CN105868643A - Data protection method, memory control circuit unit, and memory storage device - Google Patents
Data protection method, memory control circuit unit, and memory storage device Download PDFInfo
- Publication number
- CN105868643A CN105868643A CN201510024806.9A CN201510024806A CN105868643A CN 105868643 A CN105868643 A CN 105868643A CN 201510024806 A CN201510024806 A CN 201510024806A CN 105868643 A CN105868643 A CN 105868643A
- Authority
- CN
- China
- Prior art keywords
- encryption
- decryption key
- circuit unit
- memory
- control circuit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The invention provides a data protection method, a memory control circuit unit, and a memory storage device. The data protection method comprises: establishing a safe channel with an electronic device through a wireless communication network; through the safe channel established on the wireless communication network, obtaining an identification code; using the identification code to obtain an encryption and decryption key and storing the encryption and decryption key in a buffer memory; using the encryption and decryption key to decode data read from a rewritable nonvolatile storage module, wherein the data of the rewritable nonvolatile storage module is encrypted by the encryption and decryption key; detecting whether a confirmation signal from an electronic device is received from the safe channel established on the wireless communication network; if the confirmation signal from the electronic device is not received in preset time, eliminating the encryption and decryption key stored in the buffer memory.
Description
Technical field
The invention relates to a kind of data protection side for reproducible nonvolatile memorizer module
Method, memorizer control circuit unit and memory storage apparatus.
Background technology
USB flash disk is a kind of data storage device, and it is usually using flash memory as storage media.Quick flashing
Memorizer is that one is electrically erased formula programmable read only memory (Electrically Erasable
Programmable Read Only Memory, be called for short EEPROM), its have writable, can erase,
And the advantage that still can preserve data after power-off.Additionally, flash memory is nonvolatile memory
The one of (Non-Volatile Memory), volume is little, access speed is fast, power consumption is low advantage that it has,
And because of its data erase (Erasing) time be use " next block " (Block by Block) mode of erasing,
So having the advantage that speed of operation is fast.Owing to USB flash disk volume low capacity is big and easy to carry, the widest
The general storage for personal data.But, when USB flash disk imprudence is lost, its mass data stored
It is likely to the most stolen.
In order to solve problem above, manufacturer develops Wireless Fidelity, and (Wireless Fidelity is called for short
WiFi) USB flash disk and secure digital (Secure Digital is called for short SD) card, Wi-Fi wireless card reading machine or wireless
The products such as external hard-disk cartridge, it can set up individual Wi-Fi protection access (Wi-Fi Protected Access
Personal, is called for short WPA-Personal) etc. security mechanism, but all make between each device in this mechanism
Carry out line by shared key mode, therefore all can steal in line the user sharing network for every
Or alter his personal data.Based on above-mentioned, under wireless communication network environments, how to guarantee memorizer storage dress
The safety put is problem to be solved in this area.
Summary of the invention
The present invention provides a kind of data guard method, memorizer control circuit unit and memory storage apparatus,
It utilizes the escape way transmission identification code building on cordless communication network, and uses identification code generation to add solution
Close key reads memory storage apparatus, to improve the safety of memory storage apparatus.
One example of the present invention embodiment proposes a kind of data guard method, is used for protecting memorizer storage dress
Put the data of middle reproducible nonvolatile memorizer module.Notebook data guard method includes: by wireless
Escape way set up by communication network and electronic installation.This method also includes: by building on wireless communication networks
Escape way on network obtains identification code.This method also includes: use identification code to obtain encryption and decryption key
And encryption and decryption key is stored in buffer storage.This method also includes: use encryption and decryption key solution
The data that code reads from reproducible nonvolatile memorizer module, wherein duplicative is non-volatile deposits
The data of memory modules are come encrypted with encryption and decryption key.This method also includes: detecting whether from building on
Escape way on cordless communication network receives the confirmation signal coming from electronic installation.This method is also wrapped
Including: if not receiving the confirmation signal coming from electronic installation in the given time, removing is stored in slow
Rush the encryption and decryption key in memorizer.
In one embodiment of this invention, above-mentioned data guard method also includes: be stored in buffering in removing
After encryption and decryption key in memorizer, memory storage apparatus is set as without media state.
In one embodiment of this invention, take above by the escape way built on cordless communication network
The step obtaining identification code includes: is obtained by the escape way building on cordless communication network and fills from electronics
Putting the identification code of input, wherein electronic installation is hand-hold electronic device.
In one embodiment of this invention, take above by the escape way built on cordless communication network
The step obtaining identification code includes: obtain electronic installation by the escape way building on cordless communication network
The identification code produced, wherein electronic installation is server and is electrically connected to wireless network access point.
In one embodiment of this invention, wherein cordless communication network is that blueteeth network, the wireless compatibility are recognized
Card network, near field communication network or radio frequency identification network.
In one embodiment of this invention, above-mentioned use identification code obtains encryption and decryption key and will add solution
The step that close key is stored in buffer storage includes: in reproducible nonvolatile memorizer module
Storage PIN informative abstract and key.Above-mentioned steps also includes: use One-Way Hash Function to produce
The informative abstract of corresponding identification code.Above-mentioned steps also includes: judge informative abstract and PIN information
Whether summary is consistent, wherein when informative abstract and PIN informative abstract are consistent, according to identification code
Use encryption and decryption function decoding key to obtain encryption and decryption key.
In one embodiment of this invention, above-mentioned storage in reproducible nonvolatile memorizer module
The step of people's information of identification code summary and key includes: initially passes through One-Way Hash Function and knows according to individual
Other code produces PIN informative abstract.Above-mentioned steps also includes: initially make according to PIN
By encryption and decryption function encrypting encryption and decryption key to produce key.
In one embodiment of this invention, above-mentioned initially foundation PIN uses encryption and decryption function to add
Close encryption and decryption key includes with the step producing key: produce encryption and decryption key the most in a random basis.
In one embodiment of this invention, the decoding of above-mentioned use encryption and decryption key is non-volatile from duplicative
The step of the data read in memory module includes: use the decoding of encryption and decryption function according to encryption and decryption key
The data read from reproducible nonvolatile memorizer module, wherein duplicative non-volatile memories
The data of device module use encryption and decryption function encrypted according to encryption and decryption key.
One example of the present invention embodiment proposes a kind of memorizer control circuit unit, is used for controlling to make carbon copies
Formula non-volatile memory module, it include HPI, memory interface, memory management circuitry and
Wireless communication interface.HPI is electrically connected to host computer system.Memory interface is electrically connected to answer
Write formula non-volatile memory module.Memory management circuitry is electrically connected to HPI and memorizer connects
Mouthful.Wireless communication interface is electrically connected to memory management circuitry.Wherein memorizer control circuit unit leads to
Cross wireless communication interface and set up escape way with cordless communication network and electronic installation.Wherein radio communication connects
Mouth obtains identification code by building on the escape way on cordless communication network.Wherein memory management circuitry
Identification code is used to obtain encryption and decryption key and encryption and decryption key be stored in buffer storage.Wherein
Memory management circuitry uses the decoding of encryption and decryption key to read from reproducible nonvolatile memorizer module
Data, wherein the data of reproducible nonvolatile memorizer module with encryption and decryption key come encrypted.
Wherein wireless communication interface detect whether from the escape way building on cordless communication network receive from
Confirmation signal in electronic installation.Wherein, if wireless communication interface does not receives arrival in the given time
From in the confirmation signal of electronic installation, what memory management circuitry removing was stored in buffer storage adds solution
Close key.
In one embodiment of this invention, above-mentioned memory management circuitry is removed in memory management circuitry and is deposited
After the encryption and decryption key being stored in buffer storage, when memory management circuitry receives host computer system
During access signal, memory management circuitry transmits without media signal to host computer system.
In one embodiment of this invention, above-mentioned cordless communication network is that blueteeth network, the wireless compatibility are recognized
Card network, near field communication network or radio frequency identification network.
In one embodiment of this invention, above-mentioned memory management circuitry is in duplicative non-volatile memories
Device module stores PIN informative abstract and key.Above-mentioned memory management circuitry also uses unidirectional
Hash function produces the informative abstract of corresponding identification code.Above-mentioned memory management circuitry also judges informative abstract
Whether it is consistent with PIN informative abstract, wherein when informative abstract and PIN informative abstract phase
Fu Shi, memory management circuitry uses encryption and decryption function decoding key to obtain encryption and decryption gold according to identification code
Key.
In one embodiment of this invention, above-mentioned memory management circuitry initially makes according to PIN
By encryption and decryption function encrypting encryption and decryption key to produce key.
One example of the present invention embodiment proposes a kind of memory storage apparatus, it include connecting interface unit,
Reproducible nonvolatile memorizer module, memorizer control circuit unit and wireless communication interface.Connect
Interface unit is electrically connected to host computer system.Memorizer control circuit unit is electrically connected to connect interface list
Unit and reproducible nonvolatile memorizer module.Wireless communication interface is electrically connected to memorizer and controls electricity
Road unit.Wherein memory control unit passes through wireless communication interface with cordless communication network and electronic installation
Escape way set up by electronic installation.Wherein memorizer control circuit unit is by building on cordless communication network
On escape way obtain identification code.Wherein memorizer control circuit unit use identification code obtains and adds solution
Close key and encryption and decryption key is stored in buffer storage.Wherein memorizer control circuit unit makes
The data read from reproducible nonvolatile memorizer module with the decoding of encryption and decryption key, wherein can answer
The data writing formula non-volatile memory module are come encrypted with encryption and decryption key.Wherein memorizer controls electricity
Road unit detects whether to receive from the escape way building on cordless communication network to come from electronic installation
Confirmation signal.Wherein, come from if memorizer control circuit unit does not receives in the given time
The confirmation signal of electronic installation, what the removing of memorizer control circuit unit was stored in buffer storage adds solution
Close key.
In one embodiment of this invention, above-mentioned memorizer control circuit unit is at memorizer control circuit list
After unit removes the encryption and decryption key being stored in buffer storage, when memorizer control circuit unit receives
During to the access signal of host computer system, memorizer control circuit unit transmits without media signal to host computer system.
In one embodiment of this invention, above-mentioned memorizer control circuit unit is by building on radio communication
Escape way on network obtains the identification code from electronic installation input, and wherein electronic installation is handheld electronic
Device.
In one embodiment of this invention, above-mentioned memorizer control circuit unit is by building on radio communication
Escape way on network obtains the identification code that electronic installation produces, and wherein electronic installation is server electricity
Property is connected to wireless network access point.
In one embodiment of this invention, above-mentioned cordless communication network is that blueteeth network, the wireless compatibility are recognized
Card network, near field communication network or radio frequency identification network.
In one embodiment of this invention, above-mentioned memorizer control circuit unit is non-volatile at duplicative
Memory module stores PIN informative abstract and key.Above-mentioned memorizer control circuit unit is also
One-Way Hash Function is used to produce the informative abstract of corresponding identification code.Above-mentioned memorizer control circuit unit is also
Judge whether informative abstract is consistent with PIN informative abstract, wherein identify as informative abstract and individual
Code informative abstract is when being consistent, memory management circuitry according to identification code use encryption and decryption function decoding key with
Obtain encryption and decryption key.
In one embodiment of this invention, above-mentioned memorizer control circuit unit initially identifies according to individual
Code uses encryption and decryption function encrypting encryption and decryption key to produce key.
In one embodiment of this invention, above-mentioned memorizer control circuit unit produces the most in a random basis
Raw encryption and decryption key.
In one embodiment of this invention, above-mentioned memorizer control circuit unit uses according to encryption and decryption key
The data that the decoding of encryption and decryption function is read from manifolding formula non-volatile memory module, wherein duplicative
The data of non-volatile memory module use encryption and decryption function encrypted according to encryption and decryption key.
Based on above-mentioned, the data guard method of the present invention leads to by building on the safety on cordless communication network
Road obtains identification code from electronic installation, uses identification code close be pre-stored within memory storage apparatus
Key obtains encryption and decryption key, and uses the data of encryption and decryption key decoding storage storage device.If in advance
Do not receive confirmation signal from escape way in fixing time, can determine whether that memory storage apparatus is away from electricity
Sub-device, then remove encryption and decryption key, and be set as memory storage apparatus without media state.
For the features described above of the present invention and advantage can be become apparent, special embodiment below, and coordinate
Accompanying drawing is described in detail below.
Accompanying drawing explanation
Fig. 1 be according to the host computer system shown by the present invention one exemplary embodiment, memory storage apparatus and
Electronic installation;
Fig. 2 is showing according to the host computer system shown by the present invention one exemplary embodiment and input/output device
It is intended to;
Fig. 3 is according to the host computer system shown by the present invention one exemplary embodiment and memory storage apparatus
Schematic diagram;
Fig. 4 is the schematic block diagram illustrating the memory storage apparatus shown in Fig. 1;
Fig. 5 is the summary side according to the memorizer control circuit unit shown by the present invention one exemplary embodiment
Block figure;
Fig. 6 is the flow chart according to the data guard method shown by the present invention one exemplary embodiment;
Fig. 7 is the flow chart according to the data guard method shown by another exemplary embodiment of the present invention.
Description of reference numerals:
1000: host computer system;
1100: computer;
1102: microprocessor;
1104: random access memory;
1106: input/output device;
1108: system bus;
1110: data transmission interface;
1202: mouse;
1204: keyboard;
1206: display;
1208: printer;
1212:U dish;
1214: storage card;
1216: solid state hard disc;
1310: digital camera;
1312:SD card;
1314:MMC card;
1316: memory stick;
1318:CF card;
1320: embedded storage device;
2000: electronic installation;
100: memory storage apparatus;
102: connect interface unit;
104: memorizer control circuit unit;
106: reproducible nonvolatile memorizer module;
108: wireless communication interface;
410 (0)~410 (N): entity erased cell;
202: memory management circuitry;
204: HPI;
206: memory interface;
252: buffer storage;
254: electric power management circuit;
256: error checking and correcting circuit;
S602、S604、S606、S608、S610、S612、S702、S704、S706、S708、S710、
S712, S714, S716: step.
Detailed description of the invention
It is said that in general, memory storage apparatus (also referred to as, storage system) includes that duplicative is non-volatile
Property memory module and controller (also referred to as, control circuit).Being commonly stored device storage device is and host computer system
It is used together, so that host computer system can write data into memory storage apparatus or from memorizer storage dress
Put middle reading data.
Fig. 1 be according to the host computer system shown by the present invention one exemplary embodiment, memory storage apparatus and
Electronic installation.Fig. 2 is to fill with input/output according to the host computer system shown by the present invention one exemplary embodiment
The schematic diagram put
Refer to Fig. 1, electronic installation 2000 can be the portable electronic devices such as mobile phone, tablet PC,
Radio communication is carried out by wireless network and memory storage apparatus 100.Electronic installation 2000 is alternatively clothes
Business device, carries out radio communication by wireless network access point and memory storage apparatus 100.But, this
Invention is not limited thereto, and electronic installation 2000 is alternatively other dresses with cordless communication network function
Put, carry out radio communication by wireless network and memory storage apparatus 100.
Host computer system 1000 generally comprises computer 1100 and input/output (input/output is called for short I/O)
Device 1106.Computer 1100 includes microprocessor 1102, random access memory (random access
Memory, is called for short RAM) 1104, system bus 1108 and data transmission interface 1110.Input/output
Device 1106 includes the mouse 1202 such as Fig. 2, keyboard 1204, display 1206 and printer 1208.
It will be appreciated that the unrestricted input/output device of device 1106 shown in Fig. 2, input/output device
1106 can also include other devices.
In an exemplary embodiment, memory storage apparatus 100 is with main by data transmission interface 1110
Other elements of machine system 1000 are electrically connected with.By microprocessor 1102, random access memory 1104
Running with input/output device 1106 can write data into memory storage apparatus 100 or from storage
Device storage device 100 reads data.Such as, memory storage apparatus 100 can be as shown in Figure 2
USB flash disk 1212, storage card 1214 or solid state hard disc (Solid State Drive is called for short SSD) 1216 grades
Type nonvolatile storage device.
Fig. 3 is according to the host computer system shown by the present invention one exemplary embodiment and memory storage apparatus
Schematic diagram.
It is said that in general, host computer system 1000 is for coordinating with memory storage apparatus 100 substantially with storage
Any system of data.Although in this exemplary embodiment, host computer system 1000 is to come with computer system
Explain, but, in another exemplary embodiment, host computer system 1000 can be digital camera, photography
The systems such as machine, communicator, audio player or video player.Such as, it is digital in host computer system
During camera (camera) 1310, the peace that type nonvolatile storage device is then used by it
Full digital code (Secure Digital, be called for short SD) blocks 1312, multimedia storage card (Multi Media Card, letter
Claim MMC) 1314, memory stick (memory stick) 1316, compact flash (Compact Flash, CF) card
1318 or embedded storage devices 1320 (as shown in Figure 3).Embedded storage device 1320 includes embedded
Multimedia card (Embedded MMC is called for short eMMC).It is noted that embedded multi-media card is
Directly it is electrically connected on the substrate of host computer system.
Fig. 4 is the schematic block diagram illustrating the memory storage apparatus shown in Fig. 1.
Refer to Fig. 4, memory storage apparatus 100 includes connecting interface unit 102, memorizer controls electricity
Road unit 104, reproducible nonvolatile memorizer module 106 and wireless communication interface 108.At this model
In example embodiment, memory storage apparatus 100 is USB flash disk.But it is it will be appreciated that real at another example
Execute in example, memory storage apparatus 100 can also be storage card or solid state hard disc (Solid State Drive,
It is called for short SSD).
In this exemplary embodiment, connecting interface unit 102 is to be compatible to USB (universal serial bus) (Universal
Serial Bus, is called for short USB) standard.However, it is necessary to be appreciated that, the invention is not restricted to this, connect
Interface unit 102 can also be to meet parallel advanced technology adnexa (Parallel Advanced Technology
Attachment, be called for short PATA) standard, Institute of Electrical and Electric Engineers (Institute of Electrical
And Electronic Engineers, be called for short IEEE) 1394 standards, high-speed peripheral interconnecting interface (Peripheral
Component Interconnect Express, be called for short PCI Express) standard, Serial Advanced Technology Attachment
(Serial Advanced Technology Attachment is called for short SATA) standard, a ultrahigh speed generation (Ultra
High Speed-I, is called for short UHS-I) secondary (Ultra High Speed-II is called for short for interface standard, ultrahigh speed
UHS-II) interface standard, safe digital (Secure Digital is called for short SD) interface standard, memory stick
(Memory Stick is called for short MS) interface standard, multimedia storage card (Multi Media Card, abbreviation
MMC) interface standard, compact flash (Compact Flash is called for short CF) interface standard, integrated driving electricity
Sub-interface (Integrated Device Electronics is called for short IDE) standard or other standards being suitable for.At this
In exemplary embodiment, connecting interface unit 102 can be encapsulated in one with memorizer control circuit unit 104
In chip, or it is laid in outside a chip comprising memorizer control circuit unit 104.
Memorizer control circuit unit 104 is in order to perform in the form of hardware or the multiple of form of firmware implementation patrol
Volume door or control instruction, and according to the instruction of host computer system 1000 in type nonvolatile
Module 106 carries out the write of data, operation of reading and erase etc..
Reproducible nonvolatile memorizer module 106 is electrically connected to memorizer control circuit unit
104, and the data write in order to host system 1000.Type nonvolatile
Module 106 has entity erased cell 410 (0)~410 (N).Such as, entity erased cell 410 (0)~410 (N)
Same memory crystal grain (die) can be belonged to or belong to different memory crystal grain.Each entity is erased list
Unit is respectively provided with a plurality of entity program unit, and belongs to the entity journey of same entity erased cell
Sequence unit can be written independently and simultaneously be erased.Such as, each entity erased cell is by 128
Individual entity program unit is formed.However, it is necessary to be appreciated that, the invention is not restricted to this, Mei Yishi
Body erased cell is can be by 64 entity program unit, 256 entity program unit or other are any
Individual entity program unit is formed.
More particularly, each entity erased cell includes a plurality of character line and a plurality of bit line, each
Bar character line and each bit line infall are configured with a memory element.Each memory element can be deposited
Store up one or more bit.In same entity erased cell, all of memory element can be erased together.
In this exemplary embodiment, entity erased cell is the least unit erased.That is, each entity is erased
Unit contains the memory element being erased in the lump of minimal amount.Such as, entity erased cell is solid block.
On the other hand, the memory element on same character line can form one or more entity program unit.If
Each memory element can store the bit of more than 2, the entity program list on the most same character line
Unit can be classified as lower entity program unit and upper entity program unit.In general, lower entity journey
The writing speed of sequence unit can be more than the writing speed of upper entity program unit.In this exemplary embodiment
In, entity program unit is the minimum unit of sequencing.That is, entity program unit is write data
Minimum unit.Such as, entity program unit is physical page or entity fan (sector).If entity
Programmed cell is physical page, then each entity program unit generally includes data bit district with superfluous
Remaining bit area.Data bit district comprises multiple entity fan, in order to store the data of user, and redundant bit
District is in order to store the data (such as, error correcting code) of system.In this exemplary embodiment, each
Data bit district comprises 32 entity fans, and the size of an entity fan is that (byte is called for short 512 bit groups
B).But, in other exemplary embodiment, data bit district also can comprise 8,16 or number
More or less of entity is fanned, and the present invention is not limiting as size and the number of entity fan.
In this exemplary embodiment, reproducible nonvolatile memorizer module 106 is multilayered memory unit
(Multi Level Cell is called for short MLC) NAND type flash memory module, can in i.e. one memory element
Store at least 2 bits.But, the invention is not restricted to this, reproducible nonvolatile memorizer module
106 may also be monolayer memory element (Single Level Cell is called for short SLC) NAND type flash memory mould
Block, plural layer memory element (Trinary Level Cell is called for short TLC) NAND type flash memory mould
Block, other flash memory module or other there is the memory module of identical characteristics.
Wireless communication interface 108 is electrically connected to memorizer control circuit unit 104 and has short distance
Radio communication function.Wireless communication interface 108 can be support bluetooth (Bluetooth), the wireless compatibility recognizes
Card (Wireless Fidelity is called for short WiFi), near-field communication (Near Field Communication, abbreviation
NFC), the short distance such as radio frequency identification (Radio Frequency Identification, be called for short RFID) without
The communication chip of line communication function.
Fig. 5 is the summary side according to the memorizer control circuit unit shown by the present invention one exemplary embodiment
Block figure.
Refer to Fig. 5, memorizer control circuit unit 104 includes that memory management circuitry 202, main frame connect
Mouth 204 and memory interface 206.
Memory management circuitry 202 is in order to control the overall operation of memorizer control circuit unit 104.Tool
For body, memory management circuitry 202 has multiple control instruction, and at memory storage apparatus 100
During running, these a little control instructions can be performed to carry out the write of data, operation of reading and erase etc..With
During the operation of lower explanation memory management circuitry 202, it is equal to memorizer control circuit unit 104 is described
Operation, below and repeat no more.
In an exemplary embodiment, the control instruction of memory management circuitry 202 is to come in fact with form of firmware
Make.Such as, memory management circuitry 202 has microprocessor unit (not shown), read only memory (not
Illustrate) and random access memory (not shown), and these a little control instructions are to be programmed the most read-only storage
In device.When memory storage apparatus 100 operates, these a little control instructions can be held by microprocessor unit
Row is to carry out the write of data, running of reading and erase etc..
In another exemplary embodiment, the control instruction of memory management circuitry 202 can also procedure code shape
Formula is stored in the specific region of reproducible nonvolatile memorizer module 106, and (such as, duplicative is non-easily
The property lost memory module is exclusively used in the system area of storage system data) in.Additionally, memory management circuitry
202 have microprocessor unit (not shown), read only memory (not shown) and random access memory (does not shows
Go out).Particularly, this read only memory has boot code (boot code), and works as memorizer control circuit
When unit 104 is triggered, it is non-will be stored in duplicative that microprocessor unit can first carry out this boot code
Control instruction in volatile 106 is loaded into the random access memory of memory management circuitry 202
In memorizer.Afterwards, microprocessor unit can operate these a little control instructions to carry out the write of data, reading
Take and erasing etc. operates.
Additionally, in another exemplary embodiment, the control instruction of memory management circuitry 202 can also one
Example, in hardware carrys out implementation.Such as, memory management circuitry 202 includes that the management of microcontroller, memorizer is single
Unit, memorizer writing unit, memorizer read unit, memorizer erased cell and data processing unit.
MMU, memorizer writing unit, memorizer read unit, memorizer erased cell and number
It is electrically connected to microcontroller according to processing unit.Wherein, MMU can be made carbon copies in order to manage
The entity erased cell of formula non-volatile memory module 106;Memorizer writing unit is in order to making carbon copies
It is non-volatile to write data into duplicative that formula non-volatile memory module 106 assigns write instruction
In memory module 106;Memorizer reads unit in order to reproducible nonvolatile memorizer module 106
Assign reading instruction to read data from reproducible nonvolatile memorizer module 106;Memorizer is smeared
Except unit in order to reproducible nonvolatile memorizer module 106 is assigned erase instruction with by data from can
Manifolding formula non-volatile memory module 106 is erased;And data processing unit in order to process be intended to write to
The data of reproducible nonvolatile memorizer module 106 and from type nonvolatile mould
The data read in block 106.
HPI 204 is electrically connected to memory management circuitry 202 and in order to receive and to identify master
Instruction that machine system 1000 is transmitted and data.It is to say, the instruction that host computer system 1000 is transmitted
Memory management circuitry 202 can be sent to by HPI 204 with data.In this exemplary embodiment
In, HPI 204 is to be compatible to USB standard.However, it is necessary to be appreciated that and the invention is not restricted to this,
HPI 204 can also be to be compatible to PATA standard, IEEE 1394 standard, PCI Express mark
Standard, SATA standard, SD standard, UHS-I standard, UHS-II standard, MS standard, MMC mark
Standard, eMMC standard, UFS standard, CF standard, IDE standard or other data transmission standards being suitable for.
Memory interface 206 is electrically connected to memory management circuitry 202 and can make carbon copies in order to access
Formula non-volatile memory module 106.It is to say, be intended to write to type nonvolatile
The data of module 106 can be converted to reproducible nonvolatile memorizer module by memory interface 206
106 receptible forms.
Buffer storage 252 is electrically connected to memory management circuitry 202 and being configured to temporarily store and comes from
The data of host computer system 1000 and instruction or come from the number of reproducible nonvolatile memorizer module 106
According to.
In an exemplary embodiment, memory management circuitry 202 can be by wireless communication interface 108 and electricity
Sub-device 2000 (such as, the mobile phone of user) sets up escape way.Such as, at wireless communication interface 108
Being in the example supporting Bluetooth specification, this escape way can transmit bluetooth by wireless communication interface 108 joins
To password and by setting up after electronic installation 2000 confirmation.
Memory management circuitry 202 also by wireless communication interface 108 from the peace building on Bluetooth communication
Full tunnel obtains identification code.Here, identification code can be user identification code, user cipher, handset identity code
Or one of them or a combination thereof of cell phone password etc., and can be the most defeated by electronic installation 2000 by user
Enter, but the present invention is not limited thereto.Identification code can also be by the application journey on electronic installation 2000
Sequence automatically enters.
When memory management circuitry 202 obtains identification code, memory management circuitry 202 can use identification
Code obtains encryption and decryption key, and encryption and decryption key is stored in buffer storage 252.Come in detail
Say, reproducible nonvolatile memorizer module 106 can store PIN informative abstract (personal
Identification number message digest) and key (encrypted key).Memory management circuitry
202 have an One-Way Hash Function, and this One-Way Hash Function can be utilized to calculate corresponding above-mentioned identification code
Informative abstract (message digest).In this exemplary embodiment, above-mentioned One-Way Hash Function is to utilize
SHA-256 is implemented in memory management circuitry 202.But, the present invention is not limited thereto.
In another exemplary embodiment of the present invention, the One-Way Hash Function in memory management circuitry 202 can also
Come real by MD5, RIPEMD-160, SHA1, SHA-386, SHA-512 or other functions being suitable for
Make.Afterwards, memory management circuitry 202 can be non-volatile with duplicative by the informative abstract calculated
The PIN informative abstract stored in property memory module 106 is compared, if calculated
The PIN information stored in informative abstract and reproducible nonvolatile memorizer module 106 is plucked
Time to be consistent, then memory management circuitry 202 can use encryption and decryption function decryption according to this identification code
Key is to obtain encryption and decryption key.After memory management circuitry 202 obtains encryption and decryption key, just can profit
The data read from reproducible nonvolatile memorizer module 106 with the decoding of encryption and decryption key.Similar
Ground, after memory management circuitry 202 obtains encryption and decryption key, just may utilize the encryption of encryption and decryption key
Data in reproducible nonvolatile memorizer module 106 to be write.
In this exemplary embodiment, the encryption and decryption function in memory management circuitry 202 is with superencipherment
Standard (Advanced Encryption Standard is called for short AES) 128 carrys out implementation, but, the present invention is also
It is not limited.It is used as AES256 or data encryption standards in another exemplary embodiment of the present invention
(Data Encryption Standard, vehicle economy S) carrys out the encryption and decryption in implementation memory management circuitry 202
Function.
It is noted that the individual's identification being stored in reproducible nonvolatile memorizer module 106
Code informative abstract is to set PIN by the user of this memory storage apparatus 100, and utilizes
Above-mentioned One-Way Hash Function is produced.Such as, can be by manufacturing when this memory storage apparatus 100 dispatches from the factory
Business prestores one group of PIN informative abstract, and manufacturer can be by this PIN informative abstract pair
The PIN answered is supplied to user.Afterwards, user can use the PIN that manufacturer is provided
Successfully pass through the checking of memory storage apparatus 100.Additionally, when user resets one group of new individual
During identification code, memory management circuitry 202 can be according to the new-pin of user with One-Way Hash Function
Recalculate one group of new-pin's informative abstract, and new-pin's informative abstract is stored
To replace original PIN informative abstract in reproducible nonvolatile memorizer module 106.
Afterwards, memory management circuitry 202 can use up-to-date PIN informative abstract to verify user institute
The identification code of input.
It addition, encryption and decryption key can be when memory storage apparatus 100 dispatches from the factory, by a random number generator (not
Illustrate) produce with a random fashion.Particularly, memory management circuitry 202 can make according to PIN
Encrypt this encryption and decryption key with encryption and decryption function, and the key that this encryption and decryption key is obtained will be encrypted
It is stored in memory storage apparatus 100.Therefore, when identification code is by above-mentioned checking, this identification code
The key being stored in memory storage apparatus 100 can be correctly decoded, and obtain this encryption and decryption key.
In this exemplary embodiment, in memory management circuitry 202 by wireless communication interface 108 and electricity
After sub-device 2000 sets up escape way, memory storage apparatus 100 can every one period of scheduled time,
Such as 5 seconds, send poll (polling) signal to electronic installation 2000, when electronic installation 2000 is received
During to polling signal, then can return confirmation (ack) signal to memory storage apparatus 100, to confirm
Electronic installation 2000 and the radio connecting situation of memory storage apparatus 100.If memory storage apparatus
100 the most periodically receive electronic installation 2000 responds the confirmation signal of polling signal, memorizer
Management circuit 202 just may utilize encryption and decryption key to access reproducible nonvolatile memorizer module 106.
Otherwise, when memory storage apparatus 100 leaves this environment, if memory storage apparatus 100 exists
One scheduled time all confiscated electronic installation 2000 and responds the confirmation signal of polling signal, memorizer management electricity
Road 202 can be removed the encryption and decryption key in buffer storage 252 and be set by memory storage apparatus 100
It is set to without media state.Specifically, when memory storage apparatus 100 is set to without media state,
If memory management circuitry 202 receives the access signal that host computer system 1000 is transmitted, memorizer manages
Circuit 202 can respond one without media signal to host computer system 1000 so that host computer system 1000 cannot
Identify or access memory storage apparatus 100, say, that the operating system of host computer system 1000 can be sentenced
Disconnected memory storage apparatus 100 is in the state interrupting linking.Can answer consequently, it is possible to other people are difficult to acquirement
Write the data in formula non-volatile memory module 106, even if achieving wherein data, due to encryption and decryption
Key is deleted from buffer storage 252, and therefore other people also cannot decode that duplicative is non-volatile to be deposited
Through the data of encryption in memory modules 106.
Identification code is inputted by user from electronic installation 2000 although being explained above, and wireless by bluetooth
Communication network transmit identification code to guarantee the safety of memory storage apparatus 100, but the present invention not with
This is limited.In another exemplary embodiment, memory storage apparatus 100 is available is stored in therein
People's information of identification code summary logs in the Wi-Fi wireless communication network environments of an access point (AP), in this reality
Executing in example, electronic installation 2000 can be the server being connected to access point.At memory storage apparatus 100
After logging in Wi-Fi with PIN informative abstract, server can search for corresponding PIN information
One identification code of summary, and send this identification code to memory storage apparatus 100 by access point.Deposit
Reservoir storage device 100 receives identification code and plucks with the information of the corresponding identification code of individual event hash function generation
Want.If this informative abstract is same as being stored in memory storage apparatus 100 PIN informative abstract,
Then this identification code can correctly decode the key being stored in memory storage apparatus 100, thus obtains
Encryption and decryption key.Therefore, user can access memory storage apparatus 100 by encryption and decryption key.
In another exemplary embodiment, the available logging-in code preset of memory storage apparatus 100 logs in deposits
Take a little.Here, electronic installation 2000 can be the server being connected to access point.At memory storage apparatus
100 Successful login access points after setting up Wi-Fi network line, user can directly utilize defeated at access point
Enter device input identification code so that identification code is sent to memory storage apparatus 100 by access point.Connect
, memory storage apparatus 100 can receive identification code and produce corresponding identification code with individual event hash function
Informative abstract.If this informative abstract is same as being stored in memory storage apparatus 100 PIN information
Summary, then this identification code can correctly decode the key being stored in memory storage apparatus 100, from
And obtain encryption and decryption key.Therefore, user can access memory storage apparatus 100 by encryption and decryption key.
It should be noted that when memory storage apparatus 100 enters above-mentioned Wi-Fi cordless communication network ring
During border, simultaneously can obtain data from electronic installation 2000 and transmit key, with to this cordless communication network
The data transmitted in environment or receive are encrypted or decipher.For example, when memory storage apparatus 100
During Successful login above-mentioned Wi-Fi wireless communication network environments, memory storage apparatus 100 can fill from electronics
Put one data transmission key of 2000 reception and be stored in buffer storage 252.Electronic installation
2000 can be first with data transmission key encryption before transmission identification code.When memory storage apparatus 100
Receive the data that electronic installation 2000 transmits in Wi-Fi environment, namely transmit key by data
During the identification code encrypted, memory storage apparatus 100 may utilize the data in buffer storage 252 and passes
Defeated key solution ciphertext data is to obtain identification code.
In the present invention one exemplary embodiment, memorizer control circuit unit 104 also includes power management electricity
Road 254 and error checking and correcting circuit 256.
Electric power management circuit 254 is electrically connected to memory management circuitry 202 and in order to control storage
The power supply of device storage device 100.
Error checking and correcting circuit 256 are electrically connected to memory management circuitry 202 and in order to hold
Row error checking and correction program are to guarantee the correctness of data.Specifically, memory management circuitry is worked as
202 when receiving write instruction from host computer system 1000, and error checking and correcting circuit 256 can be right
The data answering this write instruction produce corresponding error correcting code, and (Error Correcting Code is called for short
And memory management circuitry 202 can by the data of this write instruction corresponding with corresponding mistake more ECC),
Code writes to reproducible nonvolatile memorizer module 106.Afterwards, memory management circuitry is worked as
202 can read this data pair when reading data from reproducible nonvolatile memorizer module 106 simultaneously
The error correcting code answered, and error checking can be according to this error correcting code to being read with correcting circuit 256
The data taken perform error checking and correction program.
Fig. 6 is the flow chart according to the data guard method shown by the present invention one exemplary embodiment.
Refer to Fig. 6, in step S602, memory management circuitry 202 can pass through wireless communication interface
108 set up escape way with electronic installation 2000, and this escape way can be passed by wireless communication interface 108
Defeated wireless network pairing identification code and by electronic installation 2000 confirmation after set up.
After the escape way set up between memory storage apparatus 100 and electronic installation, enter step
In S604, memory management circuitry 202 obtains identification code by wireless communication interface 108 from escape way.
Pass through electronic installation 2000 input voluntarily or by electronic installation 2000 here, identification code can be user
On application program automatically enter.
In step S606, memory management circuitry 202 use identification code to obtain encryption and decryption key, and
Encryption and decryption key is stored in buffer storage 252.
After memory management circuitry 202 obtains encryption and decryption key, can enter step S608, use adds
Key and encryption and decryption function access the data in reproducible nonvolatile memorizer module 106.
Specifically, when user's reproducible nonvolatile memorizer module 106 to be write data to, storage
Device management circuit 202 can according to encryption and decryption key use Advanced Encryption Standard (AES) to write data encryption,
The most again by encrypted data write reproducible nonvolatile memorizer module 106.In like manner, when with
Family is intended to when reproducible nonvolatile memorizer module 106 reads data, memory management circuitry 202
Advanced Encryption Standard (AES) can be used data deciphering according to encryption and decryption key, read the most again after deciphering
Data.It should be noted that user is except by wireline interface access duplicatives such as USB or SATA
Data in non-volatile memory module 106, user is also by wireless communication interface 108, from far
End accesses the data in reproducible nonvolatile memorizer module 106 by wireless network.
Peace can be set up by wireless communication interface 108 with electronic installation 2000 in memory management circuitry 202
After full tunnel, electronic installation 2000 can send by responding the polling signal of memory storage apparatus 100
One confirmation signal is to memory storage apparatus 100, to confirm electronic installation 2000 and memorizer storage dress
Put the radio connecting situation of 100.In step S610, wireless communication interface 108 can detect whether from building
Stand on the escape way on cordless communication network and receive the confirmation signal coming from electronic installation 2000.If
Wireless communication interface 108 detects confirmation signal, then return to step S608, continues access duplicative non-
Data in volatile 106.
If the wireless communication interface 108 of memory storage apparatus 100 is more than in the scheduled time, such as
10 seconds, when not receiving the confirmation signal that electronic installation 2000 is transmitted, represent this electronic installation 2000
The most not within the scope of wireless communication interface 108 short haul connection, then in step S612, storage
Device management circuit 202 can remove the encryption and decryption key in buffer storage 252, and is stored by memorizer
Device 100 is set as without media state.Specifically, it is set to nothing when memory storage apparatus 100
During media state, if memory management circuitry 202 receives the access signal that host computer system 1000 is transmitted,
Memory management circuitry 202 can respond one without media signal to host computer system 1000 so that host computer system
1000 None-identifieds or access memory storage apparatus 100, say, that the operation of host computer system 1000
System can judge that memory storage apparatus 100 is in the state interrupting linking.Consequently, it is possible to other people dyschezia
To obtain the data in reproducible nonvolatile memorizer module 106, even if achieving wherein data,
Deleting from buffer storage 252 due to encryption and decryption key, it is non-easily that other people also cannot decode duplicative
Through the data of encryption in the property lost memory module 106.
Fig. 7 is the flow chart according to the data guard method shown by another exemplary embodiment of the present invention.
Refer to Fig. 7, in step S702, memory management circuitry 202 can pass through wireless communication interface
108 set up escape way with electronic installation 2000, and this escape way can be passed by wireless communication interface 108
Defeated wireless network pairing password and by electronic installation 2000 confirmation after set up.
After the escape way set up between memory storage apparatus 100 and electronic installation, in step
In S704, memory management circuitry 202 obtains identification code by wireless communication interface 108 from escape way.
Pass through electronic installation 2000 input voluntarily or by electronic installation 2000 here, identification code can be user
On application program automatically enter.
In step S706, memory management circuitry 202 can utilize the hash function identification code to receiving
Make computing to produce corresponding informative abstract, then in step S708, memory management circuitry 202 meeting
Judge whether above-mentioned informative abstract is consistent with personally identifiable information's summary.Here, PIN information is plucked
Wanting and key is to be stored in advance in reproducible nonvolatile memorizer module 106, wherein individual identifies
Code informative abstract is to initially pass through One-Way Hash Function to produce according to PIN, and key is initial
Ground, according to PIN, uses the such as encryption and decryption such as Advanced Encryption Standard or data encryption standards function,
Encrypt the encryption and decryption key produced by random fashion and produce.
If memory management circuitry 202 judges that above-mentioned informative abstract does not corresponds with personally identifiable information's summary
Time, then return to step S704, to obtain identification code from electronic installation 2000 again.If memorizer pipe
Reason circuit 202 judges when above-mentioned informative abstract is consistent with personally identifiable information's summary, then in step S710,
Memory management circuitry 202 uses encryption and decryption function decoding ciphertext to obtain encryption and decryption gold according to identification code
Key, and encryption and decryption key is stored in buffer storage 252.
After obtaining encryption and decryption key, in step S712, memory management circuitry 202 uses encryption and decryption
Key and encryption and decryption function access the data in reproducible nonvolatile memorizer module 106.Due to
Encryption and decryption key and encryption and decryption function is used to access in reproducible nonvolatile memorizer module 106
The process of data was illustrated in Figure 6, was not repeating.
Safety is set up by wireless communication interface 108 and electronic installation 2000 in memory management circuitry 202
After passage, electronic installation 2000 can send one by responding the polling signal of memory storage apparatus 100
Individual confirmation signal is to memory storage apparatus 100, to confirm electronic installation 2000 and memory storage apparatus
The radio connecting situation of 100.In step S714, wireless communication interface 108 can detect whether from foundation
Escape way over a wireless communication network receives the confirmation signal coming from electronic installation 2000.If nothing
When line communication interface 108 detects confirmation signal, then return to step S712, to continue access duplicative
Data in non-volatile memory module 106.
If the wireless communication interface 108 of memory storage apparatus 100 is more than in the scheduled time, such as
10 seconds, when not receiving the confirmation signal that electronic installation 2000 is transmitted, represent this electronic installation 2000
The most not within the scope of wireless communication interface 108 Small Area Wireless Communication Networks, then in step S716
In, memory management circuitry 202 can remove the encryption and decryption key in buffer storage 252 and by memorizer
Storage device 100 is set as without media state.Specifically, it is set when memory storage apparatus 100
For during without media state, if memory management circuitry 202 receives the access that host computer system 1000 is transmitted
Signal, memory management circuitry 202 can respond one without media signal to host computer system 1000 so that main
Machine system 1000 None-identified or access memory storage apparatus 100, say, that host computer system 1000
Operating system can judge memory storage apparatus 100 be in interrupt link state.Consequently, it is possible to he
People's dyschezia is to obtain the data in reproducible nonvolatile memorizer module 106, even if achieving wherein
Data, delete due to encryption and decryption key from buffer storage 252, and other people also cannot decode and can make carbon copies
Through the data of encryption in formula non-volatile memory module 106, thus reach in protection storage device
The effect of data.
In sum, the data guard method of exemplary embodiment of the present invention, memorizer control circuit unit and
Memory storage apparatus, sets up the escape way between memory storage apparatus and electronic installation, and utilizes
It is non-volatile with access duplicative that electronic installation obtains encryption and decryption key by the identification code that wireless network transmits
Property memory module.When not receiving the confirmation signal from electronic installation in certain time, memorizer
Storage device judges that it, the most not within the scope of the Small Area Wireless Communication Networks of electronic installation, and is deleted
Except the encryption and decryption key in buffer storage.Consequently, it is possible to memory storage apparatus is once away from user's
Hand-hold electronic device or just cannot not operate in specific wireless network environment.Even if memorizer storage dress
Putting and held by other people, also because encryption and decryption key is the most deleted, and it is non-volatile to decode duplicative
Through the data of encryption in memory module, so that it is guaranteed that the safety of data in memory storage apparatus.
Last it is noted that various embodiments above is only in order to illustrate technical scheme, rather than right
It limits;Although the present invention being described in detail with reference to foregoing embodiments, this area common
Skilled artisans appreciate that the technical scheme described in foregoing embodiments still can be modified by it,
Or the most some or all of technical characteristic is carried out equivalent;And these amendments or replacement, and
The essence not making appropriate technical solution departs from the scope of various embodiments of the present invention technical scheme.
Claims (22)
1. a data guard method, it is characterised in that be used for protecting in memory storage apparatus and can make carbon copies
The data of formula non-volatile memory module, this data guard method includes:
Escape way is set up by cordless communication network and electronic installation;
Identification code is obtained by building on this escape way on this cordless communication network;
Use this identification code to obtain encryption and decryption key and this encryption and decryption key is stored in buffer storage
In;
Use the number that the decoding of this encryption and decryption key is read from this reproducible nonvolatile memorizer module
According to, wherein the data of this reproducible nonvolatile memorizer module are come encrypted with this encryption and decryption key;
Detect whether to receive from this escape way built on this cordless communication network to come from this electronics
The confirmation signal of device;And
If not receiving this confirmation signal coming from this electronic installation in the given time, remove storage
This encryption and decryption key in this buffer storage.
Data guard method the most according to claim 1, it is characterised in that also include:
After removing this encryption and decryption key being stored in this buffer storage, by this memorizer storage dress
Install and be set to without media state.
Data guard method the most according to claim 1, it is characterised in that by building on this nothing
This escape way on line communication network obtains the step of this identification code and includes:
Obtain from being somebody's turn to do that this electronic installation inputs by building on this escape way on this cordless communication network
Identification code, wherein this electronic installation is hand-hold electronic device.
Data guard method the most according to claim 1, it is characterised in that by building on this nothing
This escape way on line communication network obtains the step of this identification code and includes:
This knowledge that this electronic installation produces is obtained by building on this escape way on this cordless communication network
Other code, wherein this electronic installation is server and is electrically connected to wireless network access point.
Data guard method the most according to claim 1, it is characterised in that this cordless communication network
For blueteeth network, Wireless Fidelity network, near field communication network or radio frequency identification network.
Data guard method the most according to claim 1, it is characterised in that use this identification code
Obtain this encryption and decryption key and the step that this encryption and decryption key is stored in this buffer storage included:
PIN informative abstract and key is stored in this reproducible nonvolatile memorizer module;
One-Way Hash Function is used to produce should the informative abstract of identification code;And
Judge whether this informative abstract is consistent with this PIN informative abstract, wherein when this informative abstract
And this PIN informative abstract is when being consistent, encryption and decryption function is used to decode this key according to this identification code
To obtain this encryption and decryption key.
Data guard method the most according to claim 6, it is characterised in that also include:
Initially pass through this One-Way Hash Function to produce this PIN information according to PIN and pluck
Want;And
Initially this encryption and decryption key of this encryption and decryption function encrypting is used to be somebody's turn to do to produce according to this PIN
Key.
Data guard method the most according to claim 7, it is characterised in that initially according to this
People's identification code uses this encryption and decryption key of this encryption and decryption function encrypting also to include with the step producing this key:
Produce this encryption and decryption key the most in a random basis.
Data guard method the most according to claim 1, it is characterised in that use this encryption and decryption gold
The step of the data that key decoding is read from this reproducible nonvolatile memorizer module includes:
Encryption and decryption function is used to decode from this type nonvolatile mould according to this encryption and decryption key
The data read in block, wherein the data of this reproducible nonvolatile memorizer module are according to this encryption and decryption
Key uses this encryption and decryption function encrypted.
10. a memorizer control circuit unit, it is characterised in that be used for controlling duplicative non-volatile
Property memory module, this memorizer control circuit unit includes:
HPI, is electrically connected to host computer system;
Memory interface, is electrically connected to this reproducible nonvolatile memorizer module;And
Memory management circuitry, is electrically connected to this HPI and this memory interface;
Wherein this memorizer control circuit unit is filled with electronics with cordless communication network by wireless communication interface
Set up vertical escape way,
Wherein this wireless communication interface obtains knowledge by building on this escape way on this cordless communication network
Other code,
Wherein this memory management circuitry uses this identification code to obtain encryption and decryption key and by this encryption and decryption
Key is stored in buffer storage,
Wherein this memory management circuitry uses the decoding of this encryption and decryption key to deposit from this duplicative is non-volatile
The data read in memory modules, wherein the data of this reproducible nonvolatile memorizer module add with this
Key comes encrypted,
Wherein this wireless communication interface detects whether from this escape way built on this cordless communication network
Receive the confirmation signal coming from this electronic installation,
Wherein, if this wireless communication interface does not receives in the given time comes from this electronic installation
This confirmation signal, this memory management circuitry removes this encryption and decryption key being stored in this buffer storage.
11. memorizer control circuit unit according to claim 10, it is characterised in that deposit at this
After reservoir management circuit removes this encryption and decryption key being stored in this buffer storage, when this memorizer
When management circuit receives the access signal of this host computer system, this memory management circuitry transmits to be believed without media
Number to this host computer system.
12. memorizer control circuit unit according to claim 10, it is characterised in that this is wireless
Communication network is blueteeth network, Wireless Fidelity network, near field communication network or radio frequency identification
Network.
13. memorizer control circuit unit according to claim 10, it is characterised in that this storage
Device management circuit store in this reproducible nonvolatile memorizer module PIN informative abstract and
Key,
Wherein this memory management circuitry uses One-Way Hash Function to produce should the information of identification code pluck
Want,
Wherein this memory management circuitry judges this informative abstract and this PIN informative abstract whether phase
Symbol, wherein when this informative abstract and this PIN informative abstract are consistent, this memory management circuitry
Encryption and decryption function is used to decode this key to obtain this encryption and decryption key according to this identification code.
14. 1 kinds of memory storage apparatus, it is characterised in that including:
Connect interface unit, be electrically connected to host computer system;
Reproducible nonvolatile memorizer module;
Memorizer control circuit unit, is electrically connected to this connection interface unit and this duplicative is non-volatile
Property memory module;And
Wireless communication interface, is electrically connected to this memorizer control circuit unit,
Wherein this memorizer control circuit unit by this wireless communication interface with cordless communication network and electronics
Device sets up escape way,
Wherein this memorizer control circuit unit is by building on this escape way on this cordless communication network
Obtain identification code,
Wherein this memorizer control circuit unit uses this identification code to obtain encryption and decryption key and this to be added
Key is stored in buffer storage,
Wherein this memorizer control circuit unit uses the decoding of this encryption and decryption key non-volatile from this duplicative
Property memory module in read data, wherein the data of this reproducible nonvolatile memorizer module with
This encryption and decryption key is come encrypted,
Wherein this memorizer control circuit unit detects whether from this peace built on this cordless communication network
Full tunnel receives the confirmation signal coming from this electronic installation,
Wherein, if this memorizer control circuit unit does not receives in the given time comes from this electronics
This confirmation signal of device, what the removing of this memorizer control circuit unit was stored in this buffer storage should
Encryption and decryption key.
15. memory storage apparatus according to claim 14, it is characterised in that this memorizer control
After circuit unit processed removes this encryption and decryption key being stored in this buffer storage, when this memorizer control
When circuit unit processed receives the access signal of this host computer system, this memorizer control circuit unit transmits nothing
Media signal is to this host computer system.
16. memory storage apparatus according to claim 14, it is characterised in that this memorizer control
Circuit unit processed obtains defeated from this electronic installation by building on this escape way on this cordless communication network
This identification code entered, wherein this electronic installation is hand-hold electronic device.
17. memory storage apparatus according to claim 14, it is characterised in that this memorizer control
Circuit unit processed obtains the generation of this electronic installation by building on this escape way on this cordless communication network
This identification code, wherein this electronic installation is server and is electrically connected to wireless network access point.
18. memory storage apparatus according to claim 14, it is characterised in that this radio communication
Network is blueteeth network, Wireless Fidelity network, near field communication network or radio frequency identification network.
19. memory storage apparatus according to claim 14, it is characterised in that this memorizer control
Circuit unit processed store in this reproducible nonvolatile memorizer module PIN informative abstract and
Key,
Wherein this memorizer control circuit unit uses One-Way Hash Function to produce should the information of identification code
Summary,
Wherein this this informative abstract of memorizer control circuit unit judges with this PIN informative abstract is
No being consistent, wherein when this informative abstract and this PIN informative abstract are consistent, this memorizer controls
Circuit unit uses encryption and decryption function to decode this key to obtain this encryption and decryption key according to this identification code.
20. memory storage apparatus according to claim 19, it is characterised in that this memorizer control
Circuit unit processed initially passes through this One-Way Hash Function and produces this PIN letter according to PIN
Breath summary,
Wherein this memorizer control circuit unit initially uses this encryption and decryption function according to this PIN
Encrypt this encryption and decryption key to produce this key.
21. memory storage apparatus according to claim 20, it is characterised in that this memorizer control
Circuit unit processed produces this encryption and decryption key the most in a random basis.
22. memory storage apparatus according to claim 14, it is characterised in that this memorizer control
Circuit unit processed uses the decoding of encryption and decryption function to deposit from this duplicative is non-volatile according to this encryption and decryption key
The data read in memory modules, wherein the data of this reproducible nonvolatile memorizer module are according to being somebody's turn to do
Encryption and decryption key uses this encryption and decryption function encrypted.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510024806.9A CN105868643A (en) | 2015-01-19 | 2015-01-19 | Data protection method, memory control circuit unit, and memory storage device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510024806.9A CN105868643A (en) | 2015-01-19 | 2015-01-19 | Data protection method, memory control circuit unit, and memory storage device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105868643A true CN105868643A (en) | 2016-08-17 |
Family
ID=56622712
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510024806.9A Pending CN105868643A (en) | 2015-01-19 | 2015-01-19 | Data protection method, memory control circuit unit, and memory storage device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105868643A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112468300A (en) * | 2019-09-09 | 2021-03-09 | 新唐科技股份有限公司 | Key management device with bypass channel and processor chip |
| TWI775061B (en) * | 2020-03-30 | 2022-08-21 | 尚承科技股份有限公司 | Protection system and method for soft/firmware or data |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020108058A1 (en) * | 2001-02-08 | 2002-08-08 | Sony Corporation And Sony Electronics Inc. | Anti-theft system for computers and other electronic devices |
| US20040039925A1 (en) * | 2002-01-18 | 2004-02-26 | Mcmillan Craig | Key management |
| US20090298478A1 (en) * | 2008-05-29 | 2009-12-03 | Research In Motion Limited | Method and system for establishing a service relationship between a mobile communication device and a mobile data server for connecting to a wireless network |
| US20100058073A1 (en) * | 2008-08-29 | 2010-03-04 | Phison Electronics Corp. | Storage system, controller, and data protection method thereof |
| US20110296495A1 (en) * | 2010-05-25 | 2011-12-01 | Bernard Smeets | Redundant Credentialed Access to a Secured Network |
| US20130031600A1 (en) * | 2011-07-27 | 2013-01-31 | Michael Luna | Automatic generation and distribution of policy information regarding malicious mobile traffic in a wireless network |
| CN104239820A (en) * | 2013-06-13 | 2014-12-24 | 普天信息技术研究院有限公司 | Secure storage device |
-
2015
- 2015-01-19 CN CN201510024806.9A patent/CN105868643A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020108058A1 (en) * | 2001-02-08 | 2002-08-08 | Sony Corporation And Sony Electronics Inc. | Anti-theft system for computers and other electronic devices |
| US20040039925A1 (en) * | 2002-01-18 | 2004-02-26 | Mcmillan Craig | Key management |
| US20090298478A1 (en) * | 2008-05-29 | 2009-12-03 | Research In Motion Limited | Method and system for establishing a service relationship between a mobile communication device and a mobile data server for connecting to a wireless network |
| US20100058073A1 (en) * | 2008-08-29 | 2010-03-04 | Phison Electronics Corp. | Storage system, controller, and data protection method thereof |
| US20110296495A1 (en) * | 2010-05-25 | 2011-12-01 | Bernard Smeets | Redundant Credentialed Access to a Secured Network |
| US20130031600A1 (en) * | 2011-07-27 | 2013-01-31 | Michael Luna | Automatic generation and distribution of policy information regarding malicious mobile traffic in a wireless network |
| CN104239820A (en) * | 2013-06-13 | 2014-12-24 | 普天信息技术研究院有限公司 | Secure storage device |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112468300A (en) * | 2019-09-09 | 2021-03-09 | 新唐科技股份有限公司 | Key management device with bypass channel and processor chip |
| CN112468300B (en) * | 2019-09-09 | 2023-07-04 | 新唐科技股份有限公司 | Key management device with bypass channel and processor chip |
| TWI775061B (en) * | 2020-03-30 | 2022-08-21 | 尚承科技股份有限公司 | Protection system and method for soft/firmware or data |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI536199B (en) | Data protection method, memory control circuit unit and memory storage device | |
| TWI596486B (en) | Memory storage apparatus, memory controller, and method for transmitting and identifying data stream | |
| US20100058073A1 (en) | Storage system, controller, and data protection method thereof | |
| KR101960036B1 (en) | Method and apparatus for non volatile storage device | |
| US8996933B2 (en) | Memory management method, controller, and storage system | |
| US11088856B2 (en) | Memory storage system, host system authentication method and memory storage device | |
| TWI443517B (en) | Memory stroage apparatus, memory controller and password verification method | |
| TW201324231A (en) | Storage device protections system and methods for lock and unlock storage device thereof | |
| CN102207912A (en) | Flash memory equipment for realizing partition function on equipment side and access method of flash memory equipment | |
| US8328104B2 (en) | Storage device management systems and methods | |
| CN103903042A (en) | Data flow encryption SD card | |
| EP2429226B1 (en) | Mobile terminal and method for protecting its system data | |
| CN103257938A (en) | Data protection method, memory controller and memory storage device | |
| CN101320355B (en) | Memory device, storing card access apparatus and its read-write method | |
| CN101673248B (en) | Storage system, controller and data protection method | |
| CN102971984A (en) | Method for authenticating a storage device, machine-readable storage medium, and host device | |
| CN105868643A (en) | Data protection method, memory control circuit unit, and memory storage device | |
| CN103176917A (en) | Storage device protective system and method of locking and unlocking storage device | |
| CN102982265A (en) | Authentication method for storing basic input and output system (BIOS) setting | |
| US7840745B2 (en) | Data accessing system, controller and storage device having the same, and operation method thereof | |
| CN103034594A (en) | Memory storage device and memory controller and password authentication method thereof | |
| CN110069934B (en) | Memory storage system, host system verification method and memory storage device | |
| CN103778073B (en) | Data guard method, device for mobile communication and memorizer memory devices | |
| CN106033321B (en) | Respond read method and data transmission system | |
| CN109063518B (en) | Data access method and system and memory storage device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160817 |
|
| WD01 | Invention patent application deemed withdrawn after publication |