Summary of the invention
Technical matters to be solved by this invention is; a kind of information safety devices, real-time guard system and method based on radio communication is provided; make that information safety devices and real-time guard system have that applied widely, speed is fast, real-time Communication for Power, independence are strong, telecommunication transmission and be convenient to the advantages such as management, have very high practical value.
In order to solve the problems of the technologies described above; the invention provides a kind of information safety devices based on radio communication; it is connected to protect software with external unit; described information safety devices comprises wireless communication module, and described information safety devices is communicated and is connected with data processing server via cordless communication network by described wireless communication module.
As preferably, described wireless communication module comprises the GPRS module with GPRS network communication connection, and described GPRS module has the GPRS module stores district of the parameter configuration of parameter configuration for storing described data processing server and this module self.
As preferably, described information safety devices comprises the safe handling main control chip being electrically connected with described GPRS module.
As preferably, described safe handling main control chip is configured to encryption lock main control chip.
As preferably, described information safety devices also comprises antenna element and client identification module, wherein:
Described antenna element is connected with described GPRS module, for realizing the modulation and demodulation of signal, and the conversion of the signal of external signal and described GPRS inside modules;
Described client identification module adapts to described GPRS module and disposes the identification information of described information safety devices.
As preferably, described safe handling main control chip comprises dispensing unit, storage unit and processing unit, wherein:
Described dispensing unit, for the parameter of data processing server described in configuration store and the parameter of described GPRS module, and deposits parameter configuration in described storage unit or described GPRS module stores district;
Described storage unit, also for storing the identification information of enciphering and deciphering algorithm key, certificate, described information safety devices and/or the data message of the storage course of work;
Described processing unit, for cryptographic calculation processing, and sends to external unit or described GPRS module by result.
As preferably, described GPRS module stores district or memory cell arrangements are the configuration parameter storage part of acquiescence.
As preferably, described GPRS module stores district or memory cell arrangements are the parameter information of the default data processing server of storage.
The present invention also provides a kind of real-time guard system based on radio communication; this real-time guard system comprises data processing server and the information safety devices based on radio communication as above with described data processing server communication connection; described data processing server carries out data interaction by communication and described information safety devices, and by realizing the operation to described external unit with the data interaction of described information safety devices.
As preferably, described data processing server is connected with internet, there is IP address or fixing domain name and port numbers, and carry out two-way communication by cordless communication network and described wireless communication module, receive the data message that described wireless communication module sends and process accordingly.
The present invention also provides a kind of real-time guard method based on radio communication, it is characterized in that, adopts the information safety devices with wireless communication module to realize, and said method comprising the steps of:
S1: connect with external unit;
S2: set up and being connected of described cordless communication network by described wireless communication module;
S3: via cordless communication network gateway accessing internet, and the two-way communication of foundation and server end;
S4: carry out data interaction with described server end, to realize the operation of described server end to described external unit.
As preferably, described wireless communication module comprises the GPRS module with GPRS network communication connection, wherein:
Described step S2 is specially: by described GPRS module, set up and being connected of described GPRS network;
Described step S3 is specially: via GPRS gateway accessing internet, and the two-way communication of foundation and server end.
As preferably, that described server end is configured to be connected with internet and there is the data processing server of IP address or fixing domain name and port numbers, wherein:
Described step S3 is specially: the internet-ip address and the port numbers that read configuration parameter and obtain described data processing server, by GPRS gateway and internet and described data processing server, set up two-way communication, communication protocol adopts ICP/IP protocol or UDP/IP agreement, communication data transmission adopts transmission to encrypt and receiving end manner of decryption, and encryption method adopts symmetry algorithm or asymmetrical encryption algorithm;
Described step S4 is specially: by described GPRS module and described data processing server, carry out data interaction, to realize the operation of described data processing server to described external unit.
Compared with prior art; information safety devices based on radio communication of the present invention, the beneficial effect of real-time guard system and method are: in information safety devices, increased wireless communication module (GPRS module); information safety devices can be connected with GPRS network by GPRS module; and carry out radio communication by mobile gateway and outside Internet public network, carry out real-time data interaction.By system and method provided by the invention and data processing server, make information safety devices possess the ability of long distance data communications transmission, make that information safety devices has that applied widely, speed is fast, real-time Communication for Power, independence are strong, telecommunication transmission and be convenient to the advantages such as management, have very high practical value.
Embodiment
The information safety devices based on radio communication, real-time guard system and method below in conjunction with the drawings and specific embodiments to embodiments of the invention are described in further detail, but not as a limitation of the invention.
Fig. 1 is the configuration diagram of the information safety devices based on radio communication of embodiments of the invention; Fig. 2 is the principle of work schematic diagram of the real-time guard system based on radio communication of embodiments of the invention.The information safety devices based on radio communication of embodiments of the invention; be connected to protect software with external unit; information safety devices comprises wireless communication module, and information safety devices is communicated and is connected with data processing server via cordless communication network by wireless communication module.External unit includes but not limited to the equipment such as PC, PDA.The present invention has increased wireless communication module in information safety devices, information safety devices can be connected with cordless communication network by wireless communication module, to realize radio communication, and via cordless communication network, communicate and be connected with data processing server, make information safety devices can realize telecommunication transmission.
As one, improve, wireless communication module comprises the GPRS module with GPRS network communication connection, and GPRS module has the GPRS module stores district of the parameter configuration of parameter configuration for storing data processing server and this module self.The parameter configuration of data processing server comprises IP address and port numbers, and the parameter configuration of GPRS module comprises GPRS dialing parameters, serial ports baud rate etc.Because bluetooth and Wi-Fi are the schemes that solves short-range communication, once there is not having the situation of bluetooth or Wi-Fi signal, just cannot be suitable for, this user's use has brought trouble.The present invention is connected with GPRS network and is carried out real-time data interaction by GPRS module, make information safety devices possess the ability of long distance data communications transmission, make that information safety devices has that applied widely, speed is fast, real-time Communication for Power, independence are strong, telecommunication transmission and be convenient to the advantages such as management, have very high practical value.
As further improvement, information safety devices comprises the safe handling main control chip being electrically connected with GPRS module, for example TPM (Trusted Platform Module, trusted security platform module) etc., connected mode can adopt standard serial port connected mode, comprises RS232, RS485 or RS422 etc.As the preferred version of the present embodiment, safe handling main control chip is configured to encryption lock main control chip, specifically can adopt any preferred Related product in prior art to realize.
As further improving, information safety devices also comprises antenna element and client identification module, wherein: antenna element is connected with GPRS module, and for realizing the modulation and demodulation of signal, and the conversion of the signal of external signal and GPRS inside modules.Client identification module (SIM card), has opened GPRS function and has been connected with GPRS module, and unique subscriber identity information and GPRS function services are provided, and adapts in the present embodiment GPRS module and disposes the identification information of information safety devices.
As another kind, improve, safe handling main control chip comprises dispensing unit, storage unit and processing unit, wherein:
Dispensing unit, for the parameter of configuration store data processing server and the parameter of GPRS module, and deposits parameter configuration in storage unit or GPRS module stores district.
Storage unit, except for storing above-mentioned parameter configuration information, also for storing the identification information of enciphering and deciphering algorithm key, certificate, information safety devices and/or the data message of the storage course of work, even the related data information of used time.As the preferred version of the present embodiment, it is the configuration parameter memory location of acquiescence that aforesaid GPRS module stores district or memory cell arrangements can be set, or, can in storage unit or GPRS memory block, store the parameter information (information such as such as IP address) of default data processing server.
Processing unit, for cryptographic calculation processing, and sends to external unit or GPRS module by result, and it carries out corresponding calculation process according to the message or the command information that obtain, and result is sent to external unit or GPRS module.
As shown in Figure 2; the present invention also provides a kind of real-time guard system based on radio communication; this real-time guard system comprises data processing server and the information safety devices based on radio communication as above with data processing server communication connection; data processing server carries out data interaction by communication and information safety devices, and by realizing the operation to external unit with the data interaction of information safety devices.As the preferred version of the present embodiment, data processing server is connected with internet, have IP address or fixing domain name and port numbers, and carry out two-way communication by cordless communication network and wireless communication module, the data message that reception wireless communication module is sent is also processed accordingly.
Be illustrated in figure 3 the schematic flow sheet of the real-time guard method based on radio communication of embodiments of the invention.The present invention also provides a kind of real-time guard method based on radio communication, adopts the information safety devices with wireless communication module to realize, and method comprises the following steps:
S1: connect with external unit, can pass through USB interface or other interfaces, as the modes such as serial ports are electrically connected with external unit;
S2: set up and being connected of cordless communication network by wireless communication module;
S3: via cordless communication network gateway accessing internet, and the two-way communication of foundation and server end;
S4: carry out data interaction with server end, to realize the operation of server end to external unit.
As one, improve, wireless communication module comprises the GPRS module with GPRS network communication connection, wherein:
Step S2 is specially: by GPRS module, set up and being connected of GPRS network;
Step S3 is specially: via GPRS gateway accessing internet, and the two-way communication of foundation and server end.
As further improving, that server end is configured to be connected with internet and there is the data processing server of IP address or fixing domain name and port numbers, wherein:
Step S3 is specially: the internet-ip address and the port numbers that read configuration parameter and obtain data processing server, by GPRS gateway and internet and data processing server, set up two-way communication, communication protocol adopts ICP/IP protocol or UDP/IP agreement, communication data transmission adopts transmission to encrypt and receiving end manner of decryption, and encryption method adopts symmetry algorithm or asymmetrical encryption algorithm;
Step S4 is specially: by GPRS module and data processing server, carry out data interaction, to realize the operation of data processing server to external unit.
Take GPRS module, by the GPRS network detailed process mutual with Internet public network, describe as example below: the information safety devices that configures running parameter (comprising GPRS dialing parameters, serial ports baud rate, data processing server IP address etc.) is connected with external unit by interface, after information safety devices powers on, GPRS module reads the configuration parameter of storage, be registered to mobile GSM network, then carry out GPRS PPP dialing.After dial-up success, GPRS module will obtain an implicit IP address by GPRS network Random assignment.GPRS module realizes and the communicating by letter of exterior I nternet public network by mobile gateway.GPRS module is by fixing public network IP address (if the domain name of the data server in the configuration parameter reading, first by domain name mapping, go out IP address) and the parameter such as port numbers, initiatively to mobile GPRS network, send the request bag connecting, move through GPRS gateway request bag is sent to Internet, data processing server connects and sends response message after receiving request.GPRS module, after the response that obtains data processing server, is thought and is shaken hands successfully with data processing server, and maintenance communication connection existence always, because TCP/UDP communication connection is set up, just can carry out data double-way and communicate by letter.UDP(User Data Protocol, User Datagram Protoco (UDP)) to system resource require lessly, program structure is relatively simple, transmission speed is very fast.For improving the security of data transmission, can also when data transmission, by cryptographic algorithm, be encrypted receiving end decryption processing.Cryptographic algorithm includes but not limited to symmetry or rivest, shamir, adelman, and wherein symmetry algorithm comprises AES, DES, TDES; Asymmetric arithmetic comprises RSA, ECC etc.
The present invention is applicable to the operations such as remote diagnosis mistake, remote upgrade, remote authentication or other data interactions.As shown in the schematic flow sheet of an embodiment of the real-time guard method based on radio communication of Fig. 4 application embodiments of the invention, below with the embodiment of the real-time guard method based on radio communication of application embodiments of the invention, describe.
In present embodiment, external unit is main frame, the encryption lock main control chip of information safety devices is connected with GPRS module by RS232 standard serial port, the SIM card of opening GPRS function is connected with GPRS module by SIM card base connector, and data processing server IP address and port information are stored in the memory block of GPRS module.Based on a method for GPRS communication real-time guard, concrete steps comprise:
A1, the encryption lock that presets configuration parameter is connected by USB interface with main frame;
After a2, encryption lock power on, GPRS module connects mobile dream network's GPRS network, obtains IP address;
A3, encryption lock GPRS module read data processing server fixed ip address and port in configuration parameter, by the data processing server on mobile gateway and exterior I nternet public network, connect;
When a4, use encryption lock, need to carry out PIN code and carry out authentication, GPRS module sends to data processing server by the PIN code information encryption of input by UDP/IP agreement;
A5, data processing server are verified PIN code, are verified, and perform step 6, otherwise, return to mistake or warning message;
A6, encryption lock send sign and the information such as program version of self to data processing server;
A7, data processing server obtain identification information and with server in the encryption lock latest version information of storing contrast;
If a8 comparing result shows that encryption lock version is lower; By information such as the data program versions in data processing server remote upgrade encryption lock;
A9, carry out follow-up other interactive operations.
The present invention has increased GPRS module and SIM card in information safety devices, and information safety devices can be connected with mobile GPRS network by GPRS module, and communicates by mobile gateway and outside Internet public network.By system and method provided by the invention, make information safety devices possess the ability of long distance data communications transmission, make that information safety devices has that applied widely, speed is fast, real-time Communication for Power, independence are strong, telecommunication transmission and be convenient to the advantages such as management, have very high practical value.
Above embodiment is only exemplary embodiment of the present invention, is not used in restriction the present invention, and protection scope of the present invention is defined by the claims.Those skilled in the art can, in essence of the present invention and protection domain, make various modifications or be equal to replacement the present invention, this modification or be equal to replacement and also should be considered as dropping in protection scope of the present invention.