The present invention relates to the mobile communication field, and in particular, to a method and system for implementing short message encryption.
With the increasing popularization of mobile phone terminals, and SMS (short message services) has played a more and more significant role in people's daily life and has become an important communication way for people. Just because of the popularization of SMS, the security problem of SMS become more and more important. Because in many cases the short message will transmit important information, and once the information is intercepted, huge loss will be brought to the person. Due to the current fixed mechanism of SMS, the content of the message is stored in the PDU (Protocol Data Unit) structure with plaintext. How to ensure secure transmission of short messages becomes an important problem.
The existing short message encryption protection modes mainly include the following types:
Wherein, (1), (2) and (3) are all protection methods based on mobile phone side, and (4) and (5) are protection methods based on the wireless side and network side.
Generally speaking, the protection methods based on the wireless side and network side are more important than the protection methods based on mobile phone side since the mobile phone is commonly in our hands, so we pay more attention on the security of SMS in the wireless transmission and network transmission.
The existing protection methods of the wireless side and network side generally require an extension or modification of the short message PDU format, and in addition, the negotiation of encryption algorithm and transmission of the key should also be implemented. Wherein, the transmission of key and encryption algorithm is per se not secure.
The technical problem to be solved in the present invention is to provide a method and system for implementing short message encryption so as to ensure secure transmission of the short message services (SMS).
In order to solve the above problem, the present invention provides a method for implementing short message encryption, comprising the following steps of:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
In order to solve the above problem, the present invention provides a method for transmitting an encrypted short message, comprising the following steps of:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
In order to solve the above problem, the present invention provides a method for receiving an encrypted short message, comprising the following steps of:
Preferably, the above method further has the following feature:
Preferably, the above method further has the following feature:
In order to solve the above problem, the present invention provides a system for implementing short message encryption, comprising an MS of a transmitting party, an MSC to which the MS of the transmitting party belongs, an MSC to which an MS of a receiving party belongs, the MS of the receiving party, and the MS and MSC of the transmitting party and the MS and MSC of the receiving party are all configured with encryption-decryption modules,
In order to solve the above problem, the present invention provides a mobile station (MS), comprising a transmitting module and a receiving module, as well as an encryption-decryption module, the encryption-decryption module comprises an encryption sub-module and a decryption sub-module, wherein,
Preferably, the above MS further has the following feature:
In order to solve the above problem, the present invention provides a mobile switching center (MSC), comprising a transmitting module and a receiving module, as well as an encryption-decryption module, the encryption-decryption module comprises an encryption sub-module and a decryption sub-module, wherein,
Preferably, the above MSC further has the following feature:
Compared with the prior art, in the present invention, by adding a corresponding encryption-decryption module into the MS (Mobile Station) and MSC (Mobile Switching Center), the short message is encrypted and decrypted using the CK (Cipher Key) which is variable with the RAND (random value) as the encryption-decryption factor, and the key is highly protected during the whole process and is not shared between the receiving and transmitting ends, so that the encrypted short message has a high confidentiality. Moreover, the encryption-decryption module may be provided by the third party and embedded into the terminal and network device, and is configured to change the algorithm as needed and be responsible for performing encryption-decryption operation for the content data of the short message. In this way, even the network, terminal device supplier and operator cannot steal the encrypted short message. In addition, in the scheme of the present invention, the encryption factor is different at each time, which increases the difficulty of cracking from the wireless transmission environment. Besides, the security of the whole transmission environment can be achieved through optional configurations.
The basic concept of the present invention is that an encryption-decryption module is configured in the MS and MSC, and the encryption-decryption module encrypts and decrypts the user data (UD) of the short message using the CK (Cipher Key) as the encryption-decryption factor, thereby enhancing the security of the wireless transmission environment of the short message. Optionally, suitable configuration may be also implemented to achieve the security of the short message in the subsequent network environment, thereby achieving the security of the whole transmission environment.
The method for implementing short message encryption according to the example of the present invention comprises the following steps:
Step 1, the MS (also called as MS A) of the transmitting party encrypts the UD of the PDU of the short message to be transmitted using the CK of the transmitting party as the encryption factor through an encryption-decryption module of itself, sets an encryption identifier in the PDU of the short message to be transmitted, and then sends the short message out;
Step 2, after the short message reaches the MSC to which the MS A belongs via a BSS (Base Station Subsystem, comprising a BTS (Base Transceiver Station) and a BSC (Base Station Controller)) and the MSC receives the short message, if judging according to the encryption identifier therein that the short message is an encrypted short message, the MSC decrypts the UD of the PDU of the short message using the CK of the transmitting party as the decryption factor through an encryption-decryption module of itself, and then sends the short message to an SC (service center) through an IWMSC (interworking message service center);
Step 3, after the MSC to which the MS of the receiving party belongs receives the short message transmitted by the SC through the GMSC (Gateway Mobile Switching Center), if it is judged according to the encryption identifier therein that the short message needs to be encrypted, the MSC to which the MS of the receiving party belongs encrypts the UD of the PDU of the short message using the CK of the receiving party as an encryption factor through its encryption-decryption module and then sends the short message to the MS (which may be called as MS B) of the receiving party through the BTS and BSC to which the MS of the receiving party belongs;
Step 4, after receiving the short message, if judging according to the encryption identifier therein that the short message is an encrypted short message, the MS B decrypts the UD of the PDU of the short message using the CK of the receiving party as the decryption factor through an encryption-decryption module of itself, thereby restoring the content of the short message.
Wherein, the above steps 1 and 2 are flows of transmitting an encrypted short message, while steps 3 and 4 are flows of receiving an encrypted short message.
The above steps can ensure the secure transmission of the short message in the wireless link and between the MS and MSC. In order to ensure secure transmission on the MSC-IWMSCSC-GMSC-MS link, optionally, in step 2, after the MSC to which the MS of the transmitting party belongs decrypts the UD of the PDU of the short message, it encrypts the UD of the PDU of the short message using the user identifier of the receiving party as the encryption factor through an encryption-decryption module of itself, and then sends the short message to the SC through the IWMSC;
The optional steps (encrypting or decrypting using the user identifier of the receiving party as the encryption factor) of the above steps 2 and 3 should be present or absent simultaneously in the whole system so as to ensure the consistence of the whole system.
The above user identifier of the receiving party is MSISDN (Mobile Subscriber International ISDN/PSTN number) or IMSI (International Mobile Subscriber Identification Number) of the receiving party.
The above encryption-decryption module is not limited to a software encryption-decryption module, and may be a hardware encryption-decryption module, and even may be a hardware encryption-decryption module capable of updating the encryption-decryption algorithm.
The CK is calculated with a particular algorithm (for example, the A8 algorithm is used in the GSM system) from a random value (RAND) generated in an authentication process of the MS and MSC and a root key (Ki) of a user. RAND is a random number distributed to the MS during the authentication process of the network for the user when the signaling link is established. Ki is a secure key (128 bit) shared by the USIM (Universal Subscriber Identity Module) and the HLR/AUC (home location register/authentication center) of the home network.
The encryption identifier may be implemented using the remaining Bits of the PDU or by means of an extended field.
In addition, in step 1, optionally, the MS may provide an interface for the user of the transmitting party to select whether to encrypt the short message to be transmitted, and if the user of the transmitting party select to encrypt, the MS of the transmitting party encrypts the UD of the PDU of the short message to be transmitted.
The system in the example of the present invention comprises the MS of the transmitting party, the MSC to which the MS of the transmitting party belongs, the MSC to which the MS of the receiving party belongs, and the MS of the receiving party, as described above.
In the present invention, in order to transmit the encrypted short message more safely, the modification is only to configure an encryption-decryption module in the MS and the MSC, and other fixed flows of short message are not changed.
When the user completely edits the short message and organizes the PDU data of the short message and prepares to send it out, if the user selects to encrypt the short message, the MS encrypts the user data part of the PDU of the short message using its own CK (the CK of the transmitting party) as the encryption factor of the encryption-decryption module, and then sets the short message with an encryption short message identifier, and finally transmits the short message via an air interface. As the specific implementation, the remaining bits Bit3 and Bit2 in the DSC data coding standard of the PDU can be optionally used as 11 for the encryption identifier (currently the 11 combination is not used yet). This step can ensure the high security of wireless transmission. If the user selects not to encrypt the short message, the short message is directly transmitted via the air interface according to the normal flow. In order to simplify the description, the subsequent description only involves the processing flow of short message decryption, since non-encryption of short message uses the normal flow.
After the MS receives a short message, it judges whether the encryption identifier is the encryption mode, if yes, it decrypts the user data part of the PDU of the short message using its own CK (the CK of the receiving party) as the decryption factor of the encryption-decryption module, thereby restoring the content of the short message.
The encrypted short message sent from the MS is sent to the MSC for further forwarding after being received by the BSS, and the MSC needs to judge whether the short message is an encrypted short message when receiving the PDU of the short message, and if yes, it needs to decrypt the short message using the same CK shared by the transmitting party as the decryption factor of the decryption algorithm of the encryption-decryption module. Here it should be noted that the reason that decryption must be performed is that the short message is transmitted according to the store-and-forward mechanism, and the CK obtained by the authentication of the transmitting party cannot be obtained by the receiving party. Even if the short message is decrypted here, the practice in the previous process has ensured the high security of the whole link from the MS to the MSC. In order to ensure the high security of the whole link from the MSC to the SC, we can implement further encryption operation optionally, and in order to ensure that the encryption operation can be correctly decrypted, the identifier of the receiving party is selected (the MSISDN may be selected as an example) as the encryption factor to encrypt the short message that has just been decrypted. Afterwards, the encrypted short message is always stored with encryption when being delivered to the IWMSC and finally to the SC, thereby ensuring the security of the link between the MSC and the SC. The security of the whole link can be ensured as long as the security of the encryption-decryption algorithm is ensured. Of course, the optional portion in the figure may not be used, thus the subsequently transmitted short message is a plaintext short message only with the encryption identifier, and the security of the link from the MSC to the SC will have a certain loss.
The work of the SC after receiving the short message is to further store and forward the short message to the receiving party. The SC firstly gives the whole message to the GMSC, the GMSC then searches for the MSC to which a plurality of receiving parties belong and further sends the short message to the MSC, and the MSC forwards the short message to the MS of the receiving party through the BSS after paging the MS of the receiving party and successfully authenticating. Before forwarding the short message, the MSC needs to judge whether the short message has an encrypted short message identifier. If there is no encrypted short message identifier, the MSC transmits the short message as a normal short message; otherwise, the user data of the PDU are firstly decrypted using the identifier of the receiving party as the decryption factor of the encryption-decryption module when the whole system is provided with the optional module, and when there is no optional module, the short message per se is the decrypted content and thus does not need to be decrypted; afterwards, as for the decrypted content, the user data of the PDU is encrypted using the CK of the receiving party as the encryption factor of the encryption-decryption module, and then the encrypted short message is sent to the receiving party through the BSS system. Here it should be pointed out that the optional module must be collectively configured entirely for the sake of avoiding the transmission of the key and convenience of subsequently updating the encryption-decryption module algorithm.
Correspondingly, the MS in the example of the present invention comprises a transmitting module, a receiving module and an encryption-decryption module, the encryption-decryption module comprises an encryption sub-module and a decryption sub-module, wherein, the encryption sub-module is configured to encrypt a short message to be transmitted using a current CK as an encryption factor, and send the short message out through the transmitting module;
Optionally, the MS further comprises an interface module,
Correspondingly, the MSC in the example of the present invention comprises a transmitting module and a receiving module, as well as an encryption-decryption module, the encryption-decryption module comprises an encryption sub-module and a decryption sub-module, wherein,
Optionally, the encryption sub-module is further configured to, after the decryption sub-module decrypts the short message using the CK of the transmitting party, encrypt the short message using a user identifier of the receiving party as the encryption factor, and then transmit the short message to the SC through the transmitting module; the decryption sub-module is further configured to, after the receiving module receives the short message from the SC, firstly decrypt the short message using the user identifier of the receiving party as the decryption factor, and then encrypt the short message using the CK of the receiving party as the encryption factor through the encryption sub-module.
A person having ordinary skill in the art can appreciate that all or part of the steps of the above method may be implemented by instructing related hardware with a program, which may be stored in a computer-readable medium, such as a read-only memory, a magnetic disk or an optical disk. Optionally, all or part of the steps of the above examples may also be implemented by using one or more integrated circuits. Correspondingly, each module/unit in the above examples may be implemented in the form of hardware, or in the form of software functional modules. The present invention is not limited to any particular form of combination of hardware and software.
The above examples are only preferred examples of the present invention, and are not used to limit the present invention. For a person having ordinary skill in the art, the present invention may have various modifications and changes. Any modification, equivalent substitution and improvement made within the spirit and principle of the present invention should be embodied in the protection scope of the present invention.
In the present invention, by adding a corresponding encryption-decryption module into the MS and MSC, the short message is encrypted and decrypted using the CK which is variable with the RAND (random value) as the encryption-decryption factor, so as to ensure that the network, terminal device supplier and operator cannot steal the encrypted short message, and to ensure secure transmission of SMS. In addition, in the scheme of the present invention, the encryption factor is different at each time, which increases the difficulty of cracking from the wireless transmission environment. Besides, the security of the whole transmission environment can be achieved through optional configurations.
Number | Date | Country | Kind |
---|---|---|---|
201010568985.X | Dec 2010 | CN | national |
Filing Document | Filing Date | Country | Kind | 371c Date |
---|---|---|---|---|
PCT/CN2011/073192 | 4/22/2011 | WO | 00 | 10/16/2012 |