[go: up one dir, main page]

TWI393406B - Integrating mobile content sharing and delivery system and its method in integrated network environment - Google Patents

Integrating mobile content sharing and delivery system and its method in integrated network environment Download PDF

Info

Publication number
TWI393406B
TWI393406B TW98112055A TW98112055A TWI393406B TW I393406 B TWI393406 B TW I393406B TW 98112055 A TW98112055 A TW 98112055A TW 98112055 A TW98112055 A TW 98112055A TW I393406 B TWI393406 B TW I393406B
Authority
TW
Taiwan
Prior art keywords
mobile terminal
home server
network environment
mobile
integrated network
Prior art date
Application number
TW98112055A
Other languages
Chinese (zh)
Other versions
TW201038032A (en
Original Assignee
Univ Nat Central
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Univ Nat Central filed Critical Univ Nat Central
Priority to TW98112055A priority Critical patent/TWI393406B/en
Publication of TW201038032A publication Critical patent/TW201038032A/en
Application granted granted Critical
Publication of TWI393406B publication Critical patent/TWI393406B/en

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Description

整合網路環境中行動內容分享與傳送系統及其方法Mobile content sharing and transmission system and method thereof in integrated network environment

本發明係有關一種網路環境中資料傳輸之技術,特別是指一種整合網路環境中行動內容分享與傳送系統及其方法。The present invention relates to a technology for data transmission in a network environment, and more particularly to a mobile content sharing and transmission system and method thereof in an integrated network environment.

按,現今的無線通訊技術以及行動手持裝置(Mobile Handheld Device,MHD)的發展讓使用者能輕易地透過各種不同行動網路連結上網並存取許多不同的資訊服務。從另外一個角度來看,許多行動手持裝置都配備有簡易的數位相機功能,甚至有些高階機種也可進行錄音、錄影等多媒體功能。因此,行動手持裝置不僅能由網際網路下載多媒體資料,其裝置本身就可以產生多媒體的內容;同時,輔以儲存技術的演進以及容量的增加,在手持裝置上能夠儲存的多媒體內容越來越多,多到可以作為一個「具行動性的資訊內容提供裝置」。當這樣的情況發生後,使用者群很自然的就會有和其他行動裝置交換、分享內容的需求。According to today's wireless communication technology and the development of Mobile Handheld Device (MHD), users can easily access the Internet and access many different information services through various mobile networks. From another point of view, many mobile handheld devices are equipped with simple digital camera functions, and even some high-end models can perform multimedia functions such as recording and video recording. Therefore, the mobile handset can not only download multimedia data from the Internet, but the device itself can generate multimedia content. At the same time, with the evolution of storage technology and the increase of capacity, the multimedia content that can be stored on the handheld device is more and more More, more can be used as a "moving information content providing device." When such a situation occurs, the user community naturally has the need to exchange and share content with other mobile devices.

如第一圖所示,實際上一個行動裝置附近通常會有兩到三個無線通訊方式,舉例來說現有許多的行動電話通常就會有無線區域網路、電信網路以及藍芽等等通訊模組。一台手持裝置由於可以同時接入不同網路,因此可能在不同的網路介面上執行不同的網路服務(譬如在GSM/UMTS介面上執行手機通信功能,在WiFi執行網頁存取/多媒體分享等等服務),倘若這些分散在不同網路上的服務能夠被更進一步地結合成可在多重網路環境上執行的整合式網路軟體,如此,這樣的一個整合網路環境將能夠提供我們一個全新、有待開發且很有潛力的無所不在資訊服務的發展空間。As shown in the first figure, there are usually two or three wireless communication methods in the vicinity of a mobile device. For example, many existing mobile phones usually have wireless local area network, telecommunication network, and Bluetooth communication. Module. Since a handheld device can access different networks at the same time, it is possible to perform different network services on different network interfaces (for example, performing mobile communication functions on the GSM/UMTS interface, and performing web access/multimedia sharing in WiFi). Such services, if these services scattered on different networks can be further integrated into integrated network software that can be executed in multiple network environments, such an integrated network environment will be able to provide us with one A new, ubiquitous information service development space that needs to be developed and has potential.

假設有兩個行動裝置使用者A跟B同時處在同一個無線網路底下,使用者A想要分享一些存在他裝置中的內容給使用者B,使用者A的行動手持裝置首先會自動找到使用者B的行動手持裝置,接著與使用者B的行動手持裝置進行溝通、準備、開始傳送資料。若在傳輸過程中,使用者B必須移動到別的地方,此時,使用者A的行動手持裝置會與家中的伺服器溝通(可能經由行動、有線或是無線網路等方式)要求允許讓使用者B下載特定檔案,接著使用者A提供使用者B一組特定憑證用以執行未完成的下載過程。隨後當使用者B離開後,即使此時使用者A與B已經處在不同的網域,使用者B仍然可以在其他網路中繼續下載內容。Suppose there are two mobile device users A and B are under the same wireless network at the same time. User A wants to share some content existing in his device to user B. User A's mobile handheld device will automatically find it first. User B's mobile handset, then communicates with User B's mobile handset, prepares, and begins transmitting data. If user B has to move to another place during the transmission, user A's mobile device will communicate with the server at home (perhaps via mobile, wired or wireless network). User B downloads a particular file, and User A provides User B a specific set of credentials to perform the unfinished download process. Then, after user B leaves, even if users A and B are already in different domains, user B can continue to download content on other networks.

相較於固接網路而言,無線網路和行動網路有一些不同的特性以及弱點,列舉如下:Compared to fixed networks, wireless networks and mobile networks have some different features and weaknesses, as listed below:

1. 低傳輸吞吐量:這種本質上的限制,使得以行動手持裝置來傳輸大量資訊內容將會需要很長的一段時間。1. Low transmission throughput: This inherent limitation makes it necessary for a mobile handset to transmit large amounts of information content for a long time.

2. 有限制的電力:幾乎所有手持裝置都使用電池。因此為了避免電力消耗過快,長距離的傳輸應當盡量避免。2. Limited power: Almost all handheld devices use batteries. Therefore, in order to avoid excessive power consumption, long-distance transmission should be avoided as much as possible.

3. 有限制的傳輸範圍:以經過一個節點的情況來說,PAN或是WLAN的涵蓋範圍通常都限制在幾、數十公尺內。因此在傳輸時,兩裝置的移動距離就會受到限制,必須要維持在同一網路範圍內進行傳輸。3. Limited transmission range: In the case of one node, the coverage of PAN or WLAN is usually limited to several or tens of meters. Therefore, when transmitting, the moving distance of the two devices is limited, and it is necessary to maintain transmission within the same network range.

4. 缺乏移動性支援:行動網路系統通常只能提供終端設備移動性的支援。但是對於服務而言需要有跨網路的移動性支援,這對目前的行動網路系統來說則是一項挑戰。4. Lack of mobility support: Mobile network systems typically only provide support for end device mobility. But for services, cross-network mobility support is needed, which is a challenge for current mobile network systems.

因此,本發明即提出一種整合網路環境中行動內容分享與傳送系統及其方法,以有效克服上述之該等問題,具體架構及其實施方式將詳述於下。Therefore, the present invention proposes a mobile content sharing and transmission system and method thereof in an integrated network environment to effectively overcome the above problems, and the specific architecture and implementation manner thereof will be described in detail below.

本發明之主要目的在提供一種整合網路環境中行動內容分享與傳送系統及其方法,其係利用一家庭伺服器提供非同步內容傳輸之技術,以讓行動裝置在混合之異質網路下可不受到移動及傳輸距離之限制,而不需更改網路裝置之連線、檔案傳輸模式等設定。The main object of the present invention is to provide a mobile content sharing and transmission system and method thereof in an integrated network environment, which utilizes a home server to provide asynchronous content transmission technology to allow mobile devices to be in a mixed heterogeneous network. It is limited by the movement and transmission distance, without changing the connection of the network device, file transfer mode and other settings.

本發明之另一目的在提供一種整合網路環境中行動內容分享與傳送系統,其係包括三種非同步內容傳輸服務:直接下載、透過家庭伺服器重新導向下載及接續傳輸。Another object of the present invention is to provide a mobile content sharing and delivery system in an integrated network environment that includes three types of asynchronous content delivery services: direct download, redirected download via home server, and subsequent transmission.

本發明之再一目的在提供一種整合網路環境中行動內容分享與傳送系統,其係利用一雙重金鑰保護機制使家庭伺服器相信做為接收方之第二行動端為可信賴者,此雙重金鑰保護機制係讓家庭伺服器及做為提供方之第一行動端預先產生提供者金鑰,以確保兩者間之信賴關係,且家庭伺服器並在傳輸交易開啟時自動產生一交易金鑰以確保家庭伺服器與第二行動端之連線。A further object of the present invention is to provide a mobile content sharing and delivery system in an integrated network environment, which utilizes a dual key protection mechanism to make the home server believe that the second mobile terminal is a trusted party. The dual key protection mechanism allows the home server and the first mobile terminal as the provider to pre-generate the provider key to ensure the trust relationship between the two, and the home server automatically generates a transaction when the transmission transaction is opened. The key is used to ensure the connection between the home server and the second mobile terminal.

為達上述之目的,本發明提供一種整合網路環境中行動內容分享與傳送系統,其係包括一第一行動端,將資訊傳送到網際網路上;一家庭伺服器,其係暫存或儲存第一行動端之資訊,並搜尋資訊之至少一接收端以建立第一行動端及接收端之連線;以及至少一第二行動端,做為接收端接收家庭伺服器所傳送之資料。To achieve the above objective, the present invention provides a mobile content sharing and delivery system in an integrated network environment, which includes a first mobile terminal for transmitting information to the Internet; and a home server for temporary storage or storage. The information of the first mobile terminal searches for at least one receiving end of the information to establish a connection between the first mobile terminal and the receiving end; and at least one second mobile terminal serves as the receiving end to receive the data transmitted by the home server.

本發明另提供一種在整合網路環境中安全傳輸之方法,其係在一第一行動端、一家庭伺服器及至少一第二行動端之間連線中斷時要求繼續傳輸之機制,包括下列步驟:家庭伺服器提供一傳輸期限給第一行動端及第二行動端之間的傳輸交易;第一行動端及家庭伺服器預先產生一提供者金鑰;第二行動端開始接續下載;以及家庭伺服器於傳輸交易開始後自動產生一交易金鑰,以保護家庭伺服器及第二行動端間之連線。The present invention further provides a method for secure transmission in an integrated network environment, which is a mechanism for requesting continued transmission when a connection between a first mobile terminal, a home server, and at least a second mobile terminal is interrupted, including the following Step: the home server provides a transmission period to the transmission transaction between the first mobile terminal and the second mobile terminal; the first mobile terminal and the home server pre-generate a provider key; and the second mobile terminal starts to download; The home server automatically generates a transaction key after the transmission transaction begins to protect the connection between the home server and the second mobile terminal.

底下藉由具體實施例詳加說明,當更容易瞭解本發明之目的、技術內容、特點及其所達成之功效。The purpose, technical content, features and effects achieved by the present invention will be more readily understood by the detailed description of the embodiments.

本發明提供一種整合網路環境中行動內容分享與傳送系統及其方法,第一圖所示為本發明中整合網路環境中行動內容分享與傳送系統之方塊圖,包括一第一行動端10,將資訊傳送到網際網路上之一家庭伺服器12,家庭伺服器12係暫存或儲存第一行動端10之資訊,並搜尋資訊之至少一做為接收端之第二行動端14以建立第一行動端10及第二行動端14之連線,使第二行動端14可透過家庭伺服器12接收到第一行動端10之資訊。The present invention provides a mobile content sharing and transmission system and method thereof in an integrated network environment. The first figure shows a block diagram of a mobile content sharing and transmission system in an integrated network environment, including a first mobile terminal 10 The information is transmitted to the home server 12 on the Internet. The home server 12 temporarily stores or stores the information of the first mobile terminal 10, and searches for at least one of the information as the second mobile terminal 14 of the receiving end to establish The connection between the first mobile terminal 10 and the second mobile terminal 14 enables the second mobile terminal 14 to receive the information of the first mobile terminal 10 through the home server 12.

第一行動端10及第二行動端14係使用隨插即用協定之中定址層(Address layer)、搜尋層(Discovery layer)、描述層(Description layer)及控制層(Control layer),其中定址層求得第一行動端10及第二行動端14各自之一網路位址,當第一行動端10及第二行動端14加入網路時,定址層以一動態主機配置協定(Dynamic Host Configuration Protocol,DHCP)或一自動IP模式要求定址,此自動IP模式係於動態主機配置協定不存在時使用;第一行動端10利用搜尋層採用一簡單服務搜尋協定(Simple Service Discocery Protocol,SSDP)在小型區域網路中分散式搜尋方式搜尋第二行動端14;第一行動端10及第二行動端14會定期於預先定義之位置上廣播,並透過描述層利用廣播之一訊息標頭來提示第一行動端10及第二行動端14之一描述文件的存取位置;控制層利用一簡單物件存取協定(Simple Object Access Protocol,SOAP)客製化而成,整合了HTTP和XML技術提供一套以Web服務為基礎之訊息傳遞與遠端控制之服務,因此藉由控制層可提供第一行動端10及第二行動端14之間資料交換與內容分享瀏覽。The first mobile terminal 10 and the second mobile terminal 14 use an address layer, a search layer, a description layer, and a control layer in the plug-and-play protocol, where the address is addressed. The layer obtains a network address of each of the first mobile terminal 10 and the second mobile terminal 14. When the first mobile terminal 10 and the second mobile terminal 14 join the network, the addressing layer is configured by a dynamic host (Dynamic Host). Configuration Protocol (DHCP) or an automatic IP mode requires addressing. This automatic IP mode is used when the dynamic host configuration protocol does not exist. The first mobile terminal 10 uses the search layer to adopt a Simple Service Disco Protocol (SSDP). The distributed search mode searches for the second mobile terminal 14 in the small area network; the first mobile terminal 10 and the second mobile terminal 14 periodically broadcast at a predefined location, and use the broadcast message header through the description layer. Prompting one of the first mobile terminal 10 and the second mobile terminal 14 to describe the access location of the file; the control layer is customized by a Simple Object Access Protocol (SOAP). The combination of HTTP and XML technology provides a set of Web service-based messaging and remote control services, so the control layer can provide data exchange and content sharing browsing between the first mobile terminal 10 and the second mobile terminal 14. .

目前隨插即用協定組織已經標準化了一些常用的裝置的溝通格式以確保來自不同廠商的同類型裝置之間可以正常溝通,但是行動內容傳遞的部分還沒有被定義,為此本發明之架構設計在現階段利用控制層自行客制化了一個簡單的溝通格式以滿足基本的描述資料(meta-data)交換、分享內容瀏覽的要求。另外,雖然簡單物件存取協定之訊息標準使用在可靠的網路或是小型的區域網路之中有很不錯的效能,但是所傳遞的封裝訊息過於龐大,會額外的造成電腦的運算負擔。這些情況使得簡單物件存取協定不適用在不可靠的無線網路環境,以及遠距離傳輸,因此本發明將隨插即用協定之控制層實作在第一行動端及第二行動端之行動通訊裝置上而非家庭伺服器上,另外再提出一套類似於遠端程序呼叫協定(Remote procedure call,RPC)架構的遠端傳輸機制,以適用於在廣域網路中行動裝置與家庭伺服器之間的互相溝通。At present, the Plug and Play agreement organization has standardized communication formats of some commonly used devices to ensure normal communication between devices of the same type from different vendors, but the part of the mobile content delivery has not been defined, so the architecture design of the present invention At this stage, the control layer is used to customize a simple communication format to meet the basic meta-data exchange and share content browsing requirements. In addition, although the message standard of the Simple Object Access Protocol is very effective in a reliable network or a small area network, the package information transmitted is too large, which will additionally cause the computing burden of the computer. These conditions make the simple object access protocol not applicable to unreliable wireless network environments, as well as long-distance transmission. Therefore, the present invention implements the action of the plug-and-play protocol control layer on the first mobile terminal and the second mobile terminal. On the communication device instead of the home server, a remote transmission mechanism similar to the Remote Procedure Call (RPC) architecture is proposed to be suitable for mobile devices and home servers in the wide area network. Communicate with each other.

非同步資料傳輸部分,本發明設計了三種基本資料下載服務與內容目錄服務,其中內容目錄服務係考量行動手持裝置的原生檔案系統太簡單,此服務之設計是建立第一行動端及第二行動端之虛擬檔案系統上,並根據使用者的需求來展示分享的內容,所有的分享項目都會產生對應的描述資料(meta-data),例如:虛擬檔案系統可以建立音樂、影像、影片等分類目錄。另外,為防止可能的安全威脅,檔案的存取位置可以一串被擾亂過的字串替代,虛擬檔案系統可以對應回原生檔案系統的識別碼參照。其基本的檔案描述樣本如第四圖所示之程式碼。三種非同步內容傳輸方式包括:In the asynchronous data transmission part, the present invention designs three basic data downloading services and content directory services, wherein the content directory service considers the native file system of the mobile handheld device to be too simple, and the service is designed to establish the first mobile terminal and the second mobile terminal. On the virtual file system, the shared content is displayed according to the user's needs. All the shared items will generate corresponding meta-data. For example, the virtual file system can create music, video, video and other categories. . In addition, in order to prevent possible security threats, the file access location can be replaced by a string of disturbed strings, and the virtual file system can be referenced back to the identification code of the native file system. The basic file description sample is shown in the code shown in Figure 4. The three asynchronous content transmission methods include:

(1)直接下載服務:第二行動端請求第一行動端提供一份願意分享的檔案目錄清單,第二行動端之後透過標準的HTTP GET方式直接從第一行動端下載指定的內容。(1) Direct download service: The second mobile terminal requests the first mobile terminal to provide a list of archive directories that are willing to share, and the second mobile terminal then downloads the specified content directly from the first mobile terminal through a standard HTTP GET method.

(2)重新導向下載服務:一做為提供者之第一行動端可指示做為接收方之第二行動端改從第一行動端之家庭伺服器下載資訊,該下載模式可克服傳輸距離與移動性的限制,維持資訊傳遞服務。如第二圖所示,第一行動端10在裝置中存放了1,2,3等三個檔案,在家庭伺服器12中另存有1,2,3,4,5等五個檔案。第一行動端10可向家庭伺服器12要求一份分享檔案的資料,透過與第二行動端14要求之清單相比較,第一行動端10決定導向下載的清單,提供給第二行動端14要求其改從家庭伺服器12下載;以此圖例說明,只有檔案1是由第一行動端10直接送達,雖然檔案2,3亦存在第一行動端10,但可要求第二行動端14透過不同網路、改從第一行動端10之家庭伺服器12端下載2,3,4,5檔案。(2) Redirecting the download service: the first mobile terminal as the provider can instruct the second mobile terminal as the receiving party to download information from the home server of the first mobile terminal, and the download mode can overcome the transmission distance and Mobile restrictions, maintaining information delivery services. As shown in the second figure, the first mobile terminal 10 stores three files of 1, 2, and 3 in the device, and five files of 1, 2, 3, 4, and 5 are stored in the home server 12. The first mobile terminal 10 may request the home server 12 to share the data of the file. The first mobile terminal 10 determines the list for the download to be provided to the second mobile terminal 14 by comparing with the list requested by the second mobile terminal 14. It is required to download from the home server 12; this illustration shows that only the file 1 is directly delivered by the first mobile terminal 10, although the file 2, 3 also has the first mobile terminal 10, the second mobile terminal 14 can be requested to pass through. The 2, 3, 4, 5 files are downloaded from the home server 12 end of the first mobile terminal 10 in different networks.

(3)接續傳輸服務:由於行動內容分享的過程可能遭遇斷線與重新連線等情況,此服務之設計可讓第二行動端在傳輸期限尚未結束之前,接續傳輸服務,只要第二行動端仍然保有對方家庭伺服器上的檔案位置表,就可以延續未完成的下載工作。(3) Successive transmission service: Since the process of mobile content sharing may encounter disconnection and reconnection, etc., the service is designed to allow the second mobile terminal to continue the transmission service before the transmission deadline has expired, as long as the second mobile terminal If you still have the file location table on the other party's home server, you can continue the unfinished download.

本發明之系統架構使用了一個具有授權及驗證機制的安全傳輸方式,如第四圖所示,當第一行動端10要求啟動重新導向下載時,會啟動一個安全傳輸交易,家庭伺服器12會負責管理交易的過程與狀態。這筆交易的過程將會被指定一個交易期限;此交易期限意指整個傳輸交易過程,包含:從第一行動端10通知了家庭伺服器12和第二行動端14之後開始,第二行動端14可重新接續下載直至下載完所要的物件,除非以下的任一情況發生:第二行動端14終止了傳輸要求、傳輸交易期限終了或是兩次下載之間的間隔時間超過某一設定值,如此可確保家庭伺服器12上的資源以及所連接的網路資源有被有效使用。The system architecture of the present invention uses a secure transmission mode with an authorization and authentication mechanism. As shown in the fourth figure, when the first mobile terminal 10 requests to initiate a redirect download, a secure transmission transaction is initiated, and the home server 12 Responsible for managing the process and status of the transaction. The process of this transaction will be assigned a transaction period; this transaction term means the entire transmission transaction process, including: starting from the first mobile terminal 10 notifying the home server 12 and the second mobile terminal 14, the second mobile terminal 14 may re-download the download until the desired item is downloaded, unless any of the following occurs: the second mobile terminal 14 terminates the transmission request, the end of the transmission transaction period, or the interval between the two downloads exceeds a certain set value, This ensures that the resources on the home server 12 and the connected network resources are effectively used.

此外,在交易過程中,為確保家庭伺服器12能夠相信第二行動端14為可信賴者,本發明另設計了一套簡單的對稱雙重金鑰保護機制,使用的金鑰包含以下兩把:In addition, in the transaction process, in order to ensure that the home server 12 can trust the second mobile terminal 14 as a trusted person, the present invention further designs a simple symmetric double key protection mechanism, and the used key includes the following two:

(1)提供者金鑰(Provider Key,P-Key):其是由家庭伺服器12和第一行動端10預先產生的,用以確保兩者之間的信任關係,此提供者金鑰每隔一段時間就會更新,以避免因為多次使用後遭到破解之可能;(1) Provider Key (P-Key): which is pre-generated by the home server 12 and the first mobile terminal 10 to ensure a trust relationship between the two, the provider key per It will be updated at intervals to avoid the possibility of being cracked after repeated use;

(2)交易金鑰(Transaction Key,T-Key):其係一把暫時、有使用期限的金鑰,當一交易開啟時由家庭伺服器12自動產生的,只在該交易過程中有效,用以保護第二行動端14和家庭伺服器12間之短暫交易身分確認,且不會被第二行動端14得知,一但交易完成後立即失效,以避免交易金鑰外洩可能被沒有經過授權的使用者任意簽署要求的可能性;(2) Transaction Key (T-Key): It is a temporary, time-limited key. It is automatically generated by the home server 12 when a transaction is opened. It is only valid during the transaction. It is used to protect the short transaction identity between the second mobile terminal 14 and the home server 12, and is not known by the second mobile terminal 14, but immediately after the transaction is completed, to avoid the transaction key leakage may be eliminated. The possibility of an authorized user arbitrarily signing the request;

每當有重新導向下載時,第一行動端10會向家庭伺服器12索取一把新的交易金鑰,此交易金鑰並不會被第二行動端14知道,並且在傳輸交易結束後就立刻失效,以免被仿造。Whenever there is a redirected download, the first terminal 10 will request a new transaction key from the home server 12, the transaction key will not be known by the second mobile terminal 14, and after the transfer transaction is over, Immediately lapsed to avoid being counterfeited.

於本發明之系統架構中,第一行動端、家庭伺服器和第二行動端之間是以XML-RPC模式進行資料傳遞,並使用identifiersignature 兩個欄位資料來確認遠端程序呼叫協定(Remote procedure call,RPC)過程中家庭伺服器和接收端(亦即第二行動端)的身分以及授權狀態。每次的RPC要求都會包含RPC傳送端(亦即第一行動端)的身分認證資訊,用以確認傳送端是否可信任或是有足夠權限執行指定的動作。甚至,此要求也須包含一組驗證碼防止資料遭人任意竄改,執行非原本的動作。RPC家庭伺服端可以將這組驗證碼與自身運算出來的驗證碼比較是否正確。以下是identifiersignature 的表示格式:In the system architecture of the present invention, the first mobile terminal, the home server and the second mobile terminal perform data transfer in an XML-RPC mode, and use the identifier and signature fields to confirm the remote program call agreement. (Remote procedure call, RPC) The identity and authorization status of the home server and receiver (ie, the second mobile terminal). Each RPC request will include the identity authentication information of the RPC transmitter (ie, the first mobile terminal) to confirm whether the transmitter is trusted or has sufficient authority to perform the specified action. Even this requirement must include a set of verification codes to prevent the data from being arbitrarily falsified and to perform non-original actions. The RPC home server can compare this set of verification codes with the verification code calculated by itself. The following is the representation format of identifier and signature :

Identifier:=#{P-Key}|(#{P-Key}&#{T-Key})Identifier:=#{P-Key}|(#{P-Key}&#{T-Key})

Signature:=MD5(#{DigestURL_Raw})Signature:=MD5(#{DigestURL_Raw})

其中Identifier 是金鑰部分,不會直接出現在連結中,而是先存入DigestURL_Raw,以MD5演算法或其他任演算法運算出Signature 值後,再加入連結中作為驗證。由於提供者金鑰和交易金鑰在交易中都是獨一無二的,RPC家庭伺服端可由Signature 值的檢驗來判斷訊息發送者是否可信任。The Identifier is the key part. It does not appear directly in the link. Instead, it is stored in DigestURL_Raw. After the Signature value is calculated by the MD5 algorithm or other algorithms, it is added to the link for verification. Since the provider key and the transaction key are unique in the transaction, the RPC home server can determine whether the sender of the message is trustworthy by checking the Signature value.

家庭伺服器中更設計有一虛擬檔案系統,其係在原生檔案系統之上,但是並不需要反映原生檔案系統的目錄架構,虛擬檔案系統的目錄架構可以是使用者所自行定義的檔案與目錄名稱,每一個檔案和目錄都有一如第三圖所述之描述資料(meta-data)描述項,另再加上一些管理目的資訊,其中,全球資源定位(Uniform Resource Locator,URL,以下稱URL)欄位特別定義有真實與虛擬兩種型態,真實URL之檔案在原生檔案系統的相對位置,如URL:=/URLBase/AV_Dir/Picture/My.jpeg,而虛擬URL則為一暫時的檔案位置參考,由名稱對應服務所動態產生,如URL:=/URLBase/PicXXX.jpeg;虛擬檔案系統在取得虛擬URL後會將其轉回真實URL表示。虛擬URL是一組動態產生的無意義字串,對每次交易來說,被要求分享傳輸之檔案上都會建立一臨時存取點,將虛擬對應儲存起來,使第二行動端透過臨時存取點要求檔案,直至交易截止時,所有過程中所產生的對應及臨時存取點都會全部自動銷毀。因此,這個虛擬檔案系統和動態名稱對應機制提供了一種簡單使用以及安全的內容目錄服務。動態名稱對應的做法能在不造成額外負擔的情況下增強安全性,當客戶端獲得虛擬URL時,依然可透過HTTP GET方式下載檔案。The home server is further designed with a virtual file system, which is above the native file system, but does not need to reflect the directory structure of the native file system. The directory structure of the virtual file system can be the file and directory name defined by the user. Each file and directory has a meta-data description as described in the third figure, plus some management purpose information. Among them, the global resource location (Uniform Resource Locator, URL, hereinafter referred to as URL) The field is defined by two types: real and virtual. The URL of the real URL is in the relative position of the native file system, such as URL:=/URLBase/AV_Dir/Picture/My.jpeg, and the virtual URL is a temporary file location. The reference is dynamically generated by the name corresponding service, such as URL:=/URLBase/PicXXX.jpeg; the virtual file system will return it to the real URL after obtaining the virtual URL. A virtual URL is a set of dynamically generated meaningless strings. For each transaction, a temporary access point is created on the file that is required to share the transmission, and the virtual correspondence is stored to make the second mobile terminal access temporary. Click on the file until the transaction is closed, and all corresponding and temporary access points generated in the process will be automatically destroyed. Therefore, this virtual file system and dynamic name mapping mechanism provides a simple and secure content directory service. The dynamic name mapping method can enhance security without causing additional burden. When the client obtains the virtual URL, the file can still be downloaded via HTTP GET.

綜上所述,為了解除區域網路內的移動限制,整合利用各種現有的網路技術和標準來提供安全的行動內容傳遞機制,提供非同步傳輸的支援,本發明定義出家庭伺服器以在省電及移動性支援上扮演了很重要的角色。通常來說,行動手持裝置都是以電池供應電力,因此直接將資訊從一台行動裝置傳遞到另外一台所耗電力是很大的,且此種耗損是對稱的,因為雙方都必須消耗電力在傳輸上;而在本發明設計中,提供資訊一方可引導接收方改從已經儲存有副本之家庭伺服器下載,採用此種非同步的內容傳遞有三種優點:第一,在固定網路之家庭伺服器可提供更大的資料吞吐量從而縮短傳輸時間;第二,提供方可以避免長距離的傳輸而減少能量消耗;第三,提供方與接收方都可以不被距離所限制,雙方不需要同時處在同一網路環境底下,可自由移動。家庭伺服器可接手傳輸作業,如此一來,即使原提供方已經切換至別的網路甚至是離開網路都不會影響傳輸作業的進行。本發明更提供一套雙重金鑰驗證機制,包含提供者金鑰和交易金鑰,分別用以決定伺服器及提供方是否可互相信賴,以及保護接收方與家庭伺服器的短暫交易身分確認。除此之外,本發明更在家庭伺服器上實作虛擬檔案系統,此系統可在每次交易過程之中為被要求的檔案建立一個臨時存取點,而接收方只能透過此臨時存取點要求檔案,同樣的交易完成之後存取點即告失效,經由虛擬檔案系統與動態存取點的機制可以保護家庭伺服器不被任意存取。In summary, in order to remove the mobile restrictions in the local area network, integrating various existing network technologies and standards to provide a secure mobile content delivery mechanism and providing asynchronous transmission support, the present invention defines a home server to Power saving and mobility support play a very important role. Generally speaking, mobile handheld devices are powered by batteries, so the power directly transmitted from one mobile device to another is very large, and the loss is symmetrical because both parties must consume power. In the design of the present invention, the information providing party can guide the recipient to download from the home server that has stored the copy, and the use of such asynchronous content delivery has three advantages: First, the family in the fixed network The server can provide more data throughput and shorten the transmission time. Second, the provider can avoid long-distance transmission and reduce energy consumption. Third, the provider and the receiver can be free from the distance, and the two sides do not need At the same time, it is under the same network environment and can move freely. The home server can take over the transfer, so that even if the original provider has switched to another network or even left the network, the transfer will not be affected. The present invention further provides a dual key authentication mechanism, including a provider key and a transaction key, respectively, for determining whether the server and the provider can trust each other, and protecting the short-term transaction identity of the recipient and the home server. In addition, the present invention implements a virtual file system on the home server, which can establish a temporary access point for the requested file during each transaction, and the recipient can only temporarily store the temporary file. The request file is taken. After the same transaction is completed, the access point is invalidated. The virtual file system and the dynamic access point mechanism can protect the home server from being arbitrarily accessed.

唯以上所述者,僅為本發明之較佳實施例而已,並非用來限定本發明實施之範圍。故即凡依本發明申請範圍所述之特徵及精神所為之均等變化或修飾,均應包括於本發明之申請專利範圍內。The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Therefore, any changes or modifications of the features and spirits of the present invention should be included in the scope of the present invention.

10...第一行動端10. . . First action

12...家庭伺服器12. . . Home server

14...第二行動端14. . . Second action

第一圖為本發明整合網路環境中行動內容分享與傳送系統之方塊圖。The first figure is a block diagram of a mobile content sharing and delivery system in an integrated network environment of the present invention.

第二圖為本發明系統中重新導向下載服務之示意圖。The second figure is a schematic diagram of the redirected download service in the system of the present invention.

第三圖為虛擬檔案系統中每一檔案及目錄之描述資料(meta-data)描述項之程式碼。The third figure shows the code of the meta-data description item for each file and directory in the virtual file system.

第四圖為本發明系統中雙重金鑰保護方法之示意圖。The fourth figure is a schematic diagram of the double key protection method in the system of the present invention.

10...第一行動端10. . . First action

12...家庭伺服器12. . . Home server

14...第二行動端14. . . Second action

Claims (21)

一種整合網路環境中行動內容分享與傳送系統,包括:一第一行動端,將資訊傳送到網際網路上;一家庭伺服器,其係暫存或儲存該第一行動端之資訊,並搜尋該資訊之至少一接收端以建立該第一行動端及該接收端之連線;以及至少一第二行動端,做為該接收端接收該家庭伺服器所傳送之資料;其中,該第二行動端與該家庭伺服器之間或該家庭伺服器與該第一行動端之間斷線而需重新連線時,該第一行動端及該家庭伺服器預先產生一提供者金鑰,當該第二行動端開始下載該資訊後,該家庭伺服器自動產生一交易金鑰,以保護該家庭伺服器及該第二行動端間之連線。 An action content sharing and transmission system in an integrated network environment, comprising: a first mobile terminal for transmitting information to the Internet; and a home server for temporarily storing or storing information of the first mobile terminal and searching for At least one receiving end of the information to establish a connection between the first mobile terminal and the receiving end; and at least one second mobile terminal, as the receiving end receives the data transmitted by the home server; wherein, the second When the mobile terminal is disconnected from the home server or between the home server and the first mobile terminal, the first mobile terminal and the home server pre-generate a provider key. After the second mobile terminal starts downloading the information, the home server automatically generates a transaction key to protect the connection between the home server and the second mobile terminal. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及該第二行動端係使用隨插即用協定之一定址層(Address layer)求得各自之一網路位址,該第一行動端利用一搜尋層(Discovery layer)搜尋該第二行動端,透過一描述層(Description layer)提示該第二行動端之存取位置,並利用一控制層(Control layer)提供該第一行動端及該第二行動端之間資料交換與內容分享瀏覽。 The mobile content sharing and transmission system in the integrated network environment as described in claim 1, wherein the first mobile terminal and the second mobile terminal use an address layer of a plug-and-play protocol. Having one of the network addresses, the first mobile terminal searches for the second mobile terminal by using a search layer, and prompts the access location of the second mobile terminal through a description layer, and utilizes A control layer provides data exchange and content sharing browsing between the first mobile terminal and the second mobile terminal. 如申請專利範圍第2項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及該第二行動端加入網路時,該定址層係以一動態主機配置協定(Dynamic Host Configuration Protocol,DHCP)或一自動IP模式要求定址。 The mobile content sharing and transmission system in the integrated network environment as described in claim 2, wherein when the first mobile terminal and the second mobile terminal join the network, the addressing layer is configured by a dynamic host configuration ( Dynamic Host Configuration Protocol (DHCP) or an automatic IP mode requires addressing. 如申請專利範圍第3項所述之整合網路環境中行動內容分享與傳送系統,其中該自動IP模式係於該動態主機配置協定不存在時使用。 The mobile content sharing and delivery system in the integrated network environment as described in claim 3, wherein the automatic IP mode is used when the dynamic host configuration protocol does not exist. 如申請專利範圍第2項所述之整合網路環境中行動內容分享與傳送系統,其中該搜尋層係採用一簡單服務搜尋協定(Simple Service Discovery Protocol,SSDP)以在小型區域網路中分散式搜尋。 The mobile content sharing and delivery system in the integrated network environment as described in claim 2, wherein the search layer adopts a simple service search protocol (Simple) Service Discovery Protocol (SSDP) for distributed search in small area networks. 如申請專利範圍第2項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及該第二行動端係定期於預先定義之位置上廣播,並利用廣播之一訊息標頭來提示該第一行動端及該第二行動端之一描述文件的存取位置。 The mobile content sharing and transmission system in the integrated network environment as described in claim 2, wherein the first mobile terminal and the second mobile terminal periodically broadcast at a predefined location and utilize one of the broadcast messages. The header indicates that one of the first mobile terminal and the second mobile terminal describes the access location of the file. 如申請專利範圍第2項所述之整合網路環境中行動內容分享與傳送系統,其中該控制層係利用一簡單物件存取協定(Simple Object Access Protocol,SOAP)客製化而成,提供訊息傳遞與遠端控制之服務。 The mobile content sharing and delivery system in the integrated network environment as described in claim 2, wherein the control layer is customized by using a Simple Object Access Protocol (SOAP) to provide a message. Delivery and remote control services. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第二行動端提出要求分享該第一行動端之資源,並可直接從該第一行動端下載指定之內容。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the second mobile terminal requests to share the resources of the first mobile terminal, and can directly download the designated mobile terminal from the first mobile terminal. The content. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第二行動端提出要求分享該第一行動端之資源,該可將該資源保存於該家庭伺服器中,讓該第二行動端從該家庭伺服器下載該資源。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the second mobile terminal requests to share the resource of the first mobile terminal, and the resource may be saved in the home server. The second mobile terminal is caused to download the resource from the home server. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端係將複數檔案儲存於該家庭伺服器中,使該第二行動端從該第一行動端下載一前置檔案後,後續之該檔案可直接從該家庭伺服器下載。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the first mobile terminal stores the plurality of files in the home server, so that the second mobile terminal is from the first After the mobile terminal downloads a pre-file, the subsequent file can be downloaded directly from the home server. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第二行動端與該家庭伺服器之間或該家庭伺服器與該第一行動端之間斷線而需重新連線時,係透過一安全傳輸機制進行認證、授權後才可繼續傳輸。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the second mobile terminal is disconnected from the home server or between the home server and the first mobile terminal. When it is necessary to reconnect, it can be transmitted after being authenticated and authorized through a secure transmission mechanism. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端、該家庭伺服器及該第二行動端之間連線中斷時,該家庭伺服器提供一傳輸期限給該第一行動端及該第二 行動端之間的傳輸交易,當該第一行動端通知該家庭伺服器及該第二行動端可開始傳輸下載後,該第二行動端可重新接續下載。 The mobile content sharing and transmission system in the integrated network environment as described in claim 1, wherein the home server is disconnected when the connection between the first mobile terminal, the home server, and the second mobile terminal is interrupted. Providing a transmission period to the first mobile terminal and the second The transmission transaction between the mobile terminals, when the first mobile terminal notifies the home server and the second mobile terminal can start the transmission download, the second mobile terminal can resume the download. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及該家庭伺服器係產生之該提供者金鑰每隔一段時間會自動更新。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the first mobile terminal and the provider key generated by the home server system are automatically updated at intervals. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及第二行動端之一虛擬檔案系統上更建立有一內容目錄服務,根據一使用者之需求展示該資訊之分享內容,且所有分享項目皆產生對應之一描述資料(meta-data)。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein one of the first mobile terminal and the second mobile terminal has a content directory service, according to a user. The need to display the shared content of the information, and all sharing projects produce a corresponding meta-data. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該第一行動端及該第二行動端可位於不同之網路環境中。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the first mobile terminal and the second mobile terminal are located in different network environments. 如申請專利範圍第1項所述之整合網路環境中行動內容分享與傳送系統,其中該家庭伺服器中更包括一虛擬檔案系統,在每一次交易時被要求分享傳輸之一檔案上建立一臨時存取點,使該第二行動端透過該臨時存取點要求該檔案,當交易完成後該臨時存取點便消失。 The mobile content sharing and delivery system in the integrated network environment as described in claim 1, wherein the home server further includes a virtual file system, and one file is required to be shared on each transaction. The temporary access point causes the second mobile terminal to request the file through the temporary access point, and the temporary access point disappears when the transaction is completed. 一種在整合網路環境中安全傳輸之方法,其係在一第一行動端、一家庭伺服器及至少一第二行動端之間連線中斷時要求繼續傳輸之機制,包括下列步驟:該家庭伺服器提供一傳輸期限給該第一行動端及該第二行動端之間的傳輸交易;該第一行動端及該家庭伺服器預先產生一提供者金鑰;該第二行動端開始接續下載;以及該家庭伺服器於傳輸交易開始後自動產生一交易金鑰,以保護該家庭伺服器及該第二行動端間之連線。 A method for secure transmission in an integrated network environment, which is a mechanism for requesting to continue transmission when a connection between a first mobile terminal, a home server, and at least a second mobile terminal is interrupted, including the following steps: The server provides a transmission period to the transmission transaction between the first mobile terminal and the second mobile terminal; the first mobile terminal and the home server pre-generate a provider key; the second mobile terminal starts to download And the home server automatically generates a transaction key after the transmission transaction begins to protect the connection between the home server and the second mobile terminal. 如申請專利範圍第17項所述之在整合網路環境中安全傳輸之方法,其中該提供者金鑰每隔一段時間會自動更新。 A method for secure transmission in an integrated network environment as described in claim 17 wherein the provider key is automatically updated at intervals. 如申請專利範圍第17項所述之在整合網路環境中安全傳輸之方法,其中該第二行動端在該傳輸期限內可重新接續下載直到下載完成。 The method of secure transmission in an integrated network environment as described in claim 17, wherein the second mobile terminal can resume downloading until the download is completed within the transmission period. 如申請專利範圍第17項所述之在整合網路環境中安全傳輸之方法,其中該第一行動端、該家庭伺服器及該第二行動端係以XML-RPC模式進行資料傳遞,並以二資料欄位確認該家庭伺服器及該第二行動端之身份及授權狀態。 The method for secure transmission in an integrated network environment, as described in claim 17, wherein the first mobile terminal, the home server, and the second mobile terminal perform data transmission in an XML-RPC mode, and The second data field confirms the identity and authorization status of the home server and the second mobile terminal. 如申請專利範圍第20項所述之在整合網路環境中安全傳輸之方法,其中該資料欄位係位於該提供者金鑰及該交易金鑰中。A method of secure transmission in an integrated network environment as described in claim 20, wherein the data field is located in the provider key and the transaction key.
TW98112055A 2009-04-10 2009-04-10 Integrating mobile content sharing and delivery system and its method in integrated network environment TWI393406B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW98112055A TWI393406B (en) 2009-04-10 2009-04-10 Integrating mobile content sharing and delivery system and its method in integrated network environment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW98112055A TWI393406B (en) 2009-04-10 2009-04-10 Integrating mobile content sharing and delivery system and its method in integrated network environment

Publications (2)

Publication Number Publication Date
TW201038032A TW201038032A (en) 2010-10-16
TWI393406B true TWI393406B (en) 2013-04-11

Family

ID=44856895

Family Applications (1)

Application Number Title Priority Date Filing Date
TW98112055A TWI393406B (en) 2009-04-10 2009-04-10 Integrating mobile content sharing and delivery system and its method in integrated network environment

Country Status (1)

Country Link
TW (1) TWI393406B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2683163B1 (en) * 2011-03-04 2019-05-15 Dentsu Inc. Synchronized content broadcast distribution system
US11606590B2 (en) 2021-03-03 2023-03-14 Google Llc Systems and methods to deliver content during client authentication process in a distributed computing system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060013197A1 (en) * 2004-04-28 2006-01-19 Anderson Eric C Automatic remote services provided by a home relationship between a device and a server
US7266383B2 (en) * 2005-02-14 2007-09-04 Scenera Technologies, Llc Group interaction modes for mobile devices
US20070248047A1 (en) * 2006-01-31 2007-10-25 Peter Shorty Home electrical device control within a wireless mesh network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060013197A1 (en) * 2004-04-28 2006-01-19 Anderson Eric C Automatic remote services provided by a home relationship between a device and a server
US7266383B2 (en) * 2005-02-14 2007-09-04 Scenera Technologies, Llc Group interaction modes for mobile devices
US20070248047A1 (en) * 2006-01-31 2007-10-25 Peter Shorty Home electrical device control within a wireless mesh network

Also Published As

Publication number Publication date
TW201038032A (en) 2010-10-16

Similar Documents

Publication Publication Date Title
US8396220B2 (en) System and method of mobile content sharing and delivery in an integrated network environment
US7992212B2 (en) Mobile terminal and gateway for remotely controlling data transfer from secure network
KR101766354B1 (en) Energy-efficient content retrieval in content-centric networks
US9021059B2 (en) Data hub server
US8756297B2 (en) Energy-efficient content caching with custodian-based routing in content-centric networks
JP2007521541A (en) Cache server at hotspot for downloading services
WO2011113314A1 (en) Service open method, system and service open server
KR20160145753A (en) Systems and methods for short range wireless data transfer
JP2005539420A (en) Device equal connection method when realizing dynamic network configuration in home network
EP2518972A1 (en) System and method for device addressing
CN102571941B (en) Cloud point-to-point data transmission method and system
US20100030346A1 (en) Control system and control method for controlling controllable device such as peripheral device, and computer program for control
CN103959298B (en) The method, apparatus and system of content are downloaded based on Authority Verification
US20120014321A1 (en) Messaging activity feed
WO2013097345A1 (en) Access control method and apparatus for digital living network alliance device
US20080209012A1 (en) Method for establishing secure remote access over a network
JP5669441B2 (en) Cache server at hotspot for downloading services
TWI393406B (en) Integrating mobile content sharing and delivery system and its method in integrated network environment
JP2009523346A (en) Enhancements to discover device owners in the UPnP search service
KR100538924B1 (en) Method for providing Web Service, Remote Storage Service and Remote Control Service based on Peer-to-Peer between a Plurality of Client Terminals and Personal Computers Operated as Server
CN116437331A (en) Non-inductive network distribution method, non-inductive network distribution system, equipment and medium
KR100705244B1 (en) Method of sharing content between terminals in mobile communication system
KR100513291B1 (en) Network system for supporting network connection and method thereof
Chen et al. A resource-aware pairing device framework for ubiquitous cloud applications
CN100576800C (en) Context information management system

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees