|
1. A WAPI (WLAN (Wireless Local Area Network) Authentication and Privacy Infrastructure) trusted wireless local area network device, comprising a sending device and a receiving device, wherein the sending device comprises: a data obtaining module, wherein the data obtaining module is electrically connected to an encryption module, and is configured to obtain initial data sent by a WAPI terminal and transmit the initial data to the encryption module for encryption; an information obtaining module, wherein the information obtaining module is electrically connected to a key module, and is configured to obtain a sending time and a data number when the WAPI terminal sends the initial data and transmit the sending time and the data number to the key module for generating a key; the key module, wherein the key module is electrically connected to the encryption module, and is configured to generate the key based on the sending time and the data number of the initial data and encrypt the initial data; the encryption module, wherein the encryption module is electrically connected to a data transmission module, an encryption protocol is preset in the encryption module, and the encryption module is configured to perform primary encryption on the initial data based on the key generated by the key module and perform secondary encryption based on the preset encryption protocol; and the data transmission module, wherein the data transmission module is in communication connection with a data receiving module, and is configured to transmit data after secondary encryption; and the receiving device comprises: the data receiving module, wherein the data receiving module is electrically connected to a decoding module, and is configured to send the data after secondary encryption to the decoding module for decoding; the decoding module, wherein the decoding module is electrically connected to a data check module and a storage module, a same encryption protocol as that in the encryption module is preset in the decoding module, and the decoding module is configured to decode the data after secondary encryption and send decoded data to the data check module and the storage module respectively; the storage module, wherein the storage module is configured to save the decoded data; the data check module, wherein the data check module is electrically connected to a data output module and an alarm module, and is configured to check whether data is missing or tampered in a transmission process and issue an alarm signal to the alarm module; the alarm module, wherein the alarm module is configured to issue an alarm based on the alarm signal issued by the data check module; and the data output module, wherein the data output module is configured to output data; wherein a logic for generating the key is as follows: obtaining the sending time of the initial data sent by the WAPI terminal according to a format of year, month, day, hour, minute, and second, marked as Th, dividing the sending time Th into six character segments, marked as, i=1,2,3 . . . 6, and Th=a1, a2 a3 . . . a6 wherein each character segment a is a two-digit number, which is used for representing the year, month, day, hour, minute and second sequentially, and numbering the initial data sent by the WAPI terminal, marked as H; and generating a superposition start bit Pd based on the sending time Th, generating a check bit Py and a check length Pc based on the data number H, sequentially performing data splicing on the superposition start bit Pd, the check bit Py, the check length Pc, the sending time Th, and the data number H, and obtaining a final key, wherein the key is marked as MH, that is: “Pd”+ “Py”+ “Pc”+“Th”+“H” data splicing MH wherein a subscript H represents a data number corresponding to the key; wherein a logic for the primary encryption is as follows: obtaining a length of the initial data, marked as N, sequentially converting each character in the initial data according to an ASCII code table, marking a conversion character string as Sz, and marking each character segment as b1,j=1,2,3−N, and Sz=b1,b2,b3 . . . bn; obtaining a value of a corresponding character segment bPy,bPy+1 . . . bPy+pc−1, based on values of the check bit Py and the check length Pc, and marking the value as a check character segment b′; superposing the conversion character string Sz with the sending time Th from the corresponding character segment based on a value of the superposition start bit Pd, obtaining a superposition character string Sz′, and marking each character segment in the superposition character string Sz′ as c,, p=1,2,3−Pd−Pd+q−N′, wherein q represents a length of the conversion character string Sz that is superposed with the 2 sending time Th, and N′ represents a length of the superposition character string Sz′; and splicing the check character segment b′, the key MH, and the superposition character string Sz′ to obtain a primary encryption character string Sz1.1.
|
