patents.google.com

CN111147802A - System for encrypting video conference - Google Patents

  • ️Tue May 12 2020

CN111147802A - System for encrypting video conference - Google Patents

System for encrypting video conference Download PDF

Info

Publication number
CN111147802A
CN111147802A CN202010011189.XA CN202010011189A CN111147802A CN 111147802 A CN111147802 A CN 111147802A CN 202010011189 A CN202010011189 A CN 202010011189A CN 111147802 A CN111147802 A CN 111147802A Authority
CN
China
Prior art keywords
module
protocol
control module
network
management module
Prior art date
2020-01-06
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010011189.XA
Other languages
Chinese (zh)
Inventor
何进勇
孙光
陈磊
张磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Xinfang Software Co ltd
Shanghai Cintel Intelligent System Co ltd
Original Assignee
Shanghai Xinfang Software Co ltd
Shanghai Cintel Intelligent System Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
2020-01-06
Filing date
2020-01-06
Publication date
2020-05-12
2020-01-06 Application filed by Shanghai Xinfang Software Co ltd, Shanghai Cintel Intelligent System Co ltd filed Critical Shanghai Xinfang Software Co ltd
2020-01-06 Priority to CN202010011189.XA priority Critical patent/CN111147802A/en
2020-05-12 Publication of CN111147802A publication Critical patent/CN111147802A/en
Status Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/14Systems for two-way working
    • H04N7/15Conference systems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • H04N21/2541Rights Management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/643Communication protocols
    • H04N21/64322IP
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/85Assembly of content; Generation of multimedia applications
    • H04N21/854Content authoring
    • H04N21/8543Content authoring using a description language, e.g. Multimedia and Hypermedia information coding Expert Group [MHEG], eXtensible Markup Language [XML]

Landscapes

  • Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Databases & Information Systems (AREA)
  • Telephonic Communication Services (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention discloses a system for encrypting a video conference, which comprises a protocol processing module, a video server and a video server, wherein the protocol processing module is the interoperability between a heterogeneous program and a platform; the access management module comprises an adaptation module and a processing module; the safety control module comprises a flow control module and a main/standby switching module; the scene combination module provides encrypted communication for a user; the operation management module comprises a right management module, a cooperative user management module and an operation analysis management module; the network management module comprises a monitoring module, an alarm module, a control module and a configuration data management module; the call control module comprises a call control module, a load sharing device and a private network crossing module; the capability control module provides a service interface for controlling service logic. By the system, the transmission of the video signal and the audio signal in the video conference is respectively encrypted, and the safety of the video conference is improved; the ciphertext conversation of the video conference is realized, and the video conference is prevented from being monitored and recorded.

Description

System for encrypting video conference

Technical Field

The invention relates to the technical field of communication encryption, in particular to a system for encrypting a video conference.

Background

In the prior art, problems of recording, screen recording and the like exist in a video conference, video signals and audio signals are often stolen, attacked and changed by hackers in the transmission process, the safety problem is serious, and the current safe transmission protocol cannot meet the problems of monitoring and screen recording in the video conference call.

Disclosure of Invention

In view of the above technical problems in the related art, the present invention provides a system for encrypting a video conference, which can overcome the above disadvantages in the prior art.

In order to achieve the technical purpose, the technical scheme of the invention is realized as follows:

a system for encrypting a video conference, the system comprising: a protocol processing module, an access management module, a security control module, a scene combination module, an operation management module, a network management module, a call control module and an ability control module, wherein,

the protocol processing module is used for processing the data by being based onHTTPOrHTTPSIs/are as followsRESTSOAPProtocol and baseSOCKETIs/are as followsXMLProtocol, composition maturation basedHTTPMobile terminal technology andXMLflexibility and extensibility of;

the access management module is used for adaptingSIPThe system comprises a protocol, an information protocol, a processing terminal access and a circuit domain network adaptation, wherein the protocol processing module comprises an adaptation module and a processing module;

the safety control module comprises a flow control module and a main/standby switching module;

the scene combination module is used for combining one or more atomic capabilities of the platform into a composite capability to provide encrypted communication for a user;

the operation management module comprises a permission management module, a cooperative user management module and an operation analysis management module, wherein the permission management module is used for the operation management personnel to perform permission management;

the network management module is used for monitoring and alarming the running state of the platform, controlling and monitoringAPICalling overload, and managing configuration data of hardware and software of all network element equipment, wherein the network management module comprises a monitoring module, an alarm module, a control module and a configuration data management module;

the call control module is used for being responsible for registration of users, connection of basic calls, networking and addressing of networks and private network crossing support, and comprises a call control module, a load sharing device and a private network crossing module;

the capability control module is used for controlling service logic and providing third-party application orientedRESTful(design style and development mode of network application) service interface, the capability control module comprises a capability control module,RESTThe system comprises an (design style) access gateway module and a media server module.

Further, the adaptation module comprisesSIPProtocol module, information protocol module.

Further, the flow control module is configured to configure the number of client connections accessed and concurrently query the threshold.

Further, the active/standby switching module is configured to configure a provider of each capability and a standby provider, and can automatically switch connections, wherein the standby provider provides capability query.

Further, the monitoring module comprises a platform running state monitoring module,APIAnd calling the monitoring module.

Further, the system is based on terminal supportTCPConnected bySIPAnd the interface maintains a link with the terminal, requests for internal distribution terminals and supports a polling strategy.

Further, the system thereofCNetwork (code division multiple access) usingWINThe protocol is such that the protocol is,NGN/IMS(telephony protocol) network adoptionSIPThe protocol is such that the protocol is,Cthe VPN service triggering adopts target network mode, the fixed network plays sound through the soft exchange network of local network,Cthe network passes through the newly-built independent networkIP(use ofInternetA major set of rules and digital message formats in which a protocol suite exchanges messages between computers on a single network or a series of interconnected networks) is played,NGN(New generation network) andIMSIPmultimedia system) through newly built media serverCIN-MS(Shanghai Xin Fang Intelligent systems Co., Ltd.)MSServer) for playback.

The invention has the beneficial effects that: through the system, on one hand, the transmission of the video signal and the audio signal in the video conference is respectively encrypted, and the safety of the video conference is improved; on the other hand, the ciphertext conversation of the video conference is realized, and the video conference is prevented from being monitored and recorded on a screen.

Drawings

In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings without creative efforts.

Fig. 1 is a schematic block diagram of a system for encrypting a video conference according to an embodiment of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments that can be derived by one of ordinary skill in the art from the embodiments given herein are intended to be within the scope of the present invention.

As shown in fig. 1, a system for encrypting a video conference according to an embodiment of the present invention includes: a protocol processing module, an access management module, a security control module, a scene combination module, an operation management module, a network management module, a call control module and an ability control module, wherein,

the protocol processing module is used for processing the data by being based onHTTPOrHTTPSIs/are as followsRESTSOAPProtocol and baseSOCKETIs/are as followsXMLProtocol, composition maturation basedHTTPMobile terminal technology andXMLflexibility and extensibility of;

the access management module is used for adaptingSIPThe system comprises a protocol, an information protocol, a processing terminal access and a circuit domain network adaptation, wherein the protocol processing module comprises an adaptation module and a processing module;

the safety control module comprises a flow control module and a main/standby switching module;

the scene combination module is used for combining one or more atomic capabilities of the platform into a composite capability to provide encrypted communication for a user;

the operation management module comprises a permission management module, a cooperative user management module and an operation analysis management module, wherein the permission management module is used for the operation management personnel to perform permission management;

the network management module is used for monitoring and alarming the running state of the platform, controlling and monitoringAPICalling overload, and managing configuration data of hardware and software of all network element equipment, wherein the network management module comprises a monitoring module, an alarm module, a control module and a configuration data management module;

the call control module is used for being responsible for registration of users, connection of basic calls, networking and addressing of networks and private network crossing support, and comprises a call control module, a load sharing device and a private network crossing module;

the capability control module is used for controlling service logic and providing third-party application orientedRESTfulA service interface, the capability control module including a capability control module,RESTAn access gateway module and a media server module.

In a specific embodiment of the invention, said adaptationThe module comprisesSIPProtocol module, information protocol module.

In an embodiment of the present invention, the flow control module is configured to configure the number of client connections accessed and concurrently query the threshold.

In a specific embodiment of the present invention, the active/standby switching module is configured to configure a provider of each capability and a standby provider, and can automatically switch a connection, where the standby provider provides a capability query.

In a specific embodiment of the present invention, the monitoring module includes a platform operation state monitoring module and an API call monitoring module.

In one embodiment of the invention, the system is based on support for terminalsTCPConnected bySIPAnd the interface maintains a link with the terminal, requests for internal distribution terminals and supports a polling strategy.

In one embodiment of the invention, the systemCMesh adoptionWINThe protocol is such that the protocol is,NGN/IMSmesh adoptionSIPThe protocol is such that the protocol is,CnetVPNThe service triggering adopts a target network mode, and the fixed network passes through soft switching networks of local networksMRSThe sound is played back,Cthe network passes through the newly-built independent networkIPThe sound is played back,NGNandIMSthrough newly built media serverCIN-MSAnd (5) playing sound.

In order to facilitate understanding of the above-described technical aspects of the present invention, the above-described technical aspects of the present invention will be described in detail below in terms of specific usage.

The invention discloses a video conference realization method and a video conference system. The video conference encryption implementation method comprises the following steps: each voice terminal interacts with the media resource server through the public switched telephone network respectively to realize the encrypted audio transmission among the voice terminals; each conference control terminal interacts with the video conference server through the Internet to realize encrypted video transmission among the conference control terminals, wherein each conference control terminal corresponds to each voice terminal in an encrypted manner; and the video signal from the video conference server and the audio signal from the media resource server are encrypted and fused through each conference control terminal. The invention respectively encrypts the transmission of the video signal and the audio signal in the video conference, thereby improving the safety of the video conference.

The invention provides a method for realizing the security functions of unified security access, identity authentication, data encryption, access control, user behavior audit and the like based on a state secret algorithm for mobile terminal communication system application. The SDK tool is provided, seamless connection with the existing application system can be achieved, and the safety of the video conference is improved.

The system platform is based on high-performance hardware infrastructures such as a plurality of switches, a firewall, a rack server and the like, so that the platform can provide reliable and effective financial anti-fraud risk management and controlAPICapability is open, wherein the platform capability processing is divided into a protocol processing layer, an access management layer,IVPNLayer, safety control layer, scene combination, operation management, etc.

Protocol processing: support is based onHTTPOrHTTPSIs/are as followsRESTSOAPProtocol, and based onSOCKETIs/are as followsXMLAnd (4) protocol. By which maturity can be basedHTTPMobile terminal technology andXMLthe flexibility and extensibility of the system are combined to facilitate interoperability between a large number of heterogeneous programs and platforms.

And (3) access management: adaptationSIPProtocol, information protocol: (SMGP/SMPP/WS) And processing terminal access and circuit domain network adaptation to realize access strategy control.

Safety control: the flow control module can configure the number of the accessed clients and simultaneously and concurrently inquire the threshold; the main/standby switching module can configure each capability provider and the standby provider, when the connection with the main provider is in trouble, the standby provider can automatically switch and provide capability inquiry.

Scene combination: the system can combine one or more atomic capabilities of the platform into a composite capability, provide the encryption communication capability for users, and avoid the risk of being monitored.

Operation management: the method comprises the authority management of operation management personnel, the user management of a partner, the operation analysis management of a platform and the like.

And (3) network management: comprises the monitoring and the alarming of the running state of the platform,APIThe overload control monitoring is called, and the configuration data management of all network element equipment hardware and software of the system is carried out.

Call control service: the system consists of a call control server, a load sharing device and a private network crossing server and is used for being responsible for registration of users, connection of basic calls, networking and addressing of networks, private network crossing support and the like.

Capability control service: controlling a server by capabilities、RESTAccess gateway, media server, etc. for completing service logic control and facing to third party applicationRESTfulA service interface.

Based on support for terminalTCPConnected bySIPAn interface that maintains a link with the terminal (handles heartbeat); and supporting a polling strategy for the request of the internal distribution terminal.

CMesh adoptionWINThe protocol is such that the protocol is,NGN/IMSthe network uses the SIP protocol and the network,CnetVPNThe service triggering adopts a target network mode, namely, an end office switch directly identifies and triggers the service. Fixed network passing through soft exchange network of each local networkMRSThe sound is played back,Cthe network passes through the newly-built independent networkIPThe sound is played back,NGNandIMSthrough newly built media serverCIN-MSAnd (5) playing sound.

The invention provides a video conference system with security functions of unified security access, identity authentication, data encryption, access control, user behavior audit and the like based on a state secret algorithm. The SDK tool is provided, seamless connection with the existing application system can be achieved, and the safety of the video conference is improved.

The hardware wood block specifically comprises: (1) 29 servers in a cluster; (2) the cluster memory capacity is 100T, (3) the cluster storage capacity is 1080T, (4) the related network interface; (5) 2 encryption servers.

In summary, according to the above technical solution of the present invention, on one hand, the transmission of the video signal and the audio signal in the video conference is respectively encrypted, so as to improve the security of the video conference; on the other hand, the ciphertext conversation of the video conference is realized, and the video conference is prevented from being monitored and recorded on a screen.

The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents, improvements and the like that fall within the spirit and principle of the present invention are intended to be included therein.

Claims (7)

1. A system for encrypting a video conference, comprising: a protocol processing module, an access management module, a security control module, a scene combination module, an operation management module, a network management module, a call control module and an ability control module, wherein,

the protocol processing module is used for processing the data by being based onHTTPOrHTTPSIs/are as followsRESTSOAPProtocol and baseSOCKETIs/are as followsXMLProtocol, composition maturation basedHTTPMobile terminal technology andXMLflexibility and extensibility of;

the access management module is used for adaptingSIPThe system comprises a protocol, an information protocol, a processing terminal access and a circuit domain network adaptation, wherein the protocol processing module comprises an adaptation module and a processing module;

the safety control module comprises a flow control module and a main/standby switching module;

the scene combination module is used for combining one or more atomic capabilities of the platform into a composite capability to provide encrypted communication for a user;

the operation management module comprises a permission management module, a cooperative user management module and an operation analysis management module, wherein the permission management module is used for the operation management personnel to perform permission management;

the network management module is used for monitoring and alarming the running state of the platform, controlling and monitoringAPICalling overload, and managing configuration data of hardware and software of all network element equipment, wherein the network management module comprises a monitoring module, an alarm module, a control module and a configuration data management module;

the call control module is used for being responsible for registration of users, connection of basic calls, networking and addressing of networks and private network crossing support, and comprises a call control module, a load sharing device and a private network crossing module;

the capability control module is used for controlling service logic and providing third-party application orientedRESTfulA service interface, the capability control module including a capability control module,RESTAn access gateway module and a media server module.

2. The system of claim 1, wherein the adaptation module comprisesSIPProtocol module, information protocol module.

3. The system of claim 1, wherein the traffic control module is configured to configure the number of client connections accessed and to query the threshold concurrently.

4. The system of claim 1, wherein the active/standby switching module is configured to configure a provider and a standby provider for each capability, and is capable of automatically switching connections, wherein the standby provider provides capability query.

5. The system for encrypting the video conference as claimed in claim 1, wherein the monitoring module comprises a platform operation state monitoring module,APIAnd calling the monitoring module.

6. The system of claim 1, wherein the system is based on support for terminalsTCPConnected bySIPAnd the interface maintains a link with the terminal, requests for internal distribution terminals and supports a polling strategy.

7. The system of claim 1, wherein the system is configured to encrypt video conferencingCMesh adoptionWINThe protocol is such that the protocol is,NGN/IMSmesh adoptionSIPThe protocol is such that the protocol is,CnetVPNThe service triggering adopts a target network mode, the fixed network plays sound through soft switching networks of local networks,Cthe network passes through the newly-built independent networkIPThe sound is played back,NGNandIMSthrough newly built media serverCIN-MSAnd (5) playing sound.

CN202010011189.XA 2020-01-06 2020-01-06 System for encrypting video conference Pending CN111147802A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010011189.XA CN111147802A (en) 2020-01-06 2020-01-06 System for encrypting video conference

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010011189.XA CN111147802A (en) 2020-01-06 2020-01-06 System for encrypting video conference

Publications (1)

Publication Number Publication Date
CN111147802A true CN111147802A (en) 2020-05-12

Family

ID=70523720

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010011189.XA Pending CN111147802A (en) 2020-01-06 2020-01-06 System for encrypting video conference

Country Status (1)

Country Link
CN (1) CN111147802A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112235528A (en) * 2020-10-13 2021-01-15 武汉吉迅信息技术有限公司 Network high definition video conference integrated management system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100444550C (en) * 2006-12-30 2008-12-17 北京邮电大学 Method for realizing multiple early media services in one call
CN106357709A (en) * 2015-07-14 2017-01-25 中国移动通信集团公司 Communication network power opening system and communication network power opening method
CN109327674A (en) * 2018-12-21 2019-02-12 武汉立信通达科技有限公司 A kind of conference control system
CN110148001A (en) * 2019-04-29 2019-08-20 上海欣方智能系统有限公司 A kind of system and method for realizing fraudulent trading intelligent early-warning

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100444550C (en) * 2006-12-30 2008-12-17 北京邮电大学 Method for realizing multiple early media services in one call
CN106357709A (en) * 2015-07-14 2017-01-25 中国移动通信集团公司 Communication network power opening system and communication network power opening method
CN109327674A (en) * 2018-12-21 2019-02-12 武汉立信通达科技有限公司 A kind of conference control system
CN110148001A (en) * 2019-04-29 2019-08-20 上海欣方智能系统有限公司 A kind of system and method for realizing fraudulent trading intelligent early-warning

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112235528A (en) * 2020-10-13 2021-01-15 武汉吉迅信息技术有限公司 Network high definition video conference integrated management system
CN112235528B (en) * 2020-10-13 2023-03-24 武汉吉迅信息技术有限公司 Network high definition video conference integrated management system

Similar Documents

Publication Publication Date Title
US10749979B1 (en) 2020-08-18 Packetcable controller for voice over IP network
JP4359394B2 (en) 2009-11-04 Method for exchanging signaling messages in two phases
EP1885096B1 (en) 2012-07-04 Application session border element
US7274662B1 (en) 2007-09-25 Method for performing segmented resource reservation
US7151772B1 (en) 2006-12-19 Method for performing lawfully-authorized electronic surveillance
US6983040B1 (en) 2006-01-03 Method for call forwarding without hairpinning and with split billing
US8266452B2 (en) 2012-09-11 System and method for communicating confidential messages
US7809846B2 (en) 2010-10-05 Resilient application layer overlay framework for converged communication over Internet protocol networks
US8713167B1 (en) 2014-04-29 Distributive data capture
US8204202B2 (en) 2012-06-19 Method and system for playing ringing back tone in IMS network
JP5210509B2 (en) 2013-06-12 Intelligent boundary element
KR20090053924A (en) 2009-05-28 How to Provide Call Center Services in a Peer to Peer Network
US20190208061A1 (en) 2019-07-04 System and method for transmitting signaling and media from a hybrid contact center operations environment
US8934478B2 (en) 2015-01-13 Managing telephony services using multiple users within a telephony control point in a home network
US8934342B2 (en) 2015-01-13 System and method for obviating a meet-me conference hub
US8359434B1 (en) 2013-01-22 Distributive network control
WO2014114088A1 (en) 2014-07-31 Method and service platform for implementing broadband service function in next generation network (ngn)
CN111147802A (en) 2020-05-12 System for encrypting video conference
US20150327074A1 (en) 2015-11-12 System and Method for Facilitating Secure Voice Communication over a Network
US8990890B2 (en) 2015-03-24 Enabling presence information access and authorization for home network telephony
CN110324154A (en) 2019-10-11 A kind of reserving method and device of video conference
Qadeer 2012 Dynamic call transfer through wi-fi networks using asterisk
JP7662797B2 (en) 2025-04-15 VoLTE voice encryption communication method, terminal and system
CN108513294A (en) 2018-09-07 A kind of S-CSCF application servers and method based on Heterogeneous Computing
CN111132147A (en) 2020-05-08 Method for realizing encrypted call on mobile terminal

Legal Events

Date Code Title Description
2020-05-12 PB01 Publication
2020-05-12 PB01 Publication
2020-06-05 SE01 Entry into force of request for substantive examination
2020-06-05 SE01 Entry into force of request for substantive examination
2022-03-18 RJ01 Rejection of invention patent application after publication

Application publication date: 20200512

2022-03-18 RJ01 Rejection of invention patent application after publication