CN104348834A - Desktop-virtualization-based image transmission encryption method and system - Google Patents
Desktop-virtualization-based image transmission encryption method and system Download PDFInfo
- Publication number
- CN104348834A CN104348834A CN201410584200.6A CN201410584200A CN104348834A CN 104348834 A CN104348834 A CN 104348834A CN 201410584200 A CN201410584200 A CN 201410584200A CN 104348834 A CN104348834 A CN 104348834A
- Authority
- CN
- China
- Prior art keywords
- desktop
- virtual
- image
- virtual desktop
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Editing Of Facsimile Originals (AREA)
Abstract
The invention provides a desktop-virtualization-based image transmission encryption system, which comprises a virtual machine, a virtual desktop server and terminal equipment establishing data connection with the virtual desktop server, wherein the virtual machine comprises a virtual desktop transmission unit and a watermark encryption unit; the virtual desktop transmission unit is used for coding a virtual desktop into an image dot matrix according to the terminal equipment, and transmitting the image dot matrix to the terminal equipment; the watermark encryption unit is used for encrypting and implicitly watermarking the virtual desktop image. According to the system, a user can be determined to determine the source of the image or photo by correspondingly decrypting the desktop image, so that the safety of confidential work in China can be well ensured according to a mechanism of positioning the desktop image or photo to the source of the photo.
Description
Technical field
The present invention relates to application distribution technology field, particularly relate to the method and system that a kind of image transmitting based on desktop virtual is encrypted.
Background technology
Desktop virtual be the heart in the data server on carry out server virtualization, generate a large amount of independently desktop operating systems (virtual machine or virtual desktop), simultaneously send to terminal equipment according to proprietary virtual desktop agreement.User terminal signs in on fictitious host computer, namely by the desktop system of access to netwoks oneself.Because data are not retained in this locality, the features such as protocol transmission encryption, increasing concerning security matters unit brings into use desktop virtual.
At present, Information System Security has certain safe and secret requirement, and according to relative national standards, the construction of Information System Security is the computer system that needs reach higher safe class.Protection now for classified information has had a lot of ways, but no matter is conventional P C or desktop virtual environment, all cannot prevent from copying the situation of divulging a secret that screen (intercepting desktop picture) causes, or even divulges a secret from where and all cannot trace.
Summary of the invention
The object of the present invention is to provide the method and system that a kind of image transmitting based on desktop virtual is encrypted, by being encrypted virtual desktop in case the close appearance of stopping leak.
The object of the invention is to be achieved through the following technical solutions.
Based on an image transmitting encryption system for desktop virtual, comprising: virtual machine, virtual desktop server and set up the terminal equipment of data cube computation with virtual desktop server;
Described virtual machine comprises virtual desktop transmission unit and watermark encrypting unit;
Described virtual desktop transmission unit is used for, according to terminal device instruction, virtual desktop is encoded into image lattice and is transferred to terminal equipment place;
Described watermark encrypting unit is used for being encrypted and beating dark watermark to virtual desktop image.
Further preferably, described terminal equipment also comprises a watermark decryption unit, for being decrypted reduction to virtual desktop image to draw enciphered message.
Further preferably, described enciphered message comprises user profile, user terminal information, virtual desktop information and soft ware authorization information.
Further preferably, described virtual desktop server is for providing software runtime environment and the virtual machine parametric controller of virtual machine.
Further preferably, described virtual machine is used for providing virtual desktop environment to terminal use.
Based on the method that the image transmitting of desktop virtual is encrypted, comprise step:
A: virtual desktop is encoded into image lattice according to terminal device instruction and is transferred to terminal equipment place by virtual desktop transmission unit;
B: watermark encrypting unit is encrypted and beats dark watermark processing to virtual desktop image.
Further preferably, also comprise watermark decryption unit after step b and reduction is decrypted to draw enciphered message to virtual desktop image.
Further preferably, described enciphered message comprises user profile, user terminal information, virtual desktop information and soft ware authorization information.
The present invention compared with prior art, have the following advantages: the method and system that the present invention is based on the image transmitting encryption of desktop virtual, when user is when using desktop virtual, all desktops are by virtual desktop host-host protocol, virtual desktop is encoded into image lattice and forms image watermark and be transferred to user terminal place, simultaneously according to carrying out deciphering to determine end user accordingly to desktop picture, the source of image or photo can be determined, thus the mechanism in photo source can be navigated to according to desktop picture or photo, good safety guarantee is defined to China's security work.
Accompanying drawing explanation
Fig. 1 is the image transmitting encryption system theory diagram that the present invention is based on desktop virtual;
Fig. 2 is the image transmitting encryption method flow chart that the present invention is based on desktop virtual.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearly understand, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
Refer to shown in Fig. 1, the present invention is based on the image transmitting encryption system of desktop virtual, comprising: virtual machine, virtual desktop server and set up the terminal equipment of data cube computation with virtual desktop server;
Virtual desktop server is for providing software runtime environment and the virtual machine parametric controller of virtual machine.
Virtual machine is used for providing virtual desktop environment to terminal use.
Further, virtual machine comprises: virtual desktop transmission unit and watermark encrypting unit,
Virtual desktop transmission unit is used for, according to terminal device instruction, virtual desktop is encoded into image lattice and is transferred to terminal equipment place, watches for user.
Watermark encrypting unit is used for being encrypted and beating dark watermark to virtual desktop image;
Particularly, all image lattices come from virtual desktop transmission have all been added the information such as user profile, user terminal information, virtual desktop information and soft ware authorization after encryption, these information embody with the form of dark watermark, user is invisible, and the desktop host-host protocol in use with original is also as broad as long.
The information such as all user profile, user terminal information, virtual desktop information and soft ware authorization are all encrypted as 2 scale codings, and these 2 scale codings can be reduced to the information such as user profile, user terminal information, virtual desktop information and soft ware authorization by certain rule.
Described terminal equipment also comprises a watermark decryption unit, reduces for being decrypted virtual desktop image with information such as the user profile drawing encryption, user terminal information, virtual desktop information and soft ware authorizations.
Color identical for bulk in image, according to the data of 2 scale codings, is carried out the pixel amendment of spaced, little aberration by watermark encrypting unit.Because aberration is minimum, pixel is minimum, and these amendment naked eyes are invisible.During reduction, according to the rule of encryption and the analysis of pixel, read out 2 scale codings of encryption originally, restore into the information such as user profile, user terminal information, virtual desktop information and soft ware authorization.
Particularly, when each desktop dot matrix image (or photo), by special method deciphering reduction, the information such as user profile, user terminal information and soft ware authorization can be restored.Can applying unit be determined by soft ware authorization, by user profile, user terminal information and virtual desktop information, can end user be determined, the source of image or photo can be determined, thus determine that the source of divulging a secret is to carry out later stage security hardening.、
Embodiment: certain concerning security matters unit uses VDI Image Watermarking Technique in VDI system, the information of this unit, the information of each user, user terminal information are encrypted as 2 scale codings by watermark encrypting unit, color identical for bulk in image, according to the data of 2 scale codings, is carried out the pixel amendment of spaced, little aberration by watermark encrypting unit.Because aberration is minimum, pixel is minimum, and these amendment naked eyes are invisible.
When the classified information of the virtual desktop of certain user is intercepted into picture by with the forms such as screen of taking pictures, copy.After unofficial biography are divulged a secret, use watermark decryption unit, according to the rule of encryption and the analysis of pixel, read out 2 scale codings of encryption originally, restore into the information of unit, the information of user and user terminal information.The unit that divulges a secret is determined according to unit information; According to user and user terminal information, and user's corresponding informance of concerning security matters unit, determine concerning security matters user.
Refer to shown in Fig. 2, the present invention is based on the image transmitting encryption method of desktop virtual, comprising:
Step 201: virtual desktop is encoded into image lattice according to terminal device instruction and is transferred to terminal equipment place by virtual desktop transmission unit;
Step 202: watermark encrypting unit is encrypted and beats dark watermark processing to virtual desktop image;
Particularly, all image lattices come from virtual desktop transmission have all been added the information such as user profile, user terminal information, virtual desktop information and soft ware authorization after encryption, these information embody with the form of dark watermark, user is invisible, and the desktop host-host protocol in use with original is also as broad as long.
Step 203: watermark decryption unit is decrypted virtual desktop image reduces with information such as the user profile drawing encryption, user terminal information, virtual desktop information and soft ware authorizations;
Particularly, when each desktop dot matrix image (or photo), by special method deciphering reduction, the information such as user profile, user terminal information and soft ware authorization can be restored.Can applying unit be determined by soft ware authorization, by user profile, user terminal information and virtual desktop information, can end user be determined, the source of image or photo can be determined, thus determine that the source of divulging a secret is to carry out later stage security hardening.
The present invention is based on the method and system of the image transmitting encryption of desktop virtual, when user is when using desktop virtual, all desktops are by virtual desktop host-host protocol, virtual desktop is encoded into image lattice and forms image watermark and be transferred to user terminal place, simultaneously according to carrying out deciphering to determine end user accordingly to desktop picture, the source of image or photo can be determined, thus the mechanism in photo source can be navigated to according to desktop picture or photo, good safety guarantee is defined to China's security work.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any amendments done within the spirit and principles in the present invention, equivalent replacement and improvement etc., all should be included within protection scope of the present invention.
Claims (8)
1. based on an image transmitting encryption system for desktop virtual, comprising: virtual machine, virtual desktop server and set up the terminal equipment of data cube computation with virtual desktop server; It is characterized in that,
Described virtual machine comprises virtual desktop transmission unit and watermark encrypting unit;
Described virtual desktop transmission unit is used for, according to terminal device instruction, virtual desktop is encoded into image lattice and is transferred to terminal equipment place;
Described watermark encrypting unit is used for being encrypted and beating dark watermark to virtual desktop image.
2. as claimed in claim 1 based on the image transmitting encryption system of desktop virtual, it is characterized in that, described terminal equipment also comprises a watermark decryption unit, for being decrypted reduction to virtual desktop image to draw enciphered message.
3., as claimed in claim 2 based on the image transmitting encryption system of desktop virtual, it is characterized in that, described enciphered message comprises user profile, user terminal information, virtual desktop information and soft ware authorization information.
4., as claimed in claim 1 based on the image transmitting encryption system of desktop virtual, it is characterized in that, described virtual desktop server is for providing software runtime environment and the virtual machine parametric controller of virtual machine.
5. as claimed in claim 1 based on the image transmitting encryption system of desktop virtual, it is characterized in that, described virtual machine is used for providing virtual desktop environment to terminal use.
6., based on the method that the image transmitting of desktop virtual is encrypted, it is characterized in that, comprise step:
A: virtual desktop is encoded into image lattice according to terminal device instruction and is transferred to terminal equipment place by virtual desktop transmission unit;
B: watermark encrypting unit is encrypted and beats dark watermark processing to virtual desktop image.
7. as claimed in claim 6 based on the method that the image transmitting of desktop virtual is encrypted, it is characterized in that, also comprise watermark decryption unit after step b and reduction is decrypted to draw enciphered message to virtual desktop image.
8., as claimed in claim 7 based on the method that the image transmitting of desktop virtual is encrypted, it is characterized in that, described enciphered message comprises user profile, user terminal information, virtual desktop information and soft ware authorization information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410584200.6A CN104348834A (en) | 2014-10-27 | 2014-10-27 | Desktop-virtualization-based image transmission encryption method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410584200.6A CN104348834A (en) | 2014-10-27 | 2014-10-27 | Desktop-virtualization-based image transmission encryption method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104348834A true CN104348834A (en) | 2015-02-11 |
Family
ID=52503631
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410584200.6A Pending CN104348834A (en) | 2014-10-27 | 2014-10-27 | Desktop-virtualization-based image transmission encryption method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104348834A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106231267A (en) * | 2016-08-24 | 2016-12-14 | 成都中英锐达科技有限公司 | View data managing and control system, data download method, playback of data processing method |
| CN107038355A (en) * | 2016-12-19 | 2017-08-11 | 云巅(上海)网络科技有限公司 | Cloud platform dynamic watermark generates system and its control method |
| CN109190338A (en) * | 2018-08-22 | 2019-01-11 | 广东微云科技股份有限公司 | A kind of virtualization desktop screen watermark generation method and system |
| CN109840131A (en) * | 2017-11-27 | 2019-06-04 | 中兴通讯股份有限公司 | A kind of watermark adding method, device and computer readable storage medium |
| CN109977634A (en) * | 2017-12-27 | 2019-07-05 | 中兴通讯股份有限公司 | A kind of method, apparatus, computer equipment and the storage medium of watermark addition |
| WO2020119232A1 (en) * | 2018-12-12 | 2020-06-18 | 中兴通讯股份有限公司 | Virtual desktop-based watermark addition method and device |
| CN113496451A (en) * | 2020-04-07 | 2021-10-12 | 奇安信科技集团股份有限公司 | Watermark adding method and device and screen image leakage tracking method and device |
| CN114692120A (en) * | 2020-12-30 | 2022-07-01 | 成都鼎桥通信技术有限公司 | State password authentication method, virtual machine, terminal equipment, system and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20100229185A1 (en) * | 2009-03-03 | 2010-09-09 | Cisco Technology, Inc. | Event / calendar based auto-start of virtual disks for desktop virtualization |
| CN102073826A (en) * | 2009-08-26 | 2011-05-25 | 奥多比公司 | System and method for digital copyright management using lightweight digital watermark adding component |
| CN102685076A (en) * | 2011-03-16 | 2012-09-19 | 中国电信股份有限公司 | Online information protection method and device |
| CN103150500A (en) * | 2013-02-01 | 2013-06-12 | 深圳市深信服电子科技有限公司 | Desktop virtualization-based watermark realization method and device |
-
2014
- 2014-10-27 CN CN201410584200.6A patent/CN104348834A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20100229185A1 (en) * | 2009-03-03 | 2010-09-09 | Cisco Technology, Inc. | Event / calendar based auto-start of virtual disks for desktop virtualization |
| CN102073826A (en) * | 2009-08-26 | 2011-05-25 | 奥多比公司 | System and method for digital copyright management using lightweight digital watermark adding component |
| CN102685076A (en) * | 2011-03-16 | 2012-09-19 | 中国电信股份有限公司 | Online information protection method and device |
| CN103150500A (en) * | 2013-02-01 | 2013-06-12 | 深圳市深信服电子科技有限公司 | Desktop virtualization-based watermark realization method and device |
Non-Patent Citations (1)
| Title |
|---|
| 雷超阳等: "基于RC4算法的多冗余数字水印技术", 《长沙交通学院学报》 * |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106231267A (en) * | 2016-08-24 | 2016-12-14 | 成都中英锐达科技有限公司 | View data managing and control system, data download method, playback of data processing method |
| CN107038355A (en) * | 2016-12-19 | 2017-08-11 | 云巅(上海)网络科技有限公司 | Cloud platform dynamic watermark generates system and its control method |
| CN109840131A (en) * | 2017-11-27 | 2019-06-04 | 中兴通讯股份有限公司 | A kind of watermark adding method, device and computer readable storage medium |
| CN109977634A (en) * | 2017-12-27 | 2019-07-05 | 中兴通讯股份有限公司 | A kind of method, apparatus, computer equipment and the storage medium of watermark addition |
| CN109190338A (en) * | 2018-08-22 | 2019-01-11 | 广东微云科技股份有限公司 | A kind of virtualization desktop screen watermark generation method and system |
| CN109190338B (en) * | 2018-08-22 | 2021-12-07 | 广东微云科技股份有限公司 | Method and system for generating virtual desktop screen watermark |
| WO2020119232A1 (en) * | 2018-12-12 | 2020-06-18 | 中兴通讯股份有限公司 | Virtual desktop-based watermark addition method and device |
| CN111310135A (en) * | 2018-12-12 | 2020-06-19 | 中兴通讯股份有限公司 | Watermark adding method and device based on virtual desktop |
| CN113496451A (en) * | 2020-04-07 | 2021-10-12 | 奇安信科技集团股份有限公司 | Watermark adding method and device and screen image leakage tracking method and device |
| CN114692120A (en) * | 2020-12-30 | 2022-07-01 | 成都鼎桥通信技术有限公司 | State password authentication method, virtual machine, terminal equipment, system and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104348834A (en) | Desktop-virtualization-based image transmission encryption method and system | |
| EP3229397B1 (en) | Method for fulfilling a cryptographic request requiring a value of a private key | |
| JP5628831B2 (en) | Digital video guard | |
| CN109767375A (en) | The method and system of image watermark insertion and retrospect | |
| US20210034788A1 (en) | Secure Collaboration Between Processors And Processing Accelerators In Enclaves | |
| KR102079626B1 (en) | System for hiding information using lightweight mutual authentication based on biometric in mobile environment, method thereof and computer recordable medium storing program to perform the method | |
| US20230038922A1 (en) | Blockchain Implemented Data Hiding Solutions For Improvements In Secure Communication, Storage And Transmission Of Data | |
| JP2003284024A (en) | Method and system for protecting secure contents in cipher | |
| JP2011129096A (en) | Method and device of for privacy masking image | |
| US10733809B2 (en) | Information processing device and information processing method | |
| US20090129591A1 (en) | Techniques for Securing Document Content in Print and Electronic Form | |
| US20050154890A1 (en) | Method for secure key exchange | |
| Backes et al. | X-pire 2.0: a user-controlled expiration date and copy protection mechanism | |
| CN105468940A (en) | Software protection method and apparatus | |
| Garg et al. | Hybrid information security model for cloud storage systems using hybrid data security scheme | |
| CN104023332A (en) | Electronic terminal and short message encrypting and decrypting method thereof | |
| CN110798433B (en) | Verification code verification method and device | |
| US20150006912A1 (en) | Firmware for protecting data from software threats field of the invention | |
| CN114124364A (en) | Key security processing method, device, equipment and computer readable storage medium | |
| KR102140356B1 (en) | Method and device to embed watermark in uncompressed video data | |
| Zaidan et al. | Novel approach for high (secure and rate) data hidden within triplex space for executable file | |
| US11270012B2 (en) | Encryption key shares to different devices for rendering | |
| CN103745170B (en) | The processing method and processing device of data in magnetic disk | |
| CN105681027A (en) | HSM encrypted information synchronization method, device and system | |
| JP3984951B2 (en) | Content usage frequency limiting method, content usage terminal device, content usage system, computer program, and computer-readable recording medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150211 |