+

CN115913565B - Method for improving communication transmission safety of encryption chip and encryption chip - Google Patents

Method for improving communication transmission safety of encryption chip and encryption chip Download PDF

Info

Publication number
CN115913565B
CN115913565B CN202211291580.5A CN202211291580A CN115913565B CN 115913565 B CN115913565 B CN 115913565B CN 202211291580 A CN202211291580 A CN 202211291580A CN 115913565 B CN115913565 B CN 115913565B
Authority
CN
China
Prior art keywords
encryption
data
module
chip data
encryption chip
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202211291580.5A
Other languages
Chinese (zh)
Other versions
CN115913565A (en
Inventor
李果
刘惠聪
简淦杨
张佰玲
李嘉添
黄锦城
黄辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Wanlv Electromechanical Equipment Operation And Maintenance Shenzhen Co ltd
China South Power Grid International Co ltd
Original Assignee
Wanlv Electromechanical Equipment Operation And Maintenance Shenzhen Co ltd
China South Power Grid International Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wanlv Electromechanical Equipment Operation And Maintenance Shenzhen Co ltd, China South Power Grid International Co ltd filed Critical Wanlv Electromechanical Equipment Operation And Maintenance Shenzhen Co ltd
Priority to CN202211291580.5A priority Critical patent/CN115913565B/en
Publication of CN115913565A publication Critical patent/CN115913565A/en
Application granted granted Critical
Publication of CN115913565B publication Critical patent/CN115913565B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

本发明提供了一种提高加密芯片通信传输安全性的方法及加密芯片,方法包括:加密模块接收到第一加密芯片数据,加密模块采用加密密钥对第一加密芯片数据进行加密,得到第二加密芯片数据;在控制模块的控制下加密模块对加密密钥进行加密,得到密钥块;通信模块识别目标电子元器件的身份,对第一加密芯片数据签名并计算摘要值;将第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值传输至天线谐振模块,通过天线发送至目标电子元器件。本发明节约了加密模块的存储空间,保证了第一加密芯片数据的安全性;加密模块对加密密钥进行加密,得到密钥块,保证了加密密钥不会被盗取;对加密密钥进行第二次加密,提升了第一加密芯片数据的安全性。

The invention provides a method for improving the communication and transmission security of an encryption chip and the encryption chip. The method includes: the encryption module receives the data of the first encryption chip, and the encryption module encrypts the data of the first encryption chip with an encryption key to obtain the second encryption chip data. Encrypt chip data; under the control of the control module, the encryption module encrypts the encryption key to obtain a key block; the communication module identifies the identity of the target electronic component, signs the first encrypted chip data and calculates a digest value; encrypts the second encrypted The chip data, the first encrypted chip data signature, the key block and the digest value are transmitted to the antenna resonance module and sent to the target electronic component through the antenna. The invention saves the storage space of the encryption module and ensures the security of the first encryption chip data; the encryption module encrypts the encryption key to obtain a key block, which ensures that the encryption key will not be stolen; The second encryption is performed to improve the security of the first encrypted chip data.

Description

一种提高加密芯片通信传输安全性的方法及加密芯片A method for improving the security of encryption chip communication transmission and encryption chip

技术领域technical field

本发明涉及电子通信技术领域,特别涉及一种提高加密芯片通信传输安全性的方法及加密芯片。The invention relates to the technical field of electronic communication, in particular to a method for improving the communication transmission security of an encryption chip and the encryption chip.

背景技术Background technique

射频是指30OKHZ到30OGHZ范围之间的高频交流变化电磁波,射频芯片架构包括接收通道和发射通道两部分。射频技术在无线通信中被广泛应用,随着科技的不断发展,其地位愈来愈重要。Radio frequency refers to high-frequency alternating electromagnetic waves between 30OKHZ and 30OGHZ. The radio frequency chip architecture includes two parts: a receiving channel and a transmitting channel. Radio frequency technology is widely used in wireless communication. With the continuous development of science and technology, its position is becoming more and more important.

现有技术一,CN201710121975.3一种区块链加密射频芯片的存储设计方法,包括:第一步,设计区块链加密射频芯片的数据结构;第二步,设计区块链加密射频芯片中的数据在用户存储器中组织存放形式;第三步,设计区块链加密射频芯片的加密、解密过程。一种区块链加密射频芯片存储设计方法通过研究了区块链的加密原理,提高了信息安全度,满足了一卡多用的原则,加大了信息保护程度,提高使用的安全性和使用的便捷性。Existing technology one, CN201710121975.3 A storage design method for a block chain encryption radio frequency chip, including: the first step, designing the data structure of the block chain encryption radio frequency chip; the second step, designing the data structure of the block chain encryption radio frequency chip The data is organized and stored in the user memory; the third step is to design the encryption and decryption process of the blockchain encryption RF chip. A block chain encryption radio frequency chip storage design method improves the information security by studying the encryption principle of the block chain, meets the principle of one card with multiple uses, increases the degree of information protection, and improves the security and safety of use. Convenience.

现有技术二,CN201910301674.8一种基于Si446x集成射频芯片和R5F562N8单片机的跳频电台,在结构上分为核心板和扩展板,二者通过贴片式接插件连接。核心板中采用单片机作为主控模块,完成调制解调、加密解密、生成跳频图案等功能;采用集成射频芯片作为射频模块的核心,完成跳频、解跳频、数模/模数转换、变频等功能;扩展板主要是电源电路和外设接口,完成电平转换和与其他设备的数据交换。跳频电台可通过上位机进行配置,修改跳频电台的中心频率、操作模式、串口波特率、空中速率、秘钥、电台的ID号等参数。跳频电台可以根据自定协议实现定频通信和跳频通信,具有体积小、可扩展性强、灵活方便的优点。The second prior art, CN201910301674.8, is a frequency-hopping radio based on Si446x integrated radio frequency chip and R5F562N8 single-chip microcomputer. It is structurally divided into a core board and an expansion board, and the two are connected by patch connectors. The core board uses a single-chip microcomputer as the main control module to complete functions such as modulation and demodulation, encryption and decryption, and generation of frequency hopping patterns; an integrated radio frequency chip is used as the core of the radio frequency module to complete frequency hopping, de-hopping, digital-analog/analog-digital conversion, Functions such as frequency conversion; the expansion board is mainly for power supply circuits and peripheral interfaces, and completes level conversion and data exchange with other devices. The frequency hopping radio station can be configured through the host computer to modify the center frequency, operation mode, serial port baud rate, air rate, secret key, radio ID number and other parameters of the frequency hopping radio station. The frequency-hopping radio station can realize fixed-frequency communication and frequency-hopping communication according to a self-defined protocol, and has the advantages of small size, strong scalability, flexibility and convenience.

现有技术三,CN202011568841.4基于NB-IoT的安全模组、燃气表抄表系统及方法,包括:安全芯片及与安全芯片连接的NB-IoT射频芯片,安全芯片通过AT接口与燃气表抄表系统的MCU连接,NB-IoT系统级芯片与远程服务器连接;安全芯片用于接收MCU获取的燃气表数据,并对燃气表数据进行加密后传输至NB-IoT射频芯片,以及用于接收NB-IoT射频芯片传输的下行数据,并对下行数据进行解密后传输至MCU。将安全芯片集成到安全模组内部,简化了燃气表抄表系统使用安全芯片的外围电路,确保了数据传输的安全性和机密性,安全模组采用NB-IoT射频芯片,保证了整个安全模组的低功耗。Existing technology three, CN202011568841.4 NB-IoT-based security module, gas meter reading system and method, including: a security chip and a NB-IoT radio frequency chip connected to the security chip, and the security chip reads the gas meter through the AT interface The MCU of the meter system is connected, and the NB-IoT system-level chip is connected to the remote server; the security chip is used to receive the gas meter data obtained by the MCU, encrypt the gas meter data and transmit it to the NB-IoT RF chip, and to receive the NB-IoT -The downlink data transmitted by the IoT radio frequency chip is decrypted and then transmitted to the MCU. The security chip is integrated into the security module, which simplifies the peripheral circuit of the gas meter reading system using the security chip and ensures the security and confidentiality of data transmission. The security module uses the NB-IoT radio frequency chip to ensure group of low power consumption.

目前现有技术一、现有技术二和现有技术三存在数据加密采用单一方式,不能保证数据的安全性,容易造成数据泄露的问题,因而,本发明提供提高加密芯片通信传输安全性的方法,通过两次加密实现加密芯片到目标电子元器件通信的安全。At present, existing technology 1, prior art 2, and prior art 3 have a single method for data encryption, which cannot guarantee data security and easily causes data leakage. Therefore, the present invention provides a method for improving the security of encryption chip communication transmission , realize the security of the communication between the encryption chip and the target electronic components through two encryptions.

发明内容Contents of the invention

为了解决上述技术问题,本发明提供了一种提高加密芯片通信传输安全性的方法,包括以下步骤:In order to solve the above technical problems, the present invention provides a method for improving the security of encryption chip communication transmission, comprising the following steps:

加密模块接收到第一加密芯片数据,加密模块采用加密密钥对第一加密芯片数据进行加密,得到第二加密芯片数据;The encryption module receives the first encryption chip data, and the encryption module encrypts the first encryption chip data with an encryption key to obtain the second encryption chip data;

在控制模块的控制下加密模块对加密密钥进行加密,得到密钥块;对第一加密芯片数据签名并计算摘要值;Under the control of the control module, the encryption module encrypts the encryption key to obtain a key block; signs the data of the first encryption chip and calculates a digest value;

通信模块识别目标电子元器件的身份,身份识别成功后,在控制模块的控制下将第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值传输至天线谐振模块,通过天线发送至目标电子元器件。The communication module identifies the identity of the target electronic component. After the identification is successful, the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value are transmitted to the antenna resonant module under the control of the control module, and sent through the antenna to the target electronic component.

可选的,待加密芯片数据进行加密,具体包括:Optionally, encrypt the chip data to be encrypted, including:

将第一加密芯片数据分解为表名、字段和数据记录;Decomposing the first encrypted chip data into table names, fields and data records;

分解为表名、字段和数据记录的第一加密芯片数据采用数据信息置乱,得到置乱后的第一加密芯片数据;Decomposing the first encrypted chip data into table names, fields and data records is scrambled with data information to obtain the scrambled first encrypted chip data;

获取加密模块的初始密钥;Obtain the initial key of the encryption module;

将置乱后的第一加密芯片数据按照字节进行累加,并作为表名、字段和数据记录的特征值,以特征值与初始密钥的差值作为第一加密芯片数据的差异度;Accumulate the scrambled first encrypted chip data according to bytes, and use it as the characteristic value of the table name, field and data record, and use the difference between the characteristic value and the initial key as the difference degree of the first encrypted chip data;

将差异度作为初始参数,采用加密模扩散对置乱后的第一加密芯片数据进行加密,得到第二加密芯片数据。Taking the degree of difference as an initial parameter, encryption mode diffusion is used to encrypt the scrambled first encrypted chip data to obtain the second encrypted chip data.

可选的,字段还包括字段类型和字段长度。Optionally, the field also includes field type and field length.

可选的,控制模块将第一加密密钥签密获得的信息传输到第一加密模块;再将第二加密密钥签密获得的信息传输到第二加密模块;然后再将第三加密密钥签密获得的信息传输到第三加密模块;Optionally, the control module transmits the information obtained by signcryption of the first encryption key to the first encryption module; then transmits the information obtained by signcryption of the second encryption key to the second encryption module; The information obtained by key sign encryption is transmitted to the third encryption module;

将第一加密密钥、第二加密密钥和第三加密密钥以及公开密钥形成密钥块。The first encryption key, the second encryption key and the third encryption key and the public key form a key block.

可选的,对第一加密芯片数据签名并计算摘要值,具体包括:Optionally, signing the data of the first encrypted chip and calculating a digest value specifically includes:

根据第一加密芯片数据及数字签名算法的属性信息计算签名对应的字节范围;Calculate the byte range corresponding to the signature according to the first encrypted chip data and the attribute information of the digital signature algorithm;

根据字节范围提取第一加密芯片数据的字节范围数据;extracting byte range data of the first encrypted chip data according to the byte range;

根据字节范围数据计算摘要值。Computes a digest value from byte range data.

可选的,数字签名算法的属性信息,包括:加密密钥的公钥和私钥。Optionally, attribute information of the digital signature algorithm, including: public key and private key of the encryption key.

可选的,天线谐振模块接收第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值后经过脉冲编码调制,变为模拟信号,将模拟信号送至模数采样进入可编辑阵列逻辑,得到数字信号;Optionally, the antenna resonant module receives the second encryption chip data, the first encryption chip data signature, the key block and the digest value and undergoes pulse code modulation to become an analog signal, and sends the analog signal to the modulus sampling and enters the editable array Logic, get digital signal;

将数字信号正交下变频低通滤波,得到正交的数字信号,与自适应权值相乘,完成干扰滤波;The digital signal is orthogonally down-converted and low-pass filtered to obtain an orthogonal digital signal, which is multiplied by the adaptive weight to complete the interference filtering;

输出干扰滤波处理后的数字信号,包含第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值的数字信号。Outputting the digital signal processed by the interference filter, including the digital signal of the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value.

本发明提供的一种加密芯片,包括:An encryption chip provided by the present invention includes:

整流模块,用于产生加密芯片所需的电源;A rectifier module, used to generate the power required by the encryption chip;

除频模块,与整流模块并联,用于产生所述加密芯片所需的时钟;The frequency division module is connected in parallel with the rectification module, and is used to generate the clock required by the encryption chip;

控制模块,分别与整流模块和除频模块电连接,用于总控加密芯片的工作流程;The control module is electrically connected with the rectification module and the frequency division module respectively, and is used for the work flow of the general control encryption chip;

存储模块,与控制模块电连接,用于存储芯片数据;The storage module is electrically connected with the control module and used for storing chip data;

通信模块,与加密模块、控制模块和存储模块连接,用于实现加密芯片的通信,识别目标电子元器件的身份,与存储模块存储的设备特征比对,身份识别成功后,在控制模块的控制下加密模块将加密的加密芯片数据发送至天线谐振模块;The communication module is connected with the encryption module, the control module and the storage module, and is used to realize the communication of the encryption chip, identify the identity of the target electronic component, and compare it with the device characteristics stored in the storage module. The lower encryption module sends the encrypted encryption chip data to the antenna resonance module;

加密模块,分别与控制模块和存储模块电连接,包含有多个加密模块,用于对加密芯片数据进行加密;The encryption module is electrically connected to the control module and the storage module respectively, and contains multiple encryption modules for encrypting the data of the encryption chip;

天线谐振模块,与通信模块连接,用于将加密模块加密的加密芯片数据通过天线发送至目标电子元器件。The antenna resonant module is connected with the communication module, and is used for sending the encryption chip data encrypted by the encryption module to the target electronic components through the antenna.

可选的,天线谐振模块设置有抗干扰器,用以处理第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值发送至目标电子元器件过程中的干扰信号。Optionally, the antenna resonant module is provided with an anti-jamming device, which is used to process interference signals during the process of sending the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value to the target electronic components.

可选的,设置有多个加密模块,用于对加密芯片数据进行加密。Optionally, multiple encryption modules are provided for encrypting the encrypted chip data.

本发明通过加密模块对第一加密芯片数据进行加密;天线谐振模块,与加密模块连接,用于将第二加密芯片数据通过天线发送至目标电子元器件;采用加密密钥对第一加密芯片数据进行加密,得到第二加密芯片数据,节约了加密模块的存储空间,先采用加密密钥进行加密首先保证了第一加密芯片数据的安全性;加密模块对加密密钥进行加密,得到密钥块,保证了加密密钥不会被盗取,在通过加密密钥对待加密芯片数据第一次加密的前提下,再对加密密钥进行第二次加密,进一步提升了第一加密芯片数据的安全性,也提高了加密密钥的安全性,避免加密密钥的丢失或泄露导致待加密芯片数据的破解;通过将第二加密芯片数据、第一加密芯片数据签名和密钥块传输至天线谐振模块,通过天线发送至目标电子元器件,使得目标电子元器件通过第二加密芯片数据、第一加密芯片数据签名和密钥块对第二加密芯片数据进行解密,通过对第一加密芯片数据签名进行签名认证,比较摘要值是否相同,来确认第一加密芯片数据是否被篡改;本发明的方法简单且快捷,能够快速的实现第一加密芯片数据的加密,保证了第一加密芯片数据通过天线发送至目标电子元器件的安全性。The present invention encrypts the data of the first encryption chip through the encryption module; the antenna resonant module is connected with the encryption module, and is used to send the data of the second encryption chip to the target electronic components through the antenna; the encryption key is used to encrypt the data of the first encryption chip Encrypt to obtain the second encryption chip data, which saves the storage space of the encryption module, and first uses the encryption key to encrypt first to ensure the security of the first encryption chip data; the encryption module encrypts the encryption key to obtain the key block , to ensure that the encryption key will not be stolen. On the premise that the encrypted chip data is encrypted for the first time by the encryption key, the encryption key is encrypted for the second time, which further improves the security of the first encrypted chip data. It also improves the security of the encryption key, avoiding the loss or leakage of the encryption key to crack the data of the chip to be encrypted; by transmitting the second encrypted chip data, the first encrypted chip data signature and the key block to the antenna resonance The module is sent to the target electronic component through the antenna, so that the target electronic component decrypts the second encrypted chip data through the second encrypted chip data, the first encrypted chip data signature and the key block, and through the first encrypted chip data signature Perform signature authentication and compare whether the digest values are the same to confirm whether the first encryption chip data has been tampered with; the method of the present invention is simple and fast, and can quickly realize the encryption of the first encryption chip data, ensuring that the first encryption chip data passes through the antenna Security sent to target electronic components.

本发明的其它特征和优点将在随后的说明书中阐述,并且,部分地从说明书中变得显而易见,或者通过实施本发明而了解。本发明的目的和其他优点可通过在所写的说明书、权利要求书、以及附图中所特别指出的结构来实现和获得。Additional features and advantages of the invention will be set forth in the description which follows, and in part will be apparent from the description, or may be learned by practice of the invention. The objectives and other advantages of the invention may be realized and attained by the structure particularly pointed out in the written description and claims hereof as well as the appended drawings.

下面通过附图和实施例,对本发明的技术方案做进一步的详细描述。The technical solutions of the present invention will be described in further detail below with reference to the accompanying drawings and embodiments.

附图说明Description of drawings

附图用来提供对本发明的进一步理解,并且构成说明书的一部分,与本发明的实施例一起用于解释本发明,并不构成对本发明的限制。在附图中:The accompanying drawings are used to provide a further understanding of the present invention, and constitute a part of the description, and are used together with the embodiments of the present invention to explain the present invention, and do not constitute a limitation to the present invention. In the attached picture:

图1为本发明实施例中提高加密芯片通信传输安全性的方法流程图;Fig. 1 is a flow chart of a method for improving communication and transmission security of an encryption chip in an embodiment of the present invention;

图2为本发明实施例中对待加密芯片数据进行加密流程图;Fig. 2 is a flow chart of encrypting chip data to be encrypted in an embodiment of the present invention;

图3为本发明实施例中密钥块处理流程图;Fig. 3 is a flow chart of key block processing in an embodiment of the present invention;

图4为本发明实施例中摘要值计算流程图;FIG. 4 is a flow chart of summary value calculation in an embodiment of the present invention;

图5为本发明实施例中加密芯片的框图。Fig. 5 is a block diagram of an encryption chip in an embodiment of the present invention.

具体实施方式Detailed ways

以下结合附图对本发明的优选实施例进行说明,应当理解,此处所描述的优选实施例仅用于说明和解释本发明,并不用于限定本发明。The preferred embodiments of the present invention will be described below in conjunction with the accompanying drawings. It should be understood that the preferred embodiments described here are only used to illustrate and explain the present invention, and are not intended to limit the present invention.

在本申请实施例使用的术语是仅仅出于描述特定实施例的目的,而非旨在限制本申请实施例。在本申请实施例和所附权利要求书中所使用的单数形式的“一种”、“所述”和“该”也旨在包括多数形式,除非上下文清楚地表示其他含义。还应当理解,本文中使用的术语“和/或”是指并包含一个或多个相关联的列出项目的任何或所有可能组合。The terms used in the embodiments of the present application are only for the purpose of describing specific embodiments, and are not intended to limit the embodiments of the present application. The singular forms "a", "said" and "the" used in the embodiments of this application and the appended claims are also intended to include plural forms unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and includes any and all possible combinations of one or more of the associated listed items.

下面的描述涉及附图时,除非另有表示,不同附图中的相同数字表示相同或相似的要素。以下示例性实施例中所描述的实施方式并不代表与本申请相一致的所有实施方式。相反,它们仅是如所附权利要求书中所详述的、本申请的一些方面相一致的装置和方法的例子。在本申请的描述中,需要理解的是,术语“第一”、“第二”、“第三”等仅用于区别类似的对象,而不必用于描述特定的顺序或先后次序,也不能理解为指示或暗示相对重要性。对于本领域的普通技术人员而言,可以根据具体情况理解上述术语在本申请中的具体含义。When the following description refers to the accompanying drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the following exemplary embodiments do not represent all implementations consistent with this application. Rather, they are merely examples of apparatuses and methods consistent with aspects of the present application as recited in the appended claims. In the description of the present application, it should be understood that the terms "first", "second", "third", etc. are only used to distinguish similar objects, and are not necessarily used to describe a specific order or sequence, nor can they be Read as indicating or implying relative importance. Those of ordinary skill in the art can understand the specific meanings of the above terms in this application according to specific situations.

实施例1Example 1

如图1所示,本发明实施例提供了一种提高加密芯片通信传输安全性的方法,包括以下步骤:As shown in Figure 1, an embodiment of the present invention provides a method for improving the security of communication and transmission of an encryption chip, including the following steps:

S100:加密模块接收到第一加密芯片数据,加密模块采用加密密钥对第一加密芯片数据进行加密,得到第二加密芯片数据;S100: The encryption module receives the first encrypted chip data, and the encryption module encrypts the first encrypted chip data with an encryption key to obtain the second encrypted chip data;

S200:在控制模块的控制下加密模块对加密密钥进行加密,得到密钥块;对第一加密芯片数据签名并计算摘要值;S200: Under the control of the control module, the encryption module encrypts the encryption key to obtain a key block; signs the data of the first encryption chip and calculates a digest value;

S300:通信模块识别目标电子元器件的身份,身份识别成功后,在控制模块的控制下将第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值传输至天线谐振模块,通过天线发送至目标电子元器件。S300: The communication module identifies the identity of the target electronic component. After the identification is successful, the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value are transmitted to the antenna resonance module under the control of the control module. The antenna sends to the target electronic component.

上述技术方案的工作原理和有益效果为:本发明通过加密模块对第一加密芯片数据进行加密;天线谐振模块,与加密模块连接,用于将第二加密芯片数据通过天线发送至目标电子元器件;采用加密密钥对第一加密芯片数据进行加密,得到第二加密芯片数据,节约了加密模块的存储空间,先采用加密密钥进行加密首先保证了第一加密芯片数据的安全性;加密模块对加密密钥进行加密,得到密钥块,保证了加密密钥不会被盗取,在通过加密密钥对待加密芯片数据第一次加密的前提下,再对加密密钥进行第二次加密,进一步提升了第一加密芯片数据的安全性,也提高了加密密钥的安全性,避免加密密钥的丢失或泄露导致待加密芯片数据的破解;通过将第二加密芯片数据、第一加密芯片数据签名和密钥块传输至天线谐振模块,通过天线发送至目标电子元器件,使得目标电子元器件通过第二加密芯片数据、第一加密芯片数据签名和密钥块对第二加密芯片数据进行解密,通过对第一加密芯片数据签名进行签名认证,比较摘要值是否相同,来确认第一加密芯片数据是否被篡改;本发明的方法简单且快捷,能够快速的实现第一加密芯片数据的加密,保证了第一加密芯片数据通过天线发送至目标电子元器件的安全性。The working principle and beneficial effects of the above technical solution are as follows: the present invention encrypts the data of the first encryption chip through the encryption module; the antenna resonance module is connected with the encryption module, and is used to send the data of the second encryption chip to the target electronic components through the antenna ; Use the encryption key to encrypt the data of the first encryption chip to obtain the data of the second encryption chip, which saves the storage space of the encryption module. Firstly, the encryption key is used to encrypt the data of the first encryption chip to ensure the security of the data of the first encryption chip; the encryption module Encrypt the encryption key to obtain the key block, which ensures that the encryption key will not be stolen. On the premise that the encryption key is used to encrypt the data of the encrypted chip for the first time, the encryption key is encrypted for the second time , which further improves the security of the first encryption chip data, and also improves the security of the encryption key, avoiding the loss or leakage of the encryption key to crack the data of the chip to be encrypted; by combining the second encryption chip data, the first encryption The chip data signature and the key block are transmitted to the antenna resonance module, and sent to the target electronic component through the antenna, so that the target electronic component uses the second encrypted chip data, the first encrypted chip data signature and the key block to encrypt the second encrypted chip data. To decrypt, by performing signature authentication on the first encrypted chip data signature, and comparing whether the digest values are the same, to confirm whether the first encrypted chip data has been tampered with; the method of the present invention is simple and fast, and can quickly realize the first encrypted chip data. Encryption ensures the security of the first encrypted chip data sent to the target electronic components through the antenna.

实施例2Example 2

如图2所示,在实施例1的基础上,本发明实施例提供的加密模块采用加密密钥对待加密芯片数据进行加密,具体包括:As shown in Figure 2, on the basis of Embodiment 1, the encryption module provided by the embodiment of the present invention uses an encryption key to encrypt the chip data to be encrypted, specifically including:

S101:将第一加密芯片数据分解为表名、字段和数据记录;S101: Decompose the first encrypted chip data into table names, fields and data records;

S102:分解为表名、字段和数据记录的第一加密芯片数据采用数据信息置乱,得到置乱后的第一加密芯片数据;S102: The first encrypted chip data decomposed into table names, fields and data records is scrambled with data information to obtain the scrambled first encrypted chip data;

S103:获取加密模块的初始密钥;S103: Obtain the initial key of the encryption module;

S104:将置乱后的第一加密芯片数据按照字节进行累加,并作为表名、字段和数据记录的特征值,以特征值与初始密钥的差值作为第一加密芯片数据的差异度;S104: Accumulate the scrambled first encrypted chip data by byte, and use it as the characteristic value of the table name, field and data record, and use the difference between the characteristic value and the initial key as the difference degree of the first encrypted chip data ;

S105:将差异度作为初始参数,采用加密模扩散对置乱后的第一加密芯片数据进行加密,得到第二加密芯片数据。S105: Using the degree of difference as an initial parameter, encrypt the scrambled first encrypted chip data by using encryption mode diffusion to obtain second encrypted chip data.

字段还包括字段类型和字段长度。Fields also include field type and field length.

上述技术方案的工作原理和有益效果为:本发明将第一加密芯片数据分解为表名、字段和数据记录,采用数据信息置乱,得到置乱后的第一加密芯片数据,置乱后的第一加密芯片数据完全清除了第一加密芯片数据的明文特征,提高了第一加密芯片数据的安全性,降低了泄露的风险;将置乱后的第一加密芯片数据按照字节进行累加,得到特征值,进而获取第一加密芯片数据的差异度,采用加密模扩散对置乱后的第一加密芯片数据进行加密,扩大差异度对第一加密芯片数据的敏感性,提高扩散加密的效率,有助于进一步提升数据的安全性,为加密芯片的通信传输安全提供保障。The working principle and beneficial effects of the above technical solution are as follows: the present invention decomposes the first encrypted chip data into table names, fields and data records, uses data information to scramble, obtains the first encrypted chip data after scrambling, and obtains the first encrypted chip data after scrambling. The first encrypted chip data completely clears the plaintext features of the first encrypted chip data, which improves the security of the first encrypted chip data and reduces the risk of leakage; the scrambled first encrypted chip data is accumulated in bytes, Obtain the eigenvalue, and then obtain the degree of difference of the first encrypted chip data, and use encryption module diffusion to encrypt the scrambled first encrypted chip data, expand the sensitivity of the difference degree to the first encrypted chip data, and improve the efficiency of diffusion encryption , help to further improve the security of data, and provide guarantee for the security of communication transmission of the encryption chip.

实施例3Example 3

在实施例2的基础上,本发明实施例提供的数据信息置乱的公式为:On the basis of Embodiment 2, the formula for scrambling data information provided by the embodiment of the present invention is:

其中,x、y和z分别表示置乱后的表名、字段和数据记录,a和b表示数据信息置乱的变换参数,x1、y1和z1分别表示第一加密芯片数据的表名、字段和数据记录,A、B和C分别表示表名、字段和数据记录的大小,1表示表名、字段和数据记录的初始值;Among them, x, y and z represent the table name, field and data record after scrambling respectively, a and b represent the transformation parameters of data information scrambling, x 1 , y 1 and z 1 represent the table of the first encrypted chip data respectively Name, field and data record, A, B and C represent the size of the table name, field and data record respectively, 1 represents the initial value of the table name, field and data record;

加密模扩散的密文D:Ciphertext D of encrypted modulus diffusion:

其中,E表示初始密钥,K表示密文向量,P表示差异度。Among them, E represents the initial key, K represents the ciphertext vector, and P represents the degree of difference.

上述技术方案的工作原理和有益效果为:本发明将分解为表名、字段和数据记录的第一加密芯片数据采用数据信息置乱,通过数据信息置乱的公式得到置乱后的第一加密芯片数据,置乱后的第一加密芯片数据完全清除了第一加密芯片数据的明文特征,提高了第一加密芯片数据的安全性,降低了泄露的风险,提高了数据信息置乱的效率,降低了加密芯片的负载,同时将加密芯片的算法复杂度;加密模扩散对置乱后的第一加密芯片数据进行加密,扩大差异度对第一加密芯片数据的敏感性,提高扩散加密的效率。The working principle and beneficial effects of the above technical solution are as follows: the present invention uses data information to scramble the first encrypted chip data decomposed into table names, fields and data records, and obtains the scrambled first encrypted data through the data information scrambling formula. Chip data, the first encrypted chip data after scrambling completely clears the plaintext features of the first encrypted chip data, improves the security of the first encrypted chip data, reduces the risk of leakage, and improves the efficiency of data information scrambling. Reduce the load of the encryption chip, and at the same time reduce the algorithm complexity of the encryption chip; the encryption model diffusion encrypts the data of the first encryption chip after scrambling, expands the sensitivity of the difference to the data of the first encryption chip, and improves the efficiency of diffusion encryption .

实施例4Example 4

如图3所示,在实施例1的基础上,本发明实施例提供的加密密钥进行加密,得到密钥块,具体包括:As shown in Figure 3, on the basis of Embodiment 1, the encryption key provided by the embodiment of the present invention is encrypted to obtain a key block, which specifically includes:

S201:控制模块将第一加密密钥签密获得的信息传输到第一加密模块;再将第二加密密钥签密获得的信息传输到第二加密模块;然后再将第三加密密钥签密获得的信息传输到第三加密模块;S201: The control module transmits the information obtained by signcryption of the first encryption key to the first encryption module; then transmits the information obtained by signcryption of the second encryption key to the second encryption module; and then signs the information obtained by the third encryption key The information obtained by encryption is transmitted to the third encryption module;

S202:将第一加密密钥、第二加密密钥和第三加密密钥以及公开密钥形成密钥块。S202: Form the first encryption key, the second encryption key, the third encryption key and the public key into a key block.

上述技术方案的工作原理和有益效果为:本发明通过控制模块将第一加密密钥签密获得的信息传输到第一加密模块;再将第二加密密钥签密获得的信息传输到第二加密模块;然后再将第三加密密钥签密获得的信息传输到第三加密模块,实现了加密密钥的分发,提高了加密模块对加密密钥进行加密的效率,缩短了加密时间,加密时间的缩短有助于提高数据的安全性,同时降低泄露的几率。The working principle and beneficial effects of the above technical solution are as follows: the present invention transmits the information obtained by signcryption of the first encryption key to the first encryption module through the control module; and then transmits the information obtained by signcryption of the second encryption key to the second encryption module. encryption module; then the information obtained by the third encryption key signcryption is transmitted to the third encryption module, which realizes the distribution of the encryption key, improves the efficiency of the encryption module to encrypt the encryption key, shortens the encryption time, and encrypts This reduction in time helps to increase the security of data while reducing the chances of a breach.

实施例5Example 5

如图4所示,在实施例1的基础上,本发明实施例提供的对第一加密芯片数据签名并计算摘要值,具体包括:As shown in Figure 4, on the basis of Embodiment 1, the signature of the first encrypted chip data and the calculation of the digest value provided by the embodiment of the present invention specifically include:

S401:根据第一加密芯片数据及数字签名算法的属性信息计算签名对应的字节范围;S401: Calculate the byte range corresponding to the signature according to the first encrypted chip data and the attribute information of the digital signature algorithm;

S402:根据字节范围提取第一加密芯片数据的字节范围数据;S402: Extract byte range data of the first encrypted chip data according to the byte range;

S403:根据字节范围数据计算摘要值。S403: Calculate a digest value according to the byte range data.

上述技术方案的工作原理和有益效果为:本发明根据第一加密芯片数据及数字签名算法的属性信息计算签名对应的字节范围;根据字节范围提取第一加密芯片数据的字节范围数据;根据字节范围数据计算摘要值,将摘要值传输至天线谐振模块,通过天线发送至目标电子元器件,通过对第一加密芯片数据签名进行签名认证,比较摘要值是否相同,来确认第一加密芯片数据是否被篡改。The working principle and beneficial effects of the above technical solution are as follows: the present invention calculates the byte range corresponding to the signature according to the attribute information of the first encrypted chip data and the digital signature algorithm; extracts the byte range data of the first encrypted chip data according to the byte range; Calculate the digest value based on the byte range data, transmit the digest value to the antenna resonator module, send it to the target electronic component through the antenna, and verify the first encryption by performing signature authentication on the data signature of the first encrypted chip, and comparing whether the digest value is the same Whether the chip data has been tampered with.

实施例6Example 6

在实施例5的基础上,本发明实施例提供的数字签名算法的属性信息,包括:加密密钥的公钥和私钥;数字签名算法的签名方程为:On the basis of Embodiment 5, the attribute information of the digital signature algorithm provided by the embodiment of the present invention includes: the public key and the private key of the encryption key; the signature equation of the digital signature algorithm is:

α=ελmodθα= ελ mod θ

β=εμmodθβ=ε μ mod θ

γ=εvmodθγ = ε v mod θ

δ=(λβ+μγ+νξ)mod(θ-1)δ=(λβ+μγ+νξ) mod(θ-1)

其中,λ为私钥,μ和ν为保密的随机数,α、θ和ε为公钥,γ、β和ξ为数字签名,δ表示第一加密芯片数据。Wherein, λ is a private key, μ and ν are confidential random numbers, α, θ and ε are public keys, γ, β and ξ are digital signatures, and δ represents the first encrypted chip data.

上述技术方案的工作原理和有益效果为:本发明采用数字签名算法对第一加密芯片数据进行数字签名,提高了第一加密芯片数据的保密性,同时降低了受攻击成功的概率,有助于提高加密模块的工作效率,优化了加密芯片的性能。The working principle and beneficial effects of the above technical solution are as follows: the present invention uses a digital signature algorithm to digitally sign the data of the first encrypted chip, which improves the confidentiality of the data of the first encrypted chip and reduces the probability of successful attack, which contributes to Improve the working efficiency of the encryption module and optimize the performance of the encryption chip.

实施例7Example 7

在实施例1的基础上,本发明实施例提供的天线谐振模块设置有抗干扰器,用以处理第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值发送至目标电子元器件过程中的干扰信号,具体包括:On the basis of Embodiment 1, the antenna resonance module provided by the embodiment of the present invention is provided with an anti-jamming device to process the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value and send them to the target electronic unit Interfering signals in the device process, including:

天线谐振模块接收第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值后经过脉冲编码调制,变为模拟信号,将模拟信号送至模数采样进入可编辑阵列逻辑,得到数字信号;The antenna resonance module receives the second encryption chip data, the first encryption chip data signature, the key block and the digest value, and then undergoes pulse code modulation to become an analog signal. The analog signal is sent to the modulus sampling and enters the editable array logic to obtain the digital Signal;

将数字信号正交下变频低通滤波,得到正交的数字信号,与自适应权值相乘,完成干扰滤波;The digital signal is orthogonally down-converted and low-pass filtered to obtain an orthogonal digital signal, which is multiplied by the adaptive weight to complete the interference filtering;

输出干扰滤波处理后的数字信号,包含第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值的数字信号。Outputting the digital signal processed by the interference filter, including the digital signal of the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value.

上述技术方案的工作原理和有益效果为:本发明的天线谐振模块设置有抗干扰器,用以处理第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值发送至目标电子元器件过程中的干扰信号,降低了第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值受到干扰的概率,提升了天线谐振模块的发送效率,保证了第二加密芯片数据、第一加密芯片数据签名、密钥块和摘要值能够准确的到达目标电子元器件。The working principle and beneficial effects of the above technical solution are: the antenna resonant module of the present invention is provided with an anti-jamming device for processing the second encrypted chip data, the first encrypted chip data signature, the key block and the digest value and sending them to the target electronic unit The interference signal in the device process reduces the probability of the second encryption chip data, the first encryption chip data signature, the key block and the summary value being disturbed, improves the transmission efficiency of the antenna resonant module, and ensures the second encryption chip data, The first encrypted chip data signature, key block and digest value can accurately reach the target electronic component.

实施例8Example 8

在实施例1的基础上,本发明实施例提供的通信模块识别目标电子元器件的身份包括:On the basis of Embodiment 1, the identification of the identity of the target electronic component by the communication module provided by the embodiment of the present invention includes:

计算机视觉单元获取目标电子元器件的图片,截取图片的文字区域,并识别文字区域的文字特征,获得文字识别结果;The computer vision unit obtains the picture of the target electronic component, intercepts the text area of the picture, and recognizes the text features of the text area, and obtains the text recognition result;

将文字识别结果与存储模块的设备特征进行匹配,根据文字确定目标电子元器件的身份。Match the text recognition result with the device characteristics of the storage module, and determine the identity of the target electronic component based on the text.

上述技术方案的工作原理和有益效果为:本发明通过对目标电子元器件的图片识别文字区域的文字进行识别,将文字识别结果与存储模块的设备特征进行匹配,精准识别出各识别文字对应的文字,并通过文字确定目标电子元器件的身份,以文字识别的准确性保证目标电子元器件的身份的准确性和稳定性,实现了加密芯片的通信安全。The working principle and beneficial effects of the above technical solution are as follows: the present invention recognizes the text in the text area of the image recognition text of the target electronic component, matches the text recognition result with the device characteristics of the storage module, and accurately recognizes the text corresponding to each recognition text Text, and determine the identity of the target electronic component through the text, and ensure the accuracy and stability of the identity of the target electronic component with the accuracy of text recognition, and realize the communication security of the encryption chip.

实施例9Example 9

如图5所示,在实施例1的基础上,本发明实施例提供的加密芯片包括:As shown in Figure 5, on the basis of Embodiment 1, the encryption chip provided by the embodiment of the present invention includes:

整流模块,用于产生加密芯片所需的电源;A rectifier module, used to generate the power required by the encryption chip;

除频模块,与整流模块并联,用于产生所述加密芯片所需的时钟;The frequency division module is connected in parallel with the rectification module, and is used to generate the clock required by the encryption chip;

控制模块,分别与整流模块和除频模块电连接,用于总控加密芯片的工作流程;The control module is electrically connected with the rectification module and the frequency division module respectively, and is used for the work flow of the general control encryption chip;

存储模块,与控制模块电连接,用于存储芯片数据;The storage module is electrically connected with the control module and used for storing chip data;

通信模块,与加密模块、控制模块和存储模块连接,用于实现加密芯片的通信,识别目标电子元器件的身份,与存储模块存储的设备特征比对,身份识别成功后,在控制模块的控制下加密模块将加密的加密芯片数据发送至天线谐振模块;通信模块内设置有获取目标电子元器件的图片的计算机视觉单元;The communication module is connected with the encryption module, the control module and the storage module, and is used to realize the communication of the encryption chip, identify the identity of the target electronic component, and compare it with the device characteristics stored in the storage module. The lower encryption module sends the encrypted encryption chip data to the antenna resonance module; the communication module is provided with a computer vision unit for obtaining pictures of the target electronic components;

加密模块,分别与控制模块和存储模块电连接,包含有多个加密模块,用于对加密芯片数据进行加密;The encryption module is electrically connected to the control module and the storage module respectively, and contains multiple encryption modules for encrypting the data of the encryption chip;

天线谐振模块,与通信模块连接,用于将加密模块加密的加密芯片数据通过天线发送至目标电子元器件。The antenna resonant module is connected with the communication module, and is used for sending the encryption chip data encrypted by the encryption module to the target electronic components through the antenna.

上述技术方案的工作原理和有益效果为:本发明通过采用整流模块用于产生加密芯片所需的电源;除频模块用于产生所述加密芯片所需的时钟;控制模块用于总控加密芯片的工作流程;存储模块用于存储芯片数据;加密模块用于对加密芯片数据进行加密;天线谐振模块用于将加密模块加密的加密芯片数据通过天线发送至目标电子元器件。本发明先用加密模块对加密芯片数据进行加密,再通过天线谐振模块进行无线发送,提高了加密频偏通信传输的安全性,避免了数据的泄露,有助于提升加密芯片整体的安全性。The working principle and beneficial effects of the above technical solution are as follows: the present invention uses a rectifier module to generate the power required by the encryption chip; the frequency division module is used to generate the clock required by the encryption chip; the control module is used to control the encryption chip The workflow; the storage module is used to store the chip data; the encryption module is used to encrypt the encrypted chip data; the antenna resonance module is used to send the encrypted chip data encrypted by the encryption module to the target electronic components through the antenna. The invention first encrypts the encryption chip data with the encryption module, and then transmits wirelessly through the antenna resonance module, which improves the security of encrypted frequency offset communication transmission, avoids data leakage, and helps to improve the overall security of the encryption chip.

显然,本领域的技术人员可以对本发明进行各种改动和变型而不脱离本发明的精神和范围。这样,倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内,则本发明也意图包含这些改动和变型在内。Obviously, those skilled in the art can make various changes and modifications to the present invention without departing from the spirit and scope of the present invention. Thus, if these modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalent technologies, the present invention also intends to include these modifications and variations.

Claims (4)

1. The method for improving the communication transmission security of the encryption chip is characterized by comprising the following steps of:
the encryption module receives the first encryption chip data, and encrypts the first encryption chip data by adopting an encryption key to obtain second encryption chip data;
the encryption module encrypts the encryption key under the control of the control module to obtain a key block; signing the first encryption chip data and calculating a digest value;
the communication module recognizes the identity of the target electronic component, and transmits the second encryption chip data, the first encryption chip data signature, the key block and the digest value to the antenna resonance module, and the second encryption chip data, the first encryption chip data signature, the key block and the digest value are transmitted to the target electronic component through the antenna;
the control module transmits the information obtained by the first encryption key signcryption to the first encryption module; transmitting the information obtained by the second encryption key signcryption to a second encryption module; then transmitting the information obtained by the third encryption key signcryption to a third encryption module;
forming a key block from the first encryption key, the second encryption key, and the third encryption key and the public key;
encrypting the chip data to be encrypted specifically comprises the following steps:
decomposing the first encryption chip data into table names, fields and data records;
the first encryption chip data which are decomposed into table names, fields and data records are scrambled by adopting data information, so that scrambled first encryption chip data are obtained;
acquiring an initial key of an encryption module;
accumulating the scrambled first encryption chip data according to bytes, taking the accumulated first encryption chip data as characteristic values of table names, fields and data records, and taking the difference value of the characteristic values and an initial key as the difference degree of the first encryption chip data;
encrypting the scrambled first encryption chip data by using the degree of difference as an initial parameter and adopting encryption mode diffusion to obtain second encryption chip data;
the formula of data information scrambling is:
wherein x, y and z respectively represent the scrambled table name, field and data record, a and b represent the data information scrambled transformation parameters, x 1 、y 1 And z 1 The table name, the field and the data record of the first encryption chip data are respectively represented, A, B and C respectively represent the sizes of the table name, the field and the data record, and 1 represents the initial values of the table name, the field and the data record;
cipher text D of encryption modulo diffusion:
wherein E represents an initial key, K represents a ciphertext vector, and P represents a degree of difference;
signing the first encryption chip data and calculating a digest value, specifically comprising:
calculating a byte range corresponding to the signature according to the attribute information of the first encryption chip data and the digital signature algorithm;
extracting byte range data of the first encrypted chip data according to the byte range;
calculating a digest value from the byte range data;
attribute information of a digital signature algorithm, comprising: a public key and a private key of the encryption key;
the signature equation of the digital signature algorithm is:
α=ε λ modθ
β=ε μ modθ
γ=ε v modθ
δ=(λβ+μγ+vξ)mod(θ-1)
where λ is a private key, μ and v are secret random numbers, α, θ and ε are public keys, γ, β and ζ are digital signatures, and δ represents the first encrypted chip data.
2. The method for improving security of communication transmissions of an encrypted chip of claim 1, wherein the field further comprises a field type and a field length.
3. The method for improving the communication transmission safety of the encryption chip according to claim 1, wherein the antenna resonance module receives the second encryption chip data, the first encryption chip data signature, the key block and the digest value, then changes the second encryption chip data, the first encryption chip data signature, the key block and the digest value into analog signals through pulse code modulation, and sends the analog signals to analog-digital sampling to enter editable array logic to obtain digital signals;
quadrature down-conversion low-pass filtering is carried out on the digital signals to obtain quadrature digital signals, and the quadrature digital signals are multiplied by the self-adaptive weight to finish interference filtering;
and outputting the digital signal after interference filtering processing, wherein the digital signal comprises the second encryption chip data, the first encryption chip data signature, the key block and the digest value.
4. An encryption chip, comprising:
the rectification module is used for generating a power supply required by the encryption chip;
the frequency removing module is connected with the rectifying module in parallel and is used for generating a clock required by the encryption chip;
the control module is respectively and electrically connected with the rectification module and the frequency-dividing module and is used for controlling the working flow of the encryption chip;
the storage module is electrically connected with the control module and used for storing chip data;
the communication module is connected with the encryption module, the control module and the storage module and is used for realizing communication of the encryption chip, identifying the identity of the target electronic component, comparing the identity with the equipment characteristics stored by the storage module, and sending the encrypted encryption chip data to the antenna resonance module under the control of the control module after the identity identification is successful;
the encryption module is respectively and electrically connected with the control module and the storage module and comprises a plurality of encryption modules for encrypting the data of the encryption chip; the encryption module receives the first encryption chip data, and encrypts the first encryption chip data by adopting an encryption key to obtain second encryption chip data; accumulating the scrambled first encryption chip data according to bytes, taking the accumulated first encryption chip data as characteristic values of table names, fields and data records, and taking the difference value of the characteristic values and an initial key as the difference degree of the first encryption chip data; encrypting the scrambled first encryption chip data by using the degree of difference as an initial parameter and adopting encryption mode diffusion to obtain second encryption chip data;
the formula of data information scrambling is:
wherein x, y and z respectively represent the scrambled table name, field and data record, a and b represent the data information scrambled transformation parameters, x 1 、y 1 And z 1 The table name, the field and the data record of the first encryption chip data are respectively represented, A, B and C respectively represent the sizes of the table name, the field and the data record, and 1 represents the initial values of the table name, the field and the data record;
cipher text D of encryption modulo diffusion:
wherein E represents an initial key, K represents a ciphertext vector, and P represents a degree of difference;
the antenna resonance module is connected with the communication module and used for transmitting the encrypted chip data encrypted by the encryption module to the target electronic component through the antenna;
the antenna resonance module is provided with an anti-interference device for processing interference signals in the process of transmitting the second encryption chip data, the first encryption chip data signature, the key block and the abstract value to the target electronic component;
signing the first encryption chip data, calculating a digest value, and calculating a byte range corresponding to the signature according to the attribute information of the first encryption chip data and a digital signature algorithm;
attribute information of a digital signature algorithm, comprising: a public key and a private key of the encryption key; the signature equation of the digital signature algorithm is:
α=ε λ modθ
β=ε μ modθ
γ=ε v modθ
δ=(λβ+μγ+vξ)mod(θ-1)
wherein λ is a private key, μ and ν are secret random numbers, α, θ and ε are public keys, γ, β and ζ are digital signatures, and δ represents first encryption chip data.
CN202211291580.5A 2022-10-19 2022-10-19 Method for improving communication transmission safety of encryption chip and encryption chip Active CN115913565B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211291580.5A CN115913565B (en) 2022-10-19 2022-10-19 Method for improving communication transmission safety of encryption chip and encryption chip

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211291580.5A CN115913565B (en) 2022-10-19 2022-10-19 Method for improving communication transmission safety of encryption chip and encryption chip

Publications (2)

Publication Number Publication Date
CN115913565A CN115913565A (en) 2023-04-04
CN115913565B true CN115913565B (en) 2023-08-15

Family

ID=86488861

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211291580.5A Active CN115913565B (en) 2022-10-19 2022-10-19 Method for improving communication transmission safety of encryption chip and encryption chip

Country Status (1)

Country Link
CN (1) CN115913565B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104734855A (en) * 2015-02-12 2015-06-24 天地融科技股份有限公司 Communication methods and system of intelligent secret key device and intelligent secret key device
CN112235794A (en) * 2020-11-17 2021-01-15 南京博洛米通信技术有限公司 WAPI module with encryption chip and transmission method
CN113806772A (en) * 2021-09-03 2021-12-17 武汉虹旭信息技术有限责任公司 Information encryption transmission method and device based on block chain
EP3968597A1 (en) * 2019-11-26 2022-03-16 China Unionpay Co., Ltd Methods and apparatuses for encrypting and decrypting data, storage medium and encrypted file
CN114826656A (en) * 2022-03-02 2022-07-29 国家电网有限公司大数据中心 Trusted data link transmission method and system

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11755747B2 (en) * 2020-12-31 2023-09-12 Meta Platforms Technologies, Llc High throughput storage encryption

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104734855A (en) * 2015-02-12 2015-06-24 天地融科技股份有限公司 Communication methods and system of intelligent secret key device and intelligent secret key device
EP3968597A1 (en) * 2019-11-26 2022-03-16 China Unionpay Co., Ltd Methods and apparatuses for encrypting and decrypting data, storage medium and encrypted file
CN112235794A (en) * 2020-11-17 2021-01-15 南京博洛米通信技术有限公司 WAPI module with encryption chip and transmission method
CN113806772A (en) * 2021-09-03 2021-12-17 武汉虹旭信息技术有限责任公司 Information encryption transmission method and device based on block chain
CN114826656A (en) * 2022-03-02 2022-07-29 国家电网有限公司大数据中心 Trusted data link transmission method and system

Also Published As

Publication number Publication date
CN115913565A (en) 2023-04-04

Similar Documents

Publication Publication Date Title
Lee et al. Security enhancement on a new authentication scheme with anonymity for wireless environments
Karthikeyan et al. RFID security without extensive cryptography
US8363838B2 (en) Methods for the generation of identical symmetrical cryptographic keys
US7613924B2 (en) Encrypted and other keys in public and private battery memories
US7792290B2 (en) Gathering randomness in a wireless smart card reader
US20090153290A1 (en) Secure interface for access control systems
US20060050877A1 (en) Information processing apparatus and method, program, and recording medium
JP4987939B2 (en) Manual RFID security method according to security mode
US8270602B1 (en) Communication systems, transceivers, and methods for generating data based on channel characteristics
Chen et al. An ownership transfer scheme using mobile RFIDs
CN101540675A (en) Smart key equipment and communication method and system of application software
CN115913565B (en) Method for improving communication transmission safety of encryption chip and encryption chip
CN119364360A (en) Railway vehicle operation intelligent mobile terminal safety protection system
KR100796438B1 (en) RFID authentication device and method
CN203104483U (en) Fingerprint authentication platform and NFC application terminal
CN103731828B (en) A kind of terminal unit and method for electronic certificate authentication
CN115776413B (en) Iris encryption-based data transmission method and system
CN103731827B (en) A kind of hand-held audio communication device and method for electronic certificate authentication
CN113988103B (en) RFID identification method based on multiple tags
CN1996832A (en) Initialization method of the symmetric secrete key for the near-field communication handset
CN103780387A (en) Hardware security module, security terminal and realizing method of security terminal
CA2541277C (en) Gathering randomness in a wireless smart card reader
WO2009141773A2 (en) Method and device for encrypted active near field communication
CN106060802A (en) Near field communication (NFC)-based privacy information safety protection method
CN116720537B (en) Bus card data reading method and reading system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载