Search

CN-122027275-A - Data transmission method, device, electronic equipment and storage medium

CN122027275ACN 122027275 ACN122027275 ACN 122027275ACN-122027275-A

Abstract

The application relates to a data transmission method, a device, electronic equipment and a storage medium, wherein the method comprises the steps of collecting equipment fingerprint data of terminal equipment and operating environment characteristics of the current operating environment of the terminal equipment, determining an confusion strategy for confusion of the equipment fingerprint data based on the equipment fingerprint data and the operating environment characteristics, carrying out confusion processing on the equipment fingerprint data according to the confusion strategy to obtain equipment fingerprint confusion data, generating confusion metadata corresponding to the equipment fingerprint confusion data, and sending the equipment fingerprint confusion data and the confusion metadata to a server to enable the server to carry out confusion elimination on the equipment fingerprint confusion data according to the confusion metadata to obtain the equipment fingerprint data. Therefore, the safety of data transmission can be improved, and the privacy protection intensity of equipment fingerprint data and the safety and reliability of an air control system are obviously enhanced as a whole.

Inventors

  • DU JIE

Assignees

  • 北京奇艺世纪科技有限公司

Dates

Publication Date
20260512
Application Date
20260205

Claims (11)

  1. 1. A method of data transmission, the method comprising: collecting device fingerprint data of terminal devices and operating environment characteristics of the current operating environment of the terminal devices; Determining a confusion policy for confusion of the device fingerprint data based on the device fingerprint data and the operating environment features; Performing confusion processing on the device fingerprint data according to the confusion policy to obtain device fingerprint confusion data, and generating confusion metadata corresponding to the device fingerprint confusion data; And sending the device fingerprint confusion data and the confusion metadata to a server so that the server can de-confusion the device fingerprint confusion data according to the confusion metadata to obtain the device fingerprint data.
  2. 2. The method of claim 1, wherein collecting device fingerprint data of the terminal device comprises: The device type data and the network flow data of the terminal device are respectively acquired through a preset device fingerprint acquisition module, wherein the device type data comprises one or more of hardware information, software information, sensor characteristic information and device environment information of the terminal device; and determining the equipment type data and the network flow data as equipment fingerprint data of the terminal equipment.
  3. 3. The method of claim 1, wherein collecting the operating environment characteristics of the operating environment in which the terminal device is currently located comprises: Identifying the environment risk characteristics of the current running environment of the terminal equipment, wherein the environment risk characteristics comprise one or more of simulation environment characteristics, multi-instance environment characteristics, flow hiding characteristics and privilege cracking characteristics of the terminal equipment; and determining the environmental risk characteristic as the current running environment characteristic of the terminal equipment.
  4. 4. The method of claim 1, wherein the determining a obfuscation policy to obfuscate the device fingerprint data based on the device fingerprint data and the operating environment features comprises: carrying out standard structuring treatment on the equipment fingerprint data to obtain equipment fingerprint vectors; acquiring a current service scene of the terminal equipment; Based on the device fingerprint vector, the service scene and the running environment characteristics, constructing context information of the terminal device; The context information is input into a pre-trained strategy generation model to obtain an confusion strategy for confusion of the fingerprint data of the equipment, wherein the strategy generation model is used for obtaining the confusion strategy based on a pre-constructed confusion language library, the confusion strategy at least comprises a confusion primitive combination and strategy configuration parameters of the fingerprint data of each dimension in the fingerprint data of the equipment, and the confusion primitive combination comprises one or more of feature replacement, noise adding, random rounding, dimension remapping, subset sampling, hash coding and time sequence dithering.
  5. 5. The method of claim 4, wherein the constructing the context information of the terminal device based on the device fingerprint vector, the traffic scenario, and the operating environment feature comprises: The method comprises the steps of determining whether a historical countermeasure case exists in the terminal equipment or not, wherein the historical countermeasure case is used for representing a data attack record which is successfully intercepted or identified in a historical time period and is initiated by illegal equipment and is to the terminal equipment; in the case that the historical countermeasure case exists, constructing context information of the terminal equipment comprising the equipment fingerprint vector, the business scene, the running environment characteristics and the historical countermeasure case; and in the case that the historical countermeasure case does not exist, constructing the context information of the terminal equipment comprising the equipment fingerprint vector, the business scene and the running environment characteristics.
  6. 6. The method of claim 4, further comprising, after said sending the device fingerprint obfuscation data and the obfuscation metadata to a server: Acquiring a transmission effect index of the fingerprint confusion data of the equipment; And updating the strategy generation model according to the transmission effect index.
  7. 7. The method of claim 1, wherein the performing the obfuscation on the device fingerprint data according to the obfuscation policy to obtain device fingerprint obfuscation data, and generating obfuscation metadata corresponding to the fingerprint obfuscation data, includes: acquiring a random seed corresponding to the preset terminal equipment; according to the confusion policy, carrying out confusion processing on the fingerprint data of the equipment by adopting the random seed to obtain the fingerprint confusion data of the equipment; And generating confusion metadata containing a policy identifier of the confusion policy and derivative information of the random seed, so that the server obtains the confusion policy from a preset policy library according to the policy identifier in the confusion metadata, and de-confusion the device fingerprint confusion data according to the random seed to obtain the device fingerprint data.
  8. 8. The method of claim 1, further comprising, during the sending of the device fingerprint obfuscation data and the obfuscation metadata to a server: Monitoring whether the device fingerprint confusion data contains sensitive information which is not effectively confused; and outputting preset alarm information under the condition that the sensitive information is monitored, and stopping transmission of the sensitive information.
  9. 9. A data transmission apparatus, the apparatus comprising: The data acquisition module is used for acquiring equipment fingerprint data of the terminal equipment and operating environment characteristics of the current operating environment of the terminal equipment; the policy determining module is used for determining an confusion policy for confusion the device fingerprint data based on the device fingerprint data and the running environment characteristics; the data processing module is used for carrying out confusion processing on the equipment fingerprint data according to the confusion policy to obtain equipment fingerprint confusion data, and generating confusion metadata corresponding to the equipment fingerprint confusion data; And the data sending module is used for sending the equipment fingerprint confusion data and the confusion metadata to a server so that the server can de-confusion the equipment fingerprint confusion data according to the confusion metadata to obtain the equipment fingerprint data.
  10. 10. An electronic device comprising a processor and a memory, wherein the processor is configured to execute a data transmission program stored in the memory, so as to implement the data transmission method according to any one of claims 1 to 8.
  11. 11. A storage medium having stored therein a computer program which, when executed by a processor, implements the data transmission method of any one of claims 1-8.

Description

Data transmission method, device, electronic equipment and storage medium Technical Field The present application relates to the field of computer technologies, and in particular, to a data transmission method, a data transmission device, an electronic device, and a storage medium. Background The equipment fingerprint technology is a key link in a wind control system and is used for collecting multi-dimensional characteristics of hardware, software, environment and the like of terminal equipment so as to uniquely identify and identify the equipment. In order to defend against black gray attacks, the current general scheme encrypts the collected original fingerprint data and maps and confuses the feature dimensions, so that the intercepted data is difficult to directly read, and the difficulty of cracking and forging by an attacker is increased to a certain extent. However, the above-described obfuscation techniques rely essentially on static, fixed obfuscation rules or dimensional mapping tables, which static results in their face of fundamental security risks that black gray production can be analyzed and broken down step-by-step by long-term data accumulation, reverse engineering or anti-obfuscation techniques. Once the obfuscation rules are broken, the acquisition logic of the device fingerprint and the original data are fully exposed, disabling the protection effect of the pre-encryption and obfuscation. Disclosure of Invention The application provides a data transmission method, a device, electronic equipment and a storage medium, which are used for solving the technical problems that in the prior art, a data confusion mode depending on a static and fixed confusion rule or a dimension mapping table is easy to crack, so that acquisition logic and original data of equipment fingerprints are completely exposed, and the protection effect of early encryption and confusion is invalid. In a first aspect, the present application provides a data transmission method, the method comprising: collecting device fingerprint data of terminal devices and operating environment characteristics of the current operating environment of the terminal devices; Determining a confusion policy for confusion of the device fingerprint data based on the device fingerprint data and the operating environment features; Performing confusion processing on the device fingerprint data according to the confusion policy to obtain device fingerprint confusion data, and generating confusion metadata corresponding to the device fingerprint confusion data; And sending the device fingerprint confusion data and the confusion metadata to a server so that the server can de-confusion the device fingerprint confusion data according to the confusion metadata to obtain the device fingerprint data. As an alternative implementation manner, collecting device fingerprint data of a terminal device includes: The device type data and the network flow data of the terminal device are respectively acquired through a preset device fingerprint acquisition module, wherein the device type data comprises one or more of hardware information, software information, sensor characteristic information and device environment information of the terminal device; and determining the equipment type data and the network flow data as equipment fingerprint data of the terminal equipment. As an optional implementation manner, collecting the operating environment characteristics of the current operating environment of the terminal device includes: Identifying the environment risk characteristics of the current running environment of the terminal equipment, wherein the environment risk characteristics comprise one or more of simulation environment characteristics, multi-instance environment characteristics, flow hiding characteristics and privilege cracking characteristics of the terminal equipment; and determining the environmental risk characteristic as the current running environment characteristic of the terminal equipment. As an alternative implementation manner, the determining, based on the device fingerprint data and the running environment features, a confusion policy for confusion of the device fingerprint data includes: carrying out standard structuring treatment on the equipment fingerprint data to obtain equipment fingerprint vectors; acquiring a current service scene of the terminal equipment; Based on the device fingerprint vector, the service scene and the running environment characteristics, constructing context information of the terminal device; The context information is input into a pre-trained strategy generation model to obtain an confusion strategy for confusion of the fingerprint data of the equipment, wherein the strategy generation model is used for obtaining the confusion strategy based on a pre-constructed confusion language library, the confusion strategy at least comprises a confusion primitive combination and strategy configuration parameters of the fin