移动平台透明加密方法 Transparent encryption mobile platform

技术领域 Technical Field

[0001] 本发明涉及一种移动平台加密方法，特别是移动平台透明加密方法。 [0001] The present invention relates to a method for encrypting moving platform, especially mobile platforms transparent encryption method.

背景技术 Background

[0002]目前，移动互联网已经逐步深入人们的生活，各种移动通信设备应接不暇，比如智能手机、平板电脑等，已经成为人们生活的必需品。 [0002] At present, the mobile Internet has gradually deepened people's lives, overwhelmed by various mobile communication devices, such as smart phones, tablet computers, has become a necessity of life. 但是，如何确保移动通信设备中的各种隐私文件、数据不被泄漏至互联网，是一个迫切需要解决的问题。 But how to ensure that the mobile communication device in a variety of private files, the data is not leaked to the Internet, is an urgent problem to be solved. 特别是当今云存储强大功能的应用，人们可以将数据存放在云端，便于随时随地的使用，但是又担心个人的隐私数据被泄漏，例如，移动通信设备用户把自己拍摄的照片和视频上传到云端，但是又担心自己的隐私照片或视频在云端被泄漏至互联网，这样的例子在我们生活中已经多的数不胜数。 Especially the application of today's powerful cloud storage, it can store data in the cloud, anytime, anywhere easy to use, but also worried that the privacy of personal data was leaked, for example, mobile communication device users to their own photographs and videos uploaded to the cloud , but also worried about their privacy photo or video in the cloud was leaked to the Internet, such examples in our lives has been more numerous. 现有技术中，用户可以自己设置密码对上传的数据进行加密，但是这样毕竟复杂，用户需要记住自己的密码，而且这些简单的密码很容易就被破解了，形式的发展，促使透明加密的产生。 Conventionally, the user can set a password to upload their own data encryption, but after all this complexity, users need to remember your password, but these simple passwords can easily be cracked, forms of development, to promote transparent encryption production.

发明内容 DISCLOSURE

[0003] 本发明的目的在于克服现有技术的不足，提供一种使用方便、能保证移动通信设备的隐私文件信息不被泄漏至互联网的移动平台透明加密方法。 [0003] The object of the present invention to overcome the deficiencies of the prior art and to provide an easy to use, to ensure the privacy of the mobile communication device file information from being leaked to the Internet mobile platform transparent encryption method.

[0004] 本发明的目的是通过以下技术方案来实现的:移动平台透明加密方法，它包括加密步骤和解密步骤，所述的加密步骤包括以下子步骤: [0004] The object of the present invention is achieved by the following technical solution: the mobile platform transparent encryption method, which comprises the steps encrypting and decrypting step, said encrypting step comprises the substeps of:

(1)用户保存文件，数据流传输至文件系统驱动； (1) the user to save the file, the data stream to the file system driver;

(2)文件系统驱动根据用户的配置判断是否需要对数据加密； (2) file system driver based on the user's profile to determine whether the need for data encryption;

(3)需要加密时，文件系统驱动对数据加密，并将加密后的数据保存至存储介质； (3) requires encryption, file system driver for data encryption, data is encrypted and saved to the storage medium;

(4)不需要加密时，文件系统驱动直接将数据传输至存储介质； (4) need not be encrypted, the file system driver to transfer data directly to the storage medium;

所述的解密步骤是加密步骤的逆步骤，包括以下子步骤: Said step of decrypting encryption step is the inverse of the step comprising the substeps of:

(1)用户打开应用程序，应用程序准备读取文件信息； (1) Users open the application, the application is ready to read the file information;

(2)文件系统驱动根据用户的配置查看应用程序是否有解密权限； (2) file system driver based on the user's configuration view application has the decryption authority;

(3)应用程序有解密权限时，文件系统驱动提取出存储介质中的相应文件并对其解密，然后将解密后的文件返回至应用程序； (3) application to decrypt permissions, file system driver to extract the storage medium and decrypts the appropriate file, and then decrypt the file after the return to the application;

(4)应用程序没有解密权限时，文件系统驱动提取存储介质中的相应文件，如果文件被加密则向应用程序返回出错信息，如果文件未加密则直接向应用程序返回文件。 (4) The application does not decrypt permissions, file system driver to extract the appropriate storage media file, if the file is encrypted then the application returns an error message if the file is not encrypted file is returned directly to the application.

[0005] 本发明所述的文件系统驱动中包括一个配置数据库，所述的配置数据库中保存有用户对应用程序进行配置和维护的信息。 [0005] The file system of the present invention includes a configuration database drive, the configuration database is stored in the user application configuration and maintenance.

[0006] 本发明的有益效果是:本发明能确保用户的移动通信设备的隐私文件、数据信息不被泄漏至互联网，并且用户不用记忆密码，用户省却了使用普通加密方法时加密和解密操作的繁琐过程，为用户带来极大方便。 [0006] The beneficial effects of the present invention are: the present invention ensures that the user's mobile communication device privacy documents, data information is not leaked to the Internet, and users do not remember the password, the user without the need for the use of common encryption method and decryption operations tedious process, in order to bring a great convenience. 附图说明 Brief Description

[0007] 图1为本发明的加密步骤流程图； [0007] FIG. 1 encryption step flow chart of the present invention;

图2为本发明的解密步骤流程图。 Decryption step 2 of the present invention, a flow chart.

具体实施方式 DETAILED DESCRIPTION

[0008] 下面结合附图进一步详细描述本发明的技术方案，但本发明的保护范围不局限于以下所述。 [0008] In the following detailed description of the drawings further aspect of the present invention bind, but the scope of the present invention is not limited to the following described.

[0009] 如图1所示，移动平台透明加密方法，它包括加密步骤和解密步骤，如图1所示，所述的加密步骤包括以下子步骤: [0009] 1, the mobile platform transparent encryption method, which comprises the steps encryption and decryption step, shown in Figure 1, the encrypting step comprises the substeps of:

(1)用户保存文件，数据流传输至文件系统驱动； (1) the user to save the file, the data stream to the file system driver;

(2)文件系统驱动根据用户的配置判断是否需要对数据加密； (2) file system driver based on the user's profile to determine whether the need for data encryption;

(3)需要加密时，文件系统驱动对数据加密，并将加密后的数据保存至存储介质； (3) requires encryption, file system driver for data encryption, data is encrypted and saved to the storage medium;

(4)不需要加密时，文件系统驱动直接将数据传输至存储介质； (4) need not be encrypted, the file system driver to transfer data directly to the storage medium;

如图2所示，所述的解密步骤是加密步骤的逆步骤，包括以下子步骤: As shown, the step of decrypting said encryption step is the inverse of the step 2, comprising the following substeps:

(1)用户打开应用程序，应用程序准备读取文件信息； (1) Users open the application, the application is ready to read the file information;

(2)文件系统驱动根据用户的配置查看应用程序是否有解密权限； (2) file system driver based on the user's configuration view application has the decryption authority;

(3)应用程序有解密权限时，文件系统驱动提取出存储介质中的相应文件并对其解密，然后将解密后的文件返回至应用程序； (3) application to decrypt permissions, file system driver to extract the storage medium and decrypts the appropriate file, and then decrypt the file after the return to the application;

(4)应用程序没有解密权限时，文件系统驱动提取存储介质中的相应文件，如果文件被加密则向应用程序返回出错信息，如果文件未加密则直接向应用程序返回文件。 (4) The application does not decrypt permissions, file system driver to extract the appropriate storage media file, if the file is encrypted then the application returns an error message if the file is not encrypted file is returned directly to the application.

[0010] 本发明所述的文件系统驱动中包括一个配置数据库，所述的配置数据库中保存有用户对应用程序进行配置和维护的信息。 [0010] The file system of the present invention includes a configuration database drive, the configuration database is stored in the user application configuration and maintenance.

[0011] 使用本发明后，用户将照片等信息上传至云端，照片等信息在发送的时候已经是加密的了，当用户把照片等信息从云端下载下来，使用图片浏览工具打开，在打开的时候，照片等信息已经是解密的了，用户根本不知道加密和解密的过程，所有对用户来说，这些是透明的。 [0011] After the use of the present invention, the user will upload photos and other information to the cloud, photos and other information at the time of sending is already encrypted, and when the user to download photos and other information from the cloud, using image browsing tool to open, in the open time, photos and other information has been declassified, the user does not know the encryption and decryption process, all of the users, these are transparent.

[0012] 移动通信设备上的文件，是存放在Flash等不易挥发性介质上的，对于文件的读写，必须经过移动通信设备所使用的操作系统的文件系统驱动才行，因此可以在移动通信设备所使用的操作系统的文件系统驱动上撰写加密和解密代码，在文件系统驱动上建立配置数据库，配置数据库内存储用户对应用程序进行配置和维护的信息，用以配置哪些应用程序有解密文件的权限。 [0012] The mobile communication device file is stored on Flash and other difficult-volatile media, for reading and writing files, you must go through the mobile communication device using an operating system's file system driver for the job, so you can move communications equipment used operating system's file system to encrypt and decrypt the drive to write code, build the configuration database in a file system driver, the internal configuration database to store user application configuration and maintenance information, for which applications are configured to decrypt files permissions.