CN100462993C - Outer placed mobile storage in use for alete information processing - Google Patents
Outer placed mobile storage in use for alete information processing Download PDFInfo
- Publication number
- CN100462993C CN100462993C CNB2007101194540A CN200710119454A CN100462993C CN 100462993 C CN100462993 C CN 100462993C CN B2007101194540 A CNB2007101194540 A CN B2007101194540A CN 200710119454 A CN200710119454 A CN 200710119454A CN 100462993 C CN100462993 C CN 100462993C
- Authority
- CN
- China
- Prior art keywords
- module
- storage
- information
- alete
- information processing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 230000010365 information processing Effects 0.000 title claims description 15
- 241000532467 Aletes Species 0.000 title claims description 10
- 238000012795 verification Methods 0.000 claims description 15
- 238000004891 communication Methods 0.000 claims description 6
- 238000012546 transfer Methods 0.000 claims description 4
- 241000700605 Viruses Species 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 230000006378 damage Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 230000003068 static effect Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 238000004883 computer application Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000002950 deficient Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 239000012467 final product Substances 0.000 description 1
- 238000000034 method Methods 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 230000000717 retained effect Effects 0.000 description 1
Images
Abstract
An externally-set mobile storage used for carrying out seamless-information treatment is prepared for transmitting information to mobile storage system through kernel operation unit, carrying out enciphering on file information by storage-enciphering certification unit, connecting cipher key to storage-enciphering certification unit through USB cipher key interface and using another USB interface to display information on operation boundary of personal computer.
Description
Technical field
The present invention relates to a kind of external mobile memory, relate in particular to a kind of outer placed mobile storage in use for alete information processing.
Background technology
Along with development of science and technology, people improve constantly the classified papers of independent research, the mobile memory that is convenient for carrying is widely used, existing mobile memory read-write operation mainly depends on desktop computer or notebook, so when mobile memory being carried out read-write operation by desktop computer or notebook, its operation file must be read and write by desktop systems or notebook system earlier, is stored in the machine system so that file content is all unreserved, causes some security informations giving away secrets between easily.
Wherein the information main path of giving away secrets is: the main path that information is given away secrets has static state to give away secrets, system leaves over, vestige is left over, dynamically give away secrets, usually static state is given away secrets, system leaves over, vestige is left over and is all belonged to information giving away secrets based on storage medium, the leakage of the numerical information of divulging a secret that is based on transmission modes such as network of dynamically giving away secrets has following several canonical form: the vestige reduction: Computer Processing (is set up, revise, browse, duplicate) behind the electronic document, even do not store at local hard drive, still can in local hard drive, stay the information mark that to wipe, even after deleted or formatted, still can recover vestige by data recovery means, cause information leakage; Vestige is left over: behind the computer treatmenting information, the vestige of leaving over is wiped and is pulverized, and causes the confidential data vestige to be revealed; Information is residual: used equipment is scrapped, and wipes processing but equipment is not carried out active data; Storage medium is lost: the losses such as (as notebook computer, USB flash disk, CD, portable hard drives) of all kinds of memory devices causes information leakage; Online intercepting: the network hacker obtains access rights by illegal means such as network attacks, and file copy is taken away; Inadvertent disclosure: the employee does not have security sense to cause leakage unconsciously, as makes electronic document pass to the reader who does not read authority, causes secret information open; Malice is stolen: the interior employee is because reasons such as leaving office copy secret papers to floppy disk to take away, or outwards transmit by network.
Cause Party and government offices and enterprises and institutions to be easy to cause undesigned leakage, virus attack by the above approach of giving away secrets, especially national army classified papers are had bigger potential safety hazard.
So digital information safety comprises two aspects: the security of the reliability of information stores and information flow process, Information Security based on storage medium, must guarantee to have the security of the storage medium of information, attacks such as can not being subjected to undelegated visit, destroying and stealing; Based on the security of information handling system, must guarantee the security of information mark after the information processing in system, can not be because of opening/edit/potential safety hazard that the copying apparatus ciphertext data causes information mark to be retained.
Summary of the invention
For solving above-mentioned middle problem and the defective that exists, the object of the present invention is to provide a kind of outer placed mobile storage in use for alete information processing, can physics break away from hardware and stopped fully to use background storage, prevented the undesigned destruction of divulging a secret with virus of file because of staying the information-leakage in the main frame in the use.
The present invention is achieved by the following technical solutions:
Mainly comprise: kernel operating system, storage encryption Verification System and mobile memory system, by kernel operating system transfer files information in mobile memory system, and fileinfo is encrypted by the storage encryption Verification System, and a Portable cipher key is connected encrypting module in the storage encryption Verification System by the usb key interface, and fileinfo is encrypted or deciphered by the encrypting module in this storage encryption Verification System.Described kernel operating system also comprises: Certificate Authority module, communication module and office module, by the Certificate Authority module terminal landed and user's authority are authenticated, after authentication, by communication module the information that receives is passed to the personal computer operation interface by the application system that the office module provides again, the requirement according to the personal computer operation interface sends message then.And this kernel operating system is (SuSE) Linux OS or Windows operating system.
Described storage encryption Verification System also comprises the Certificate Authority module, wherein the Certificate Authority module in kernel operating system and the storage encryption Verification System authenticates the Portable key that is written into the encrypt and decrypt module according to the authority that the user holds, and sees through the encrypt and decrypt that this key comes startup file.Wherein said portable key starts seamlessization mobile memory system by the usb key interface of mobile memory medium, opens encrypted document.
The present invention is by setting about from information user, information handling system, three information processing key points of information storage medium, the co-operation of collaborative a plurality of secure subsystems, constructed seamlessization of a complete and effective safety information processing office platform, solved thoroughly that vestige is left over, information is stolen the information security hidden danger that causes.And to the personal user, can realize the transfer of working environment, need not to be with notebook computer etc., if having main frame environment can by external system start-up realize system environments fully synchronously, and this system destruction of adopting read apparatus to avoid virus etc. that system is caused fully.So file has been played certain confidentiality and security.
Description of drawings
Fig. 1 is seamlessization information processing and encipherment protection system construction drawing;
Fig. 2 is a seamlessization infosystem mode chart.
Embodiment
The present invention relates to a kind of outer placed mobile storage in use for alete information processing, describe the present invention in detail below in conjunction with accompanying drawing:
Fig. 1 is the structural drawing of seamlessization information processing and protection system first embodiment.By kernel operating system 10 transmission information in mobile memory system 20, and encrypt by 30 pairs of fileinfos of storage encryption Verification System, and cipher key 40 is linked the storage encryption Verification System by usb key interface 50, and by another USB interface 60 display message in personal computer operation interface 70, and the personal computer applications environment only is required to be: the PC of intel pentium III or compatible processor, 256M physical memory (recommending 512M), 800 * 600 display resolutions (recommending 1024 * 768 or higher) need not any local hard drive support; BIOS: can get final product by the BIOS of USB interface guiding.
Above-mentioned kernel operating system 10 also comprises: Certificate Authority module 110, communication module 120 and office module 130, authority by 110 pairs of terminals of landing of Certificate Authority module and user authenticates, after authentication, by communication module 120 information that receives is passed to personal computer operation interface 70 by the application system that office module 130 provides again, the requirement according to the personal computer operation interface sends message then.And this kernel operating system 10 is a (SuSE) Linux OS.Storage encryption Verification System 30 also comprises: encrypting module 310 and Certificate Authority module 320, it carries out encryption and decryption by all data on 310 pairs of mobile memory mediums of encrypting module, wherein Certificate Authority module 320 authenticates the Portable key 40 that is written into the encrypt and decrypt module according to the authority that the user holds, and sees through the encrypt and decrypt that this key 40 comes startup file.Wherein this encrypt and decrypt key 40 starts seamlessization mobile memory system for the usb key interface 50 by mobile memory medium, opens encrypted document.
Wherein the user can be directly by kernel operating system 10 transmission information in mobile memory system 20, and by USB interface 60 display message in personal computer operation interface 70.So the user need not by encrypted authentication system key to be authenticated to fileinfo, can directly read document.
Fig. 2 is a seamlessization infosystem mode chart; If desired under the situation that working environment shifts, only need the USB interface of the external mobile memory of seamlessization information handling system is connected in main frame, storer inputoutput data information directly is transmitted in the external mobile memory of seamlessization information handling system by Internet USB flash disk/CD, and it has been a booster action that the complete physics of external memory this moment breaks away from the hardware main frame.
The restriction that not only breaks away from running environment hardware by the external mobile memory of seamlessization information handling system fully, be the carrier start-up system with external memory such as portable hard drives when using, thoroughly break away from the binding of windows, realize removableization of operating system hardware.At first can realize the safety of handling official business, not stay any vestige on main frame, use background storage and can physics break away from hardware and stopped fully because may stay information-leakage in the main frame.And to the personal user, can realize the transfer of working environment, need not to be with notebook computer, if having main frame environment can by external system start-up realize system environments fully synchronously, also have this system to adopt read apparatus to avoid destruction that virus etc. causes system etc. fully.
The above; only for the preferable embodiment of the present invention, but protection scope of the present invention is not limited thereto, and anyly is familiar with those skilled in the art in the technical scope that the present invention discloses; the variation that can expect easily or replacement all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection domain of claim.
Claims (5)
1. outer placed mobile storage in use for alete information processing, comprise: kernel operating system, storage encryption Verification System and mobile memory system, by kernel operating system transfer files information in mobile memory system, and fileinfo is encrypted by the storage encryption Verification System, it is characterized in that, one Portable cipher key is connected encrypting module in the storage encryption Verification System by the usb key interface, and fileinfo is encrypted or deciphered by the encrypting module in this storage encryption Verification System, wherein said kernel operating system also comprises: the Certificate Authority module, communication module and office module, by the Certificate Authority module terminal landed and user's authority are authenticated, after authentication, by communication module the information that receives is transmitted in the personal computer operation interface by the application system that the office module provides again, the requirement according to the personal computer operation interface sends message then.
2. outer placed mobile storage in use for alete information processing according to claim 1 is characterized in that, described storage encryption Verification System also comprises: the Certificate Authority module.
3. outer placed mobile storage in use for alete information processing according to claim 1 is characterized in that, described kernel operating system is (SuSE) Linux OS or Windows operating system.
4. outer placed mobile storage in use for alete information processing according to claim 2, it is characterized in that, Certificate Authority module in described kernel operating system and the storage encryption Verification System authenticates the Portable key that is written into the encrypt and decrypt module according to the authority that the user holds, and sees through the encrypt and decrypt that this Portable cipher key comes startup file.
5. outer placed mobile storage in use for alete information processing according to claim 4 is characterized in that, described Portable cipher key starts seamlessization mobile memory system by the usb key interface of mobile memory medium, opens encrypted document.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007101194540A CN100462993C (en) | 2007-07-25 | 2007-07-25 | Outer placed mobile storage in use for alete information processing |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007101194540A CN100462993C (en) | 2007-07-25 | 2007-07-25 | Outer placed mobile storage in use for alete information processing |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101093527A CN101093527A (en) | 2007-12-26 |
| CN100462993C true CN100462993C (en) | 2009-02-18 |
Family
ID=38991783
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2007101194540A Expired - Fee Related CN100462993C (en) | 2007-07-25 | 2007-07-25 | Outer placed mobile storage in use for alete information processing |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100462993C (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102436568B (en) * | 2010-09-29 | 2014-12-17 | 苏州慧尔科技发展有限公司 | Computer external encryption device with storage function and encryption and decryption method utilizing same |
| CN102916941A (en) * | 2012-09-19 | 2013-02-06 | 无锡华御信息技术有限公司 | Method and system for safely managing files based on pre-installation environment (PE) system |
| CN103139293B (en) * | 2013-01-25 | 2015-05-13 | 四川神琥科技有限公司 | Trace information obtaining method based on trace type to conduct coding reduction |
| CN104008343A (en) * | 2014-05-14 | 2014-08-27 | 北京奇虎科技有限公司 | Data shattering method and device |
| CN111143804B (en) * | 2019-12-13 | 2022-12-13 | 合肥大唐存储科技有限公司 | Mobile office implementation method and device |
| CN113065159B (en) * | 2021-04-09 | 2022-04-29 | 杭州天宽科技有限公司 | Safe document traceless reading device and implementation method thereof |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1377560A (en) * | 1999-10-01 | 2002-10-30 | 艾利森电话股份有限公司 | Portable communication apparatus having man-machine interface and method for its operation |
| CN1421786A (en) * | 2001-11-28 | 2003-06-04 | 联想(北京)有限公司 | Movable external memory content enciphering method independent of computer |
| CN2650231Y (en) * | 2003-09-26 | 2004-10-20 | 北京华旗资讯数码科技有限公司 | Storage unit with optimized compression management mechanism |
| US20060242423A1 (en) * | 2005-04-22 | 2006-10-26 | Kussmaul John W | Isolated authentication device and associated methods |
| CN1877549A (en) * | 2006-07-05 | 2006-12-13 | 北京飞天诚信科技有限公司 | Method for automatic protection of U disc by using filtering driver and intelligent key device |
-
2007
- 2007-07-25 CN CNB2007101194540A patent/CN100462993C/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1377560A (en) * | 1999-10-01 | 2002-10-30 | 艾利森电话股份有限公司 | Portable communication apparatus having man-machine interface and method for its operation |
| CN1421786A (en) * | 2001-11-28 | 2003-06-04 | 联想(北京)有限公司 | Movable external memory content enciphering method independent of computer |
| CN2650231Y (en) * | 2003-09-26 | 2004-10-20 | 北京华旗资讯数码科技有限公司 | Storage unit with optimized compression management mechanism |
| US20060242423A1 (en) * | 2005-04-22 | 2006-10-26 | Kussmaul John W | Isolated authentication device and associated methods |
| CN1877549A (en) * | 2006-07-05 | 2006-12-13 | 北京飞天诚信科技有限公司 | Method for automatic protection of U disc by using filtering driver and intelligent key device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101093527A (en) | 2007-12-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7861015B2 (en) | USB apparatus and control method therein | |
| US20080016127A1 (en) | Utilizing software for backing up and recovering data | |
| CN100437618C (en) | Portable information safety device | |
| US8156331B2 (en) | Information transfer | |
| Deshmukh et al. | Transparent Data Encryption--Solution for Security of Database Contents | |
| TW201112035A (en) | Support for secure objects in a computer system | |
| CN100462993C (en) | Outer placed mobile storage in use for alete information processing | |
| US8200964B2 (en) | Method and apparatus for accessing an encrypted file system using non-local keys | |
| CA2886511A1 (en) | Assembling of isolated remote data | |
| CN104573441A (en) | Computer with data privacy function and data encryption and hiding method thereof | |
| CN114175580B (en) | Enhanced secure encryption and decryption system | |
| CN108491724A (en) | A kind of hardware based computer interface encryption device and method | |
| EP2108145A2 (en) | Protecting secrets in an untrusted recipient | |
| CN101114319A (en) | Shear plate information protecting equipment and method thereof | |
| US20090150680A1 (en) | Data Security in Mobile Devices | |
| US20140068256A1 (en) | Methods and apparatus for secure mobile data storage | |
| US20130145145A1 (en) | System and method of securing data using a server-resident key | |
| CN101099207B (en) | Portable data support with watermark function | |
| CN101777097A (en) | Monitorable mobile storage device | |
| CN1553347A (en) | Computer data protective method | |
| CN103577771A (en) | Virtual desktop data leakage-preventive protection technology on basis of disk encryption | |
| JP2006221259A (en) | Method for recording data in external storage medium and data transfer control interface software for use therewith | |
| CN112287415B (en) | USB storage device access control method, system, medium, device and application | |
| CN112149167A (en) | Data storage encryption method and device based on master-slave system | |
| CN110837627A (en) | Software copyright authentication method, system and equipment based on hard disk serial number |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Outer placed mobile storage in use for alete information processing Effective date of registration: 20111111 Granted publication date: 20090218 Pledgee: Beijing Haidian science and technology enterprise risk Company Limited by Guarantee Pledgor: Guo Fayuan Registration number: 2011990000430 |
|
| PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20111227 Granted publication date: 20090218 Pledgee: Beijing Haidian science and technology enterprise risk Company Limited by Guarantee Pledgor: Guo Fayuan Registration number: 2011990000430 |
|
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Outer placed mobile storage in use for alete information processing Effective date of registration: 20111227 Granted publication date: 20090218 Pledgee: Beijing Haidian science and technology enterprise risk Company Limited by Guarantee Pledgor: Guo Fayuan Registration number: 2011990000514 |
|
| PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20121008 Granted publication date: 20090218 Pledgee: Beijing Haidian science and technology enterprise risk Company Limited by Guarantee Pledgor: Guo Fayuan Registration number: 2011990000514 |
|
| PLDC | Enforcement, change and cancellation of contracts on pledge of patent right or utility model | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Outer placed mobile storage in use for alete information processing Effective date of registration: 20121106 Granted publication date: 20090218 Pledgee: Beijing Haidian science and technology enterprise risk Company Limited by Guarantee Pledgor: Guo Fayuan Registration number: 2012990000674 |
|
| PLDC | Enforcement, change and cancellation of contracts on pledge of patent right or utility model | ||
| ASS | Succession or assignment of patent right |
Owner name: BEIJING LVZHI XINGYE NEW TECHNOLOGY CO., LTD. Free format text: FORMER OWNER: GUO FAYUAN Effective date: 20141210 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100085 HAIDIAN, BEIJING TO: 100082 HAIDIAN, BEIJING |
|
| TR01 | Transfer of patent right |
Effective date of registration: 20141210 Address after: 100082, Beijing, Suzhou Street, Haidian District, No. 12 Westinghouse international C block 1904 Patentee after: Beijing Lvzhi Xingye New Technology Co., Ltd. Address before: 100085, room 701, building A, Ka Wah building, No. 9, 3rd Street, Haidian District, Beijing Patentee before: Guo Fayuan |
|
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20071226 Assignee: Beijing Lvzhi Xingye New Technology Co., Ltd. Assignor: Guo Fayuan Contract record no.: 2011110000035 Denomination of invention: Outer placed mobile storage in use for alete information processing Granted publication date: 20090218 License type: Exclusive License Record date: 20110527 |
|
| LICC | Enforcement, change and cancellation of record of contracts on the licence for exploitation of a patent or utility model | ||
| DD01 | Delivery of document by public notice | ||
| DD01 | Delivery of document by public notice |
Addressee: Yao Yuan Document name: payment instructions |
|
| DD01 | Delivery of document by public notice | ||
| DD01 | Delivery of document by public notice |
Addressee: Yao Yuan Document name: Notice of termination of patent right |
|
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090218 Termination date: 20200725 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |