificate authority to verify multiple The validity of the public key certificate of the broadcast broadcast server.

例如,群组内用户存储从证书机构中安全获取的证书机构的公钥。多播/广播服务器向群组内用户发送自己的公钥证书,这个发送过程是不需要保密的,群组内用户在收到多播/广播服务器的公钥证书后,使用证书机构的公钥对得到的公钥证书进行验证,检验其是否是证书机构颁发的,如果是就认为是多播/广播服务器的合法的公钥证书,用户存储这个公钥证书。用户收到经过多播/广播服务器数字签名的信令信息后,使用公钥证书中的公钥验证信令信息中的数字签名,如果验证成功,则证明信令信息没有在发送途中被修改,并且发送信令信息的消息源是可靠的,因此信令信息具有完整性和安全性;否则,不对收到的信令信息进行处理。For example, the users in the group store the public key of the certificate authority obtained securely from the certificate authority. The multicast/broadcast server sends its own public key certificate to the users in the group. This sending process does not need to be kept secret. After receiving the public key certificate of the multicast/broadcast server, the users in the group use the public key of the certificate authority Verify the obtained public key certificate to check whether it is issued by the certificate authority. If it is, it is considered to be a legal public key certificate of the multicast/broadcast server, and the user stores this public key certificate. After receiving the signaling information digitally signed by the multicast/broadcast server, the user uses the public key in the public key certificate to verify the digital signature in the signaling information. If the verification is successful, it proves that the signaling information has not been modified during transmission. And the source of the signaling information is reliable, so the signaling information has integrity and security; otherwise, the received signaling information is not processed.

在实际应用中,无线通信网络与公钥基础设施(PKI)相结合时,同样可增加时间戳,用以防止信令信息被他人重复使用;群组内用户发现信令信息无效时,可向多播/广播服务器反馈异常信息。In practical applications, when the wireless communication network is combined with the public key infrastructure (PKI), time stamps can also be added to prevent the signaling information from being reused by others; when users in the group find that the signaling information is invalid, they can send The multicast/broadcast server returns abnormal information.

另外,当终端设备的能力及无线带宽足够时,可将上述方法应用于多播/广播业务中的业务信息。In addition, when the capabilities and wireless bandwidth of the terminal equipment are sufficient, the above method can be applied to service information in multicast/broadcast services.

总之,以上所述仅为本发明的较佳实施例而已,并非用于限定本发明的保护范围。In a word, the above descriptions are only preferred embodiments of the present invention, and are not intended to limit the protection scope of the present invention.

Claims (12)

1, a kind of guard method of information integrity is characterized in that the method includes the steps of:
A, user obtain and store the PKI of multicast;
The information that B, multicast will have been carried out integrity protection sends to the user;
C, user use described PKI check to receive whether the integrity protection information in the information is effective, if, judge that described information has integrality, otherwise, judge that described information does not have integrality.
2, method according to claim 1 is characterized in that, described steps A comprises: multicast sends the multicast PKI to the user, the described PKI that user storage is received.
3, method according to claim 2; it is characterized in that; described steps A further comprises: Integrity Key and encryption key that multicast uses the user to add the generation of multicast/broadcast business verification process carry out integrity protection and encryption to the multicast PKI; send to the user then, the described PKI that user's deciphering is received also carries out storing behind the completeness check.
4, method according to claim 1 is characterized in that,
Described steps A further may further comprise the steps:
A1, multicast provide the multicast PKI to certificate agency, after certificate agency generates and comprises the public key certificate of multicast PKI, use the public key certificate of the encrypted private key multicast of certificate agency, becoming certificate agency is the public key certificate that multicast is issued;
A2, multicast send described certificate agency to the user and are its public key certificate of issuing, and user storage comprises the public key certificate of multicast PKI;
Described step C comprises: the user uses the PKI check in the multicast public key certificate to receive whether the digital signature in the information is effective.
5, method according to claim 4, it is characterized in that, described steps A 2 further comprises: the user asks certificate agency to provide and the corresponding PKI of certificate agency private key to it, the described certificate agency PKI that user storage is received, and use the certificate agency PKI to check the validity of described public key certificate, if effectively, the described public key certificate of user storage then; Otherwise the user abandons described public key certificate.
6, method according to claim 1 is characterized in that,
Described step B comprises: multicast is used with the corresponding multicast private key of PKI described in the steps A information is carried out sending to the user after the digital signature;
Described step C comprises: the user uses the check of PKI described in the steps A to receive whether the digital signature in the information is effective.
7, method according to claim 6 is characterized in that, described step B further may further comprise the steps:
B1, multicast use digest algorithm to the information content make a summary handle after, use described multicast private key that described summary is encrypted, then with the information content with encrypt after summary together send to the user;
After B2, user receive information, use described digest algorithm that the information content is made a summary and obtain summary after handling;
B3, user use the summary that dock in the breath content of collecting mail with the corresponding multicast PKI of multicast private key to be decrypted, and whether with summary that user calculate consistent in judgement if deciphering the summary that obtains then.
8, method according to claim 1 is characterized in that,
Further comprise before the described step B: the timestamp of multicast additional identification information transmitting time in the information content;
Judge described in the step C that described information further comprises after having integrality: whether the timestamp of user judgment information is later than the timestamp that self stores, if be the timestamp of receiving information with the update of time stamp of self storing; Otherwise, think that this message is illegally reusable, abandons this message.
9, method according to claim 1 is characterized in that, judge described in the step C that described information further comprises D after not having integrality: user's elapsed time postpones the back to multicast feedback abnormal information.
10, method according to claim 9 is characterized in that, further comprise E after the described step D: multicast notifies all users to stop to feed back abnormal information.
11, method according to claim 9 is characterized in that, different user has different described time delays.
12, method according to claim 1 is characterized in that, if described information is multicast/broadcast business information, then described step B further comprises: multicast is encrypted described multicast/broadcast business information.
CNB031561039A 2003-08-29 2003-08-29 A Method of Protecting Information Integrity Expired - Fee Related CN100454807C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNB031561039A CN100454807C (en) 2003-08-29 2003-08-29 A Method of Protecting Information Integrity

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB031561039A CN100454807C (en) 2003-08-29 2003-08-29 A Method of Protecting Information Integrity

Publications (2)

Publication Number Publication Date
CN1592195A true CN1592195A (en) 2005-03-09
CN100454807C CN100454807C (en) 2009-01-21

Family

ID=34598311

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB031561039A Expired - Fee Related CN100454807C (en) 2003-08-29 2003-08-29 A Method of Protecting Information Integrity

Country Status (1)

Country Link
CN (1) CN100454807C (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102932143A (en) * 2011-08-10 2013-02-13 上海康纬斯电子技术有限公司 Authentication, encryption and decryption and tamper-proofing method in digital interrogation device
CN103986541A (en) * 2014-05-22 2014-08-13 北京视博数字电视科技有限公司 Emergency broadcasting system
CN105469510A (en) * 2014-10-12 2016-04-06 吴思进 Encryption currency wallet capable of noticing in advance delayed payment or finding
CN108886466A (en) * 2016-01-18 2018-11-23 牛津大学创新有限公司 Improved Security Protocols
CN110149324A (en) * 2019-05-13 2019-08-20 特斯联(北京)科技有限公司 A kind of network anti-attack method, device and equipment
WO2024086995A1 (en) * 2022-10-24 2024-05-02 华为技术有限公司 Broadcast message protection method and related apparatus

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5748738A (en) * 1995-01-17 1998-05-05 Document Authentication Systems, Inc. System and method for electronic transmission, storage and retrieval of authenticated documents
US5812666A (en) * 1995-03-31 1998-09-22 Pitney Bowes Inc. Cryptographic key management and validation system
FR2831360B1 (en) * 2001-10-19 2004-02-06 Viaccess Sa INTERACTIVE PROTOCOL FOR THE REMOTE MANAGEMENT OF ACCESS CONTROL OF BROKEN INFORMATION
US7251730B2 (en) * 2001-12-21 2007-07-31 Qualcomm Incorporated Method and apparatus for simplified audio authentication

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102932143A (en) * 2011-08-10 2013-02-13 上海康纬斯电子技术有限公司 Authentication, encryption and decryption and tamper-proofing method in digital interrogation device
CN102932143B (en) * 2011-08-10 2016-04-06 上海康纬斯电子技术有限公司 Certification in digital interrogation device, encrypting and decrypting and tamper resistant method
CN103986541A (en) * 2014-05-22 2014-08-13 北京视博数字电视科技有限公司 Emergency broadcasting system
CN103986541B (en) * 2014-05-22 2017-01-11 北京视博数字电视科技有限公司 Emergency broadcasting system
CN105469510A (en) * 2014-10-12 2016-04-06 吴思进 Encryption currency wallet capable of noticing in advance delayed payment or finding
CN108886466A (en) * 2016-01-18 2018-11-23 牛津大学创新有限公司 Improved Security Protocols
CN110149324A (en) * 2019-05-13 2019-08-20 特斯联(北京)科技有限公司 A kind of network anti-attack method, device and equipment
WO2024086995A1 (en) * 2022-10-24 2024-05-02 华为技术有限公司 Broadcast message protection method and related apparatus

Also Published As

Publication number Publication date
CN100454807C (en) 2009-01-21

Similar Documents

Publication Publication Date Title
US6161181A (en) Secure electronic transactions using a trusted intermediary
US7620824B2 (en) Data communicating apparatus, data communicating method, and program
EP1622301B1 (en) Methods and system for providing a public key fingerprint list in a PK system
US6145079A (en) Secure electronic transactions using a trusted intermediary to perform electronic services
CN109743171B (en) Key series method for solving multi-party digital signature, timestamp and encryption
US20080046743A1 (en) System and method for automatically signing electronic documents
US20010037453A1 (en) Secure electronic transactions using a trusted intermediary with non-repudiation of receipt and contents of message
EP2595340A2 (en) Cryptographic document processing in a network
US20080025515A1 (en) Systems and Methods for Digitally-Signed Updates
US8694789B2 (en) System and method for generating a non-repudiatable record of a data stream
CN1268264A (en) Digitally signing agreements from remotely located nodes
US20050228999A1 (en) Audit records for digitally signed documents
Kelsey et al. Signed syslog messages
CN113191863B (en) Bidding method, third-party equipment, bid issuer equipment and bidder equipment
CN111934884A (en) Certificate management method and device
CN102077542B (en) Secure digital communications
US20080133906A1 (en) Efficient security information distribution
CN112948896A (en) Signature information verification method and information signature method
CN100454807C (en) A Method of Protecting Information Integrity
US20220278832A1 (en) Computer network apparatus
CN119814323A (en) A certificateless strong anonymous aggregate signcryption method in Internet of Vehicles
CN115174277B (en) Data communication and file exchange method based on block chain
US8538893B1 (en) Apparatus and method for electronic transaction evidence archival and retrieval
CN119109657A (en) Trusted transmission method and system based on trusted industrial control system
CN113572615B (en) Method, system, equipment and storage medium for identity authentication of distributed network users

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C17 Cessation of patent right
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20090121

Termination date: 20130829