CN105141881A - Method for carrying out video conversation and terminal device - Google Patents
Method for carrying out video conversation and terminal device Download PDFInfo
- Publication number
- CN105141881A CN105141881A CN201510640287.9A CN201510640287A CN105141881A CN 105141881 A CN105141881 A CN 105141881A CN 201510640287 A CN201510640287 A CN 201510640287A CN 105141881 A CN105141881 A CN 105141881A
- Authority
- CN
- China
- Prior art keywords
- video call
- call data
- data
- described video
- preset security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Information Transfer Between Computers (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a method for carrying out video conversation and a terminal device. The method comprises: when video conversation data are detected, whether the video conversation data have confidentiality data is determined; if so, whether a video server corresponding to the video conversation data supports establishment of a preset safety channel to receive the video conversation data is determined; if so, the video conversation data are sent to an agent device arranged at a terminal device side, so that the agent device establishes the preset safety channel to carry out data transmission. Because the safety level of the preset safety channel is higher than that of the https channel, safety of the data transmission can be guaranteed.
Description
Technical field
The present invention relates to Internet communication technology field, particularly relate to a kind of method and the terminal equipment that carry out video calling.
Background technology
Along with the development of science and technology, the kind of electronic product also gets more and more, and people have also enjoyed the various facilities that development in science and technology brings.Present people can pass through various types of terminal equipment, enjoy the comfortable life along with development in science and technology brings.Such as, the terminal equipment such as smart mobile phone, panel computer has become an important part in people's life, and user can use the terminal equipment such as smart mobile phone, panel computer to listen to the music, play games, search for major event of occurring in the recent period etc.Such as, user can use above terminal equipment to search for the recent dress parade held in Beijing of viewing.
And for current data transfer mode, what generally adopt at present is the safe transmission that https passage realizes data, but this transmission means cannot ensure the safety of transfer of data.Such as, user, when carrying out financial transaction with bank server, can send data of financial transaction (as bank's card number, password etc.) to bank server via platforms such as browser, shopping softwares.But this kind of data of financial transaction is likely just stolen by third party's interception in midway, causes data of financial transaction to be revealed, brings loss to user.
Therefore, for current be the transmission means of https passage, even if receive the requirement needing safety-oriented data transfer, still can only utilize https channel transmission data, the fail safe of transfer of data cannot be ensured.
Summary of the invention
In view of the above problems, the present invention is proposed to provide a kind of a kind of method and terminal equipment carrying out video calling overcoming the problems referred to above or solve the problem at least in part.
One aspect of the present invention, provide a kind of method of carrying out video calling, described method comprises:
When video call data being detected, judge whether described video call data has private data;
If when described video call data has described private data, judge further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
If described video server support sets up described preset security passage to receive described video call data, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
Optionally, describedly judge whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secure images content;
If have described secure images content in described view data, then show that described video call data has private data.
Optionally, describedly judge whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secret field;
If have described secret field in described view data, then show that described video call data has private data.
Optionally, describedly judge whether described video call data has private data, specifically comprises:
Judge whether the speech data comprised in described video call data comprises secure content;
If comprise described secure content in described speech data, then show that described video call data has private data.
Optionally, described agent apparatus is built in browser.
Optionally, describedly judge whether video server corresponding to the video call data of described terminal equipment is supported to set up preset security passage to receive described video call data, specifically comprises:
Extract the characteristic information about video server in described video call data;
Characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data.
Optionally, the described characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data, specifically comprises:
Judge whether the characteristic information of described video server exists in white list, in described white list, describe the characteristic information of the server supporting described preset security passage;
If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
Optionally, the characteristic information of described video server comprises: IP address and/or receiving port.
Optionally, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
Optionally, described described video call data is sent to agent apparatus, is specially:
Described agent apparatus is sent to after described video call data is used secret key encryption.
Optionally, judge whether video server corresponding to the video call data of described terminal equipment supports to set up preset security passage to after receiving described video call data, and described method also comprises described:
If described video server is not supported to set up video call data described in preset security channel reception, utilize described htttps passage that described video call data is directly sent to described video server.
Optionally, after described video call data is sent to agent apparatus, described method also comprises:
Receive other video call data that described agent apparatus utilizes described preset security passage to forward from described video server.
Another aspect of the present invention, provides a kind of terminal equipment, comprising:
First judge module, for when video call data being detected, judges whether described video call data has private data;
Second judge module, if when having described private data for described video call data, judges further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
First sending module, if set up described preset security passage to receive described video call data for described video server support, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
Optionally, described first judge module is specifically for judging whether the view data comprised in described video call data has secure images content; If have described secure images content in described view data, then show that described video call data has private data.
Optionally, described first judge module is specifically for judging whether the view data comprised in described video call data has secret field; If have described secret field in described view data, then show that described video call data has private data.
Optionally, described first judge module is specifically for judging whether the speech data comprised in described video call data comprises secure content; If comprise described secure content in described speech data, then show that described video call data has private data.
Optionally, described agent apparatus is built in browser.
Optionally, described second judge module specifically comprises:
Extraction module, for extracting the characteristic information about video server in described video call data;
Judge submodule, for judging based on the characteristic information of described video server whether described video server supports that setting up described preset security passage receives described video call data.
Optionally, describedly judge that submodule is specifically for judging whether the characteristic information of described video server exists in white list, describes the characteristic information of the server supporting described preset security passage in described white list; If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
Optionally, the characteristic information of described video server comprises: IP address and/or receiving port.
Optionally, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
Optionally, described first sending module sends to described agent apparatus after described video call data is used secret key encryption.
Optionally, described terminal equipment also comprises:
Second sending module, for judging whether video server corresponding to the video call data of described terminal equipment supports to set up preset security passage to after receiving described video call data, if described video server is not supported to set up video call data described in preset security channel reception, utilize described htttps passage that described video call data is directly sent to described video server.
Optionally, described terminal equipment also comprises:
Receiver module, for after described video call data is sent to agent apparatus, receives other video call data that described agent apparatus utilizes described preset security passage to forward from described video server.
The technical scheme provided in the embodiment of the present application, at least has following technique effect or advantage:
The invention discloses a kind of method and the terminal equipment that carry out video calling.Method of the present invention, when video call data being detected, first judges whether described video call data has private data; If when described video call data has described private data, judge further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; If support, described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage and carry out transfer of data.Because the level of security of preset security passage is higher than https passage, the fail safe of transfer of data therefore can be ensured.
Further, if video server corresponding to video call data is not supported to set up preset security channel reception video call data, the present invention can also carry out transmission of video communicating data by https passage.As can be seen here, the present invention not only can improve the safety of transfer of data, can also compatible two kinds of transmission meanss transmission data.
Above-mentioned explanation is only the general introduction of technical solution of the present invention, in order to technological means of the present invention can be better understood, and can be implemented according to the content of specification, and can become apparent, below especially exemplified by the specific embodiment of the present invention to allow above and other objects of the present invention, feature and advantage.
Accompanying drawing explanation
By reading hereafter detailed description of the preferred embodiment, various other advantage and benefit will become cheer and bright for those of ordinary skill in the art.Accompanying drawing only for illustrating the object of preferred implementation, and does not think limitation of the present invention.And in whole accompanying drawing, represent identical parts by identical reference symbol.In the accompanying drawings:
Fig. 1 shows system architecture diagram corresponding to a kind of according to an embodiment of the invention method of carrying out video calling;
Fig. 2 shows a kind of according to an embodiment of the invention implementing procedure figure carrying out the method for video calling;
Fig. 3 shows the structural representation of terminal equipment according to an embodiment of the invention.
Embodiment
Below with reference to accompanying drawings exemplary embodiment of the present disclosure is described in more detail.Although show exemplary embodiment of the present disclosure in accompanying drawing, however should be appreciated that can realize the disclosure in a variety of manners and not should limit by the embodiment set forth here.On the contrary, provide these embodiments to be in order to more thoroughly the disclosure can be understood, and complete for the scope of the present disclosure can be conveyed to those skilled in the art.
As a kind of optional embodiment, the invention provides a kind of method of carrying out video calling, the mode in order to solve existing https channel transmission data cannot ensure the problem of data transmission security.It should be noted that the method that the present invention relates to can but be not limited only to be applied in browser, such as utilize browser to carry out video web page call.And except being applied to browser, can also be applied in other application programs, and as: MSN (micro-letter, QQ, Fetion etc.), such as, utilize MSN to carry out video calling.Be described to carry out video calling in browser side below, the execution mode that MSN carries out the execution mode of video calling and browser side is similar, therefore repeats no more.
Please refer to Fig. 1 below, is system architecture diagram corresponding to a kind of method of carrying out video calling provided by the invention.
In system architecture diagram, the equipment related to comprises: terminal equipment, agent apparatus and video server.Wherein, terminal equipment of the present invention can be specifically mobile phone, computer, PAD etc. electronic equipment.For this terminal equipment specifically which kind of electronic equipment, the present embodiment is not specifically limited.The user of terminal equipment is terminal use.Agent apparatus is mainly used in setting up preset security passage with video server, then utilizes preset security passage to forward the video call data of terminal equipment side to video server; Video server is the final arrival point of video call data, is used for carrying out the mutual of video call data with terminal equipment.For example, terminal use utilizes terminal equipment to send video call data, agent apparatus meeting and video server set up preset security passage, then utilize preset security passage video call data to be transmitted to corresponding video server, responded by video server and and terminal equipment carry out the mutual of video call data.
Specifically, terminal equipment side be provided with the monokaryon browser (such as IE browser) of support IE kernel or support the double-core browser of two kinds of kernels (as IE kernel and chrome kernel) simultaneously.Due to the closure of IE kernel, make the browser (comprising monokaryon browser and double-core browser) being provided with IE kernel can only support to set up single channel transmission data.Such as can only set up hypertext transfer protocol secure https channel transmission data, and this data transfer mode easily makes video call data be blocked in transmitting procedure steals, cause leaking data.
In order to address this problem, the present invention is provided with agent apparatus in terminal equipment side.Specifically, the present invention can arrange agent apparatus in browser inside, becomes the part of browser.Or agent apparatus can be used as independently individuality and is present in terminal equipment side.If for MSN, then agent apparatus is built in MSN inside, becomes the part of MSN.Or agent apparatus is present in terminal equipment side as independently individuality.
When agent apparatus is arranged at browser inside, due to the closure of IE kernel, the network library of a network library as agent apparatus can be increased newly at browser, the original network library of browser need not be revised, to reduce the original change of browser as far as possible.
When agent apparatus is arranged at browser inside, set up preset security passage (the close passage of such as state) if determine between needs and video server and transmit data, and after video server supports preset security passage, then certainly can employ new connection and replace original connection (https passage), namely automatically and between video server set up preset security passage to replace original https passage, make browser can be joined seamlessly to preset security passage from https passage.
Agent apparatus has been supported on the basis of https channel transfer at browser, is used for setting up the preset security passage safer than existing https passage with video server.For browser provides other escape way transmission data, to improve the fail safe of the transmission of video call data.Specifically, because agent apparatus is arranged at terminal equipment side, (no matter agent apparatus is arranged on that browser is inner or terminal equipment is inner, all belong to and be arranged on terminal equipment side), the transfer of data therefore between browser and agent apparatus belongs to internal transmission.And the transmission between agent apparatus and video server, be the transmission being carried out video call data by the preset security passage of foundation.Because the level of security of preset security passage is higher than described https passage, therefore, use preset security channel transfer video call data, the fail safe of transmission of video communicating data can be improved.
Further, owing to make use of agent apparatus to set up safer transmission channel transmission of video communicating data, therefore do not affect the use of original https passage, make browser while raising video call data transmission security, go back compatibility two kinds of channel transmission datas.
In addition, browser of the present invention is not limited in the use of single channel at one time, such as, browser, while support utilizes preset security channel transfer video call data to be transmitted, can also utilize https channel transfer (send or receive) other video call data.For example, such as browser just carries out the mutual of video call data with video server on certain webpage.And simultaneously on another webpage, browser can receive the data (such as the webpage homepage data in so-and-so store) that other servers send.
Please refer to Fig. 2 below, is the implementation process figure carrying out the method for video calling provided by the invention.
S1, when video call data being detected, judges whether described video call data has private data.
As a kind of possible implementation, when judging whether described video call data has private data, can judge whether the view data comprised in described video call data has secure images content; If have described secure images content in described view data, then show that described video call data has private data.Specifically, video call data can be split as view data frame by frame, whether the picture material then in inspection image data has secure images content (such as bank card image, secret images of items etc.).Or can detect in video call data whether there is secure images content in real time.Such as detect that the picture material comprised in the image of video call data is the picture material of a bank card, so then judge this picture material need to be keep secret.The view data need to be keep secret comprised in video call data if judge, so just represents that described video call data has private data.
As a kind of possible implementation, when judging whether described video call data has private data, can judge whether the view data comprised in described video call data has secret field (such as bank card number, account, password etc.); If have described secret field in described view data, then show that described video call data has private data.
As a kind of possible implementation, when judging whether described video call data has private data, can judge whether the speech data comprised in described video call data comprises secure content; If comprise described secure content in described speech data, then show that described video call data has private data.Also speech data may can be collected in video call data, and then can carry out analyzing the voice content obtaining correspondence to speech data, then analyze in this voice content and whether include secure content (such as responsive vocabulary, bank card number, account, password etc.).If comprise described secure content in described voice content, then show that described video call data has private data.
S2, if when described video call data has described private data, judges further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data.
Definition for preset security passage is: described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, the close passage of such as state.
In addition, the level of security of described preset security passage is higher than HTML (Hypertext Markup Language) https passage.The fail safe of the close passage of such as state can higher than the fail safe of https passage.The close passage of state, is actually the data transmission channel set up based on state close algorithm (SM2-SM4), meets SSL (SecureSocketsLayer, SSL) data security protocol.The close algorithm of state is a set of public key algorithm that national Password Management office carries out issuing, and the fail safe of the data transmission channel set up based on this kind of algorithm can be higher than the fail safe of https passage.
Specifically, because the fail safe of preset security passage is higher than the fail safe of https passage, therefore, after acquisition video call data, can judge that this video call data is the need of use preset security passage (the close passage of such as state) transmission in advance.If video call data needs to use preset security channel transfer, then whether the video server (that is: the final arrival point of video call data) that judgement video call data is corresponding is further supported to set up video call data described in preset security channel reception.If when video call data described in preset security channel reception is set up in video server support, can preferentially use preset security channel transmission data, to improve the fail safe of transfer of data.If do not support to set up video call data described in preset security channel reception, then select this video call data of https channel transfer.
In concrete implementation process, when judging whether video server corresponding to video call data is supported to set up video call data described in preset security channel reception, first can extract the characteristic information about video server in described video call data; Then the characteristic information based on described video server judges whether described video server is supported to set up video call data described in described preset security channel reception.
Video call data, except comprising one or several data assemblies (combination of such as document and image), also comprises source address (such as source IP address), the source port of terminal equipment; The receiver address (the IP address of such as Construction Bank) of video server (the final arrival point of video call data), receiving port; Etc..
It can thus be appreciated that, the characteristic information of video server of the present invention include but not limited to be: IP address and/or receiving port.Terminal equipment side, after obtaining video call data, can extract the characteristic information about video server from video call data, such as: IP address and/or receiving port.
Therefore, after the characteristic information extracting video server, ' judging whether the characteristic information of described video server exists in white list ' can be utilized to judge, and whether corresponding video server is supported to set up video call data described in preset security channel reception.
Specifically, white list is recorded be up to the present obtain (initiatively the whole network search or passive reception server send) support described in the characteristic information of server of preset security passage.That is, on white list except recording video server corresponding to video call data, also describe the characteristic information of other video servers supporting described preset security passage.
White list can have form, list, database etc. many forms.Please refer to table 1 below, is the characteristic information of the partial video server that the white list enumerated in table form of the present invention is recorded.
| Server | IP address | Receiving port |
| Server A 1 | 118.114.168.212 | 137 |
| Server A 2 | 118.114.168.211 | 130 |
Table 1
It should be noted that except form, white list can also have other forms of expression, these forms of expression also should belong within protection scope of the present invention.
In general, white list is stored in terminal equipment side.About the renewal of white list, the embodiment of the present invention also provides multiple update mode, specifically please refer to introduction below.
Terminal equipment can to white list real-time update.Whenever to find not on white list and to support other servers of described preset security passage (not only supported described preset security passage but also server) not on white list, can immediately by its characteristic of correspondence information updating in white list, to ensure that white list keeps latest edition for terminal equipment side always.
And in order to save Internet resources, terminal equipment can also upgrade white list in timing.Such as just white list was once upgraded every 24 hours.
In addition, when supporting the characteristic information of other servers of described preset security passage, the characteristic information of other servers described can also be added described white list and upgrade not on white list in acquisition.Such as: support to inform terminal equipment by the bank server of preset security passage it can support this message of preset security passage not on white list, and send the characteristic information of self to terminal equipment, so terminal equipment is after receiving this message, then the characteristic information of bank server can be updated in white list.Or terminal equipment to receive not on white list and after supporting the characteristic information of the bank server of preset security passage, just can be directly updated in white list by the characteristic information of this bank server.
And when judging whether the characteristic information of described video server exists white list, if the characteristic information of described video server exists in described white list, then represent that video call data described in preset security channel reception is set up in described video server support.
Characteristic information due to video server includes but not limited to: IP address and/or receiving port.Therefore in concrete deterministic process, following several mode is had:
First kind of way: judge whether the IP address of video server exists in white list, if the IP address of described video server exists in described white list, then represents that video call data described in preset security channel reception is set up in described video server support.The IP address of such as video server A1 is 118.114.168.212.The IP address of the storage on itself and white list is contrasted, if white list stores 118.114.168.212.So just represent that the IP address of video server A1 is present on white list, therefore video call data described in preset security channel reception is set up in video server support.
The second way: judge whether the port of video server exists in white list, if the port of described video server exists in described white list, then represents that video call data described in preset security channel reception is set up in described video server support.Such as video server A1 port is 137.The port of the storage on itself and white list is contrasted, if white list stores 137.So just represent that the port of video server A1 is present on white list, therefore video call data described in preset security channel reception is set up in video server support.
The third mode: judge whether the IP address of video server and port are all present in white list.If the IP address of video server and port all exist in described white list, then represent that video call data described in preset security channel reception is set up in described video server support.
More than judge whether corresponding video server supports to set up the specific implementation process of video call data described in preset security channel reception based on the characteristic information of described video server.
S3, if described video server support sets up described preset security passage to receive described video call data, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
As a kind of possible implementation, when video call data being sent in browser side the agent apparatus of its inside, after video call data can being used secret key encryption, send to described agent apparatus.The encryption key used includes but not limited to it is character, numeral, letter etc. any one or several combinations.
For agent apparatus, it can be built in browser, and as the part of browser, in addition, agent apparatus also can be present in terminal equipment inside as independently individuality.After agent apparatus receives video call data, corresponding decruption key can be used to be decrypted.
The video call data received is given tacit consent in agent apparatus side all to be needed to use preset security passage to send.Therefore, after receiving video call data, preset security passage can be set up, then utilize described preset security passage that video call data is transmitted to described video server.
In actual applications, agent apparatus can complete following functions (for the close passage of state):
(1) automatically identify and operate the close USBKEY of state, supporting many USBKEY, many certificate selections.
(2) the close certificate chain of checking and display state.
(3) the close white list of administering state.
(4) agreement is smelt the mechanism such as spy and is determined whether video server is the close server of state, and agreement is smelt exploration and is used in the mode that in basic TCP connection, increase is once shaken hands and realizes.
(5) SM2/SM3/SM4 algorithm realization.
(6) the close SSL of state two-way/be bi-directionally connected foundation.
(7) state close/the close SSL of business is from main separation.
Therefore, when setting up preset security passage (for the close passage of state), following several stages can be experienced: handshake request stage, agent apparatus Qualify Phase, video server Qualify Phase.
In request stage of shaking hands, agent apparatus elder generation and video server mutually send access request and shake hands.After shaking hands, agent apparatus sends SM2 certificate, self cipher key exchange message and message of having shaken hands to video server; Video server sends the cipher key exchange message of self to agent apparatus after receiving the message of having shaken hands of agent apparatus transmission.Then both sides change cipher suite message and end; Both sides all receive the end of the other side and by after checking, represent that Path Setup completes.Both sides can use the security parameter of agreement to carry out Security Data Transmission.
After preset security Path Setup, agent apparatus then can utilize described preset security passage to forward described video call data.Rear transmission can be processed with the security parameter (such as arranging key) of agreement to video call data when forwarding.
After video server side receives this video call data, then the security parameter of agreement (such as arranging key) can be used to process, then obtain video call data and carry out corresponding subsequent treatment.
It is more than the process that agent apparatus forwards video call data.And for terminal equipment, other video call data that described agent apparatus utilizes described preset security passage to forward can also be received.
In the implementation that another kind is possible, after the described characteristic information based on described video server judges whether described video server supports to set up video call data described in preset security channel reception, if described video server is not supported to set up video call data described in preset security channel reception, use described htttps passage that described video call data is directly sent to described video server.
In order to improve the safety of transfer of data further, and when using described htttps passage to send described video call data, video call data can also be encrypted in advance, then send the data after encryption to described video server.That is: if described video server is not supported to set up described preset security channel reception video call data, described https passage is utilized to send to described video server to after described video call data encryption.
Be more than method of carrying out video calling disclosed by the invention, first obtain the current geographic position region of installing terminal equipment; Whether the current geographic position region then detecting described terminal equipment belongs to high level of security region; If the current geographic position region of described terminal equipment belongs to described high level of security region, judge further whether video server corresponding to video call data to be sent is supported to set up preset security passage to receive described video call data; If support, described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage and carry out transfer of data.Because agent apparatus is arranged at terminal equipment side (no matter agent apparatus is arranged on that browser is inner or terminal equipment is inner, all belongs to and is arranged on terminal equipment side), the transfer of data therefore between browser and agent apparatus belongs to internal transmission.And the transmission between agent apparatus and video server, be the transmission being carried out video call data by the preset security passage of foundation.Because the level of security of preset security passage is higher than described https passage, therefore, use preset security channel transfer video call data, the fail safe of transmission of video communicating data can be improved.
Further, if described video server is not supported to set up video call data described in preset security channel reception, the present invention can also use described htttps passage that described video call data is directly sent to described video server.Therefore, video call data compatible two kinds of transmission meanss can be sent to described video server by the present invention.
And based on same inventive concept, the following examples provide a kind of terminal equipment.
Please refer to Fig. 3 below, in another kind of embodiment of the present invention, provide a kind of terminal equipment, comprising:
First judge module 301, for when video call data being detected, judges whether described video call data has private data;
Second judge module 302, if when having described private data for described video call data, judges further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
First sending module 303, if set up described preset security passage to receive described video call data for described video server support, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
As a kind of optional embodiment, described first judge module 301 is specifically for judging whether the view data comprised in described video call data has secure images content; If have described secure images content in described view data, then show that described video call data has private data.
As a kind of optional embodiment, described first judge module 301 is specifically for judging whether the view data comprised in described video call data has secret field; If have described secret field in described view data, then show that described video call data has private data.
As a kind of optional embodiment, described first judge module 301 is specifically for judging whether the speech data comprised in described video call data comprises secure content; If comprise described secure content in described speech data, then show that described video call data has private data.
As a kind of optional embodiment, described agent apparatus is built in browser.
As a kind of optional embodiment, described second judge module 302 specifically comprises:
Extraction module, for extracting the characteristic information about video server in described video call data;
Judge submodule, for judging based on the characteristic information of described video server whether described video server supports that setting up described preset security passage receives described video call data.
As a kind of optional embodiment, describedly judge that submodule is specifically for judging whether the characteristic information of described video server exists in white list, describes the characteristic information of the server supporting described preset security passage in described white list; If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
As a kind of optional embodiment, the characteristic information of described video server comprises: IP address and/or receiving port.
As a kind of optional embodiment, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
As a kind of optional embodiment, described first sending module 303304 sends to described agent apparatus after described video call data is used secret key encryption.
As a kind of optional embodiment, described terminal equipment also comprises:
Second sending module, for judging whether video server corresponding to the video call data of described terminal equipment supports to set up preset security passage to after receiving described video call data, if described video server is not supported to set up video call data described in preset security channel reception, utilize described htttps passage that described video call data is directly sent to described video server.
As a kind of optional embodiment, described terminal equipment also comprises:
Receiver module, for after described video call data is sent to agent apparatus, receives other video call data that described agent apparatus utilizes described preset security passage to forward from described video server.
Due to the device of electronic equipment for adopting based on the method for carrying out video calling in enforcement the embodiment of the present application that the present embodiment is introduced, so based on the method for carrying out video calling introduced in the embodiment of the present application, those skilled in the art can understand embodiment and its various version of the electronic equipment of the present embodiment, so how to realize introducing no longer in detail based on the method for carrying out video calling in the embodiment of the present application at this for this electronic equipment.As long as those skilled in the art implement based on the device that the method for carrying out video calling adopts in the embodiment of the present application, all belong to the application for protection scope.
By one or more embodiment of the present invention, the present invention has following beneficial effect or advantage:
The invention discloses a kind of method and the terminal equipment that carry out video calling.Method of the present invention, when video call data being detected, first judges whether described video call data has private data; If when described video call data has described private data, judge further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; If support, described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage and carry out transfer of data.Because agent apparatus is arranged at terminal equipment side (no matter agent apparatus is arranged on that browser is inner or terminal equipment is inner, all belongs to and is arranged on terminal equipment side), the transfer of data therefore between terminal equipment and agent apparatus belongs to internal transmission.And the transmission between agent apparatus and video server, be that the preset security passage by setting up carries out transfer of data.Because the level of security of preset security passage is higher than described https passage, therefore, preset security channel transmission data is used can to ensure the fail safe of transfer of data.
Further, if video server corresponding to video call data is not supported to set up preset security channel reception video call data, the present invention can also carry out transmission of video communicating data by https passage.As can be seen here, the present invention not only can improve the safety of transfer of data, can also compatible two kinds of transmission meanss transmission data.
Intrinsic not relevant to any certain computer, virtual system or miscellaneous equipment with display at this algorithm provided.Various general-purpose system also can with use based on together with this teaching.According to description above, the structure constructed required by this type systematic is apparent.In addition, the present invention is not also for any certain programmed language.It should be understood that and various programming language can be utilized to realize content of the present invention described here, and the description done language-specific is above to disclose preferred forms of the present invention.
In specification provided herein, describe a large amount of detail.But can understand, embodiments of the invention can be put into practice when not having these details.In some instances, be not shown specifically known method, structure and technology, so that not fuzzy understanding of this description.
Similarly, be to be understood that, in order to simplify the disclosure and to help to understand in each inventive aspect one or more, in the description above to exemplary embodiment of the present invention, each feature of the present invention is grouped together in single embodiment, figure or the description to it sometimes.But, the method for the disclosure should be construed to the following intention of reflection: namely the present invention for required protection requires feature more more than the feature clearly recorded in each claim.Or rather, as claims below reflect, all features of disclosed single embodiment before inventive aspect is to be less than.Therefore, the claims following embodiment are incorporated to this embodiment thus clearly, and wherein each claim itself is as independent embodiment of the present invention.
Those skilled in the art are appreciated that and adaptively can change the module in the equipment in embodiment and they are arranged in one or more equipment different from this embodiment.Module in embodiment or unit or assembly can be combined into a module or unit or assembly, and multiple submodule or subelement or sub-component can be put them in addition.Except at least some in such feature and/or process or unit be mutually repel except, any combination can be adopted to combine all processes of all features disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) and so disclosed any method or equipment or unit.Unless expressly stated otherwise, each feature disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) can by providing identical, alternative features that is equivalent or similar object replaces.
In addition, those skilled in the art can understand, although to comprise in other embodiment some included feature instead of further feature in this some embodiments, the combination of the feature of different embodiment means and to be within scope of the present invention and to form different embodiments.Such as, in the following claims, the one of any of embodiment required for protection can use with arbitrary compound mode.
All parts embodiment of the present invention with hardware implementing, or can realize with the software module run on one or more processor, or realizes with their combination.It will be understood by those of skill in the art that the some or all functions that microprocessor or digital signal processor (DSP) can be used in practice to realize the some or all parts in gateway according to the embodiment of the present invention, proxy server, system.The present invention can also be embodied as part or all equipment for performing method as described herein or device program (such as, computer program and computer program).Realizing program of the present invention and can store on a computer-readable medium like this, or the form of one or more signal can be had.Such signal can be downloaded from internet website and obtain, or provides on carrier signal, or provides with any other form.
The present invention will be described instead of limit the invention to it should be noted above-described embodiment, and those skilled in the art can design alternative embodiment when not departing from the scope of claims.In the claims, any reference symbol between bracket should be configured to limitations on claims.Word " comprises " not to be got rid of existence and does not arrange element in the claims or step.Word "a" or "an" before being positioned at element is not got rid of and be there is multiple such element.The present invention can by means of including the hardware of some different elements and realizing by means of the computer of suitably programming.In the unit claim listing some devices, several in these devices can be carry out imbody by same hardware branch.Word first, second and third-class use do not represent any order.Can be title by these word explanations.
The invention discloses, A1, a kind of method of carrying out video calling, it is characterized in that, described method comprises:
When video call data being detected, judge whether described video call data has private data;
If when described video call data has described private data, judge further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
If described video server support sets up described preset security passage to receive described video call data, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
A2, method as described in A1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secure images content;
If have described secure images content in described view data, then show that described video call data has private data.
A3, method as described in A1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secret field;
If have described secret field in described view data, then show that described video call data has private data.
A4, method as described in A1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the speech data comprised in described video call data comprises secure content;
If comprise described secure content in described speech data, then show that described video call data has private data.
A5, method as described in A1, it is characterized in that, described agent apparatus is built in browser.
A6, method as described in A1, is characterized in that, describedly judges whether video server corresponding to the video call data of described terminal equipment is supported to set up preset security passage to receive described video call data, specifically comprises:
Extract the characteristic information about video server in described video call data;
Characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data.
A7, method as described in A6, it is characterized in that, the described characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data, specifically comprises:
Judge whether the characteristic information of described video server exists in white list, in described white list, describe the characteristic information of the server supporting described preset security passage;
If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
A8, method as described in A1 or A7, it is characterized in that, the characteristic information of described video server comprises: IP address and/or receiving port.
A9, method as described in A7, it is characterized in that, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
A10, method as described in A1, is characterized in that, described described video call data sent to agent apparatus, is specially:
Described agent apparatus is sent to after described video call data is used secret key encryption.
A11, method as described in A1, is characterized in that, judges whether video server corresponding to the video call data of described terminal equipment supports to set up preset security passage to after receiving described video call data, and described method also comprises described:
If described video server is not supported to set up video call data described in preset security channel reception, utilize described htttps passage that described video call data is directly sent to described video server.
A12, method as described in A1, it is characterized in that, after described video call data is sent to agent apparatus, described method also comprises:
Receive other video call data that described agent apparatus utilizes described preset security passage to forward from described video server.
B13, a kind of terminal equipment, is characterized in that, comprising:
First judge module, for when video call data being detected, judges whether described video call data has private data;
Second judge module, if when having described private data for described video call data, judges further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
First sending module, if set up described preset security passage to receive described video call data for described video server support, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
B14, terminal equipment as described in B13, it is characterized in that, described first judge module is specifically for judging whether the view data comprised in described video call data has secure images content; If have described secure images content in described view data, then show that described video call data has private data.
B15, terminal equipment as described in B13, it is characterized in that, described first judge module is specifically for judging whether the view data comprised in described video call data has secret field; If have described secret field in described view data, then show that described video call data has private data.
B16, terminal equipment as described in B13, it is characterized in that, described first judge module is specifically for judging whether the speech data comprised in described video call data comprises secure content; If comprise described secure content in described speech data, then show that described video call data has private data.
B17, terminal equipment as described in B13, it is characterized in that, described agent apparatus is built in browser.
B18, terminal equipment as described in B13, it is characterized in that, described judge module specifically comprises:
Extraction module, for extracting the characteristic information about video server in described video call data;
Judge submodule, for judging based on the characteristic information of described video server whether described video server supports that setting up described preset security passage receives described video call data.
B19, terminal equipment as described in B18, it is characterized in that, describedly judge that submodule is specifically for judging whether the characteristic information of described video server exists in white list, describes the characteristic information of the server supporting described preset security passage in described white list; If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
B20, terminal equipment as described in B13 or B19, it is characterized in that, the characteristic information of described video server comprises: IP address and/or receiving port.
B21, terminal equipment as described in B19, it is characterized in that, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
B22, terminal equipment as described in B13, is characterized in that, described first sending module sends to described agent apparatus after described video call data is used secret key encryption.
B23, terminal equipment as described in B13, it is characterized in that, described terminal equipment also comprises:
Second sending module, for judging whether video server corresponding to the video call data of described terminal equipment supports to set up preset security passage to after receiving described video call data, if described video server is not supported to set up video call data described in preset security channel reception, utilize described htttps passage that described video call data is directly sent to described video server.
B24, terminal equipment as described in B13, it is characterized in that, described terminal equipment also comprises:
Receiver module, for after described video call data is sent to agent apparatus, receives other video call data that described agent apparatus utilizes described preset security passage to forward from described video server.
Claims (10)
1. carry out a method for video calling, it is characterized in that, described method comprises:
When video call data being detected, judge whether described video call data has private data;
If when described video call data has described private data, judge further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
If described video server support sets up described preset security passage to receive described video call data, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
2. the method for claim 1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secure images content;
If have described secure images content in described view data, then show that described video call data has private data.
3. the method for claim 1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the view data comprised in described video call data has secret field;
If have described secret field in described view data, then show that described video call data has private data.
4. the method for claim 1, is characterized in that, describedly judges whether described video call data has private data, specifically comprises:
Judge whether the speech data comprised in described video call data comprises secure content;
If comprise described secure content in described speech data, then show that described video call data has private data.
5. the method for claim 1, is characterized in that, described agent apparatus is built in browser.
6. the method for claim 1, is characterized in that, describedly judges whether video server corresponding to the video call data of described terminal equipment is supported to set up preset security passage to receive described video call data, specifically comprises:
Extract the characteristic information about video server in described video call data;
Characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data.
7. method as claimed in claim 6, it is characterized in that, the described characteristic information based on described video server judges whether described video server supports that setting up described preset security passage receives described video call data, specifically comprises:
Judge whether the characteristic information of described video server exists in white list, in described white list, describe the characteristic information of the server supporting described preset security passage;
If the characteristic information of described video server exists in described white list, then represent that video call data described in described preset security channel reception is set up in described video server support.
8. the method as described in claim 1 or 7, is characterized in that, the characteristic information of described video server comprises: IP address and/or receiving port.
9. method as claimed in claim 7, it is characterized in that, the renewal of described white list comprises step below:
Timing upgrades described white list; Or
When the characteristic information of other servers described when supporting the update request of other servers of described preset security passage, is added described white list and upgrades by acquisition not on described white list.
10. a terminal equipment, is characterized in that, comprising:
First judge module, for when video call data being detected, judges whether described video call data has private data;
Second judge module, if when having described private data for described video call data, judges further whether video server corresponding to described video call data is supported to set up preset security passage to receive described video call data; Wherein, described preset security passage is the another kind of escape way being different from hypertext transfer protocol secure https passage, and the level of security of described preset security passage is higher than described https passage;
First sending module, if set up described preset security passage to receive described video call data for described video server support, then described video call data is sent to the agent apparatus of terminal equipment side, make described agent apparatus set up described preset security passage, then utilize described preset security passage to forward described video call data to described video server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510640287.9A CN105141881B (en) | 2015-09-30 | 2015-09-30 | A kind of method and terminal device for carrying out video calling |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510640287.9A CN105141881B (en) | 2015-09-30 | 2015-09-30 | A kind of method and terminal device for carrying out video calling |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105141881A true CN105141881A (en) | 2015-12-09 |
| CN105141881B CN105141881B (en) | 2018-03-13 |
Family
ID=54727077
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510640287.9A Active CN105141881B (en) | 2015-09-30 | 2015-09-30 | A kind of method and terminal device for carrying out video calling |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105141881B (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5512938A (en) * | 1994-04-06 | 1996-04-30 | Matsushita Electric Industrial Co., Ltd. | Teleconference terminal |
| CN101645893A (en) * | 2009-08-25 | 2010-02-10 | 北京握奇数据系统有限公司 | Network trading method, device and system |
| CN102546562A (en) * | 2010-12-22 | 2012-07-04 | 腾讯科技(深圳)有限公司 | Encrypting and decrypting method and system during transmission of data in web |
| CN104023019A (en) * | 2014-06-13 | 2014-09-03 | 快车科技有限公司 | Method and system of automatically selecting exit passageway based on usage characteristics of user |
| CN104753872A (en) * | 2013-12-30 | 2015-07-01 | 中国移动通信集团公司 | Authentication method, authentication platform, service platform, network elements and system |
-
2015
- 2015-09-30 CN CN201510640287.9A patent/CN105141881B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5512938A (en) * | 1994-04-06 | 1996-04-30 | Matsushita Electric Industrial Co., Ltd. | Teleconference terminal |
| CN101645893A (en) * | 2009-08-25 | 2010-02-10 | 北京握奇数据系统有限公司 | Network trading method, device and system |
| CN102546562A (en) * | 2010-12-22 | 2012-07-04 | 腾讯科技(深圳)有限公司 | Encrypting and decrypting method and system during transmission of data in web |
| CN104753872A (en) * | 2013-12-30 | 2015-07-01 | 中国移动通信集团公司 | Authentication method, authentication platform, service platform, network elements and system |
| CN104023019A (en) * | 2014-06-13 | 2014-09-03 | 快车科技有限公司 | Method and system of automatically selecting exit passageway based on usage characteristics of user |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105141881B (en) | 2018-03-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11244074B2 (en) | Security systems and methods for social networking | |
| CN105282153A (en) | Method for achieving data transmission and terminal equipment | |
| US10726157B2 (en) | Method, device and software for securing web application data through tokenization | |
| CN106372465A (en) | Safety management method and system for dynamic link library and electronic equipment | |
| CN106230843A (en) | A kind of for the smart mobile phone configuration method of cloud virtual mobile phone, server and system | |
| US11329963B2 (en) | System and method for securely transferring data | |
| US20130066942A1 (en) | Systems and Methods for Customizing Mobile Applications Based Upon User Associations with One or More Entities | |
| CN104125547A (en) | Short message processing method and device | |
| US11916936B2 (en) | Techniques for incentivized intrusion detection system | |
| US20110252150A1 (en) | System and Method for Processing User Information | |
| CN105208029A (en) | Data processing method and terminal device | |
| CN105306454A (en) | Data transmission method and terminal device | |
| CN105160529A (en) | Method for secure payment or shopping and terminal equipment | |
| CN105306455A (en) | Data processing method and terminal device | |
| CN105141705A (en) | Method for safety data transmission and terminal device | |
| CN105141586B (en) | A kind of method and system verified to user | |
| CN105208027A (en) | Voice communication method and terminal equipment | |
| CN104158893B (en) | The method and system of Contents of clipboard are transmitted based on WiFi equipment | |
| CN105245516A (en) | Data transmission method and terminal equipment | |
| CN105141881A (en) | Method for carrying out video conversation and terminal device | |
| CN107085689B (en) | Method and device for carrying out encryption protection on picture resources in Flash | |
| CN105245515A (en) | Secure data transmission method and terminal equipment | |
| CN117879940A (en) | Trusted detection method and device for domain front-end attack, storage medium and electronic equipment | |
| CN104331462A (en) | Method for uploading website information and browser client | |
| CN116112172A (en) | Android client gRPC interface security verification method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220711 Address after: Room 801, 8th floor, No. 104, floors 1-19, building 2, yard 6, Jiuxianqiao Road, Chaoyang District, Beijing 100015 Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Qizhi software (Beijing) Co., Ltd |