CN112468968A - Management method and system of portable equipment - Google Patents

Management method and system of portable equipment Download PDF

Info

Publication number
CN112468968A
CN112468968A CN202110145475.XA CN202110145475A CN112468968A CN 112468968 A CN112468968 A CN 112468968A CN 202110145475 A CN202110145475 A CN 202110145475A CN 112468968 A CN112468968 A CN 112468968A
Authority
CN
China
Prior art keywords
server
client
destruction
portable equipment
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110145475.XA
Other languages
Chinese (zh)
Inventor
赵文登
陶子元
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Telecom Easiness Information Technology Co Ltd
Original Assignee
Beijing Telecom Easiness Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Telecom Easiness Information Technology Co Ltd filed Critical Beijing Telecom Easiness Information Technology Co Ltd
Priority to CN202110145475.XA priority Critical patent/CN112468968A/en
Publication of CN112468968A publication Critical patent/CN112468968A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information
    • H04W4/025Services making use of location information using location based information parameters
    • GPHYSICS
    • G01MEASURING; TESTING
    • G01SRADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
    • G01S19/00Satellite radio beacon positioning systems; Determining position, velocity or attitude using signals transmitted by such systems
    • G01S19/01Satellite radio beacon positioning systems transmitting time-stamped messages, e.g. GPS [Global Positioning System], GLONASS [Global Orbiting Navigation Satellite System] or GALILEO
    • G01S19/13Receivers
    • G01S19/21Interference related issues ; Issues related to cross-correlation, spoofing or other methods of denial of service
    • GPHYSICS
    • G01MEASURING; TESTING
    • G01SRADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
    • G01S19/00Satellite radio beacon positioning systems; Determining position, velocity or attitude using signals transmitted by such systems
    • G01S19/01Satellite radio beacon positioning systems transmitting time-stamped messages, e.g. GPS [Global Positioning System], GLONASS [Global Orbiting Navigation Satellite System] or GALILEO
    • G01S19/13Receivers
    • G01S19/24Acquisition or tracking or demodulation of signals transmitted by the system
    • G01S19/30Acquisition or tracking or demodulation of signals transmitted by the system code related
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information
    • H04W4/029Location-based management or tracking services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements
    • H04W4/14Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Radar, Positioning & Navigation (AREA)
  • Remote Sensing (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a management method and a system of portable equipment, wherein the method comprises the following steps: the server reads the unique identification code and the equipment hardware information in the control chip of the portable equipment client and completes registration, the server communicates with the client in real time to issue a management requirement, and a safety distance judgment threshold value is set according to the management requirement; the portable equipment is used within a safety distance judgment threshold value, and the Beidou positioning adopts a combined working mode of RNSS + RDSS; and after the server and the client successfully communicate in real time, the server and the client enter a destruction waiting state of the portable equipment, and whether the portable equipment is destroyed is judged according to the safety distance judgment threshold. According to the invention, the Beidou system is used as a positioning and communication module, so that the domestic substitution of core components is realized, and the product supply safety and information safety are ensured to the maximum extent; the fault-tolerant capability, the anti-interference capability and the reliability are high; the redundant design of position sharing and simultaneous judgment of the server and the client is adopted, and data safety is guaranteed to the maximum extent.

Description

Management method and system of portable equipment
Technical Field
The invention relates to the technical field of data protection, in particular to a management method and a management system of portable equipment.
Background
In the technical field of security and confidentiality, software and hardware protection means with high security and high reliability are generally applied to large-scale equipment in confidential places, such as servers, desktops, printers and other office equipment, and due to the limitation of physical characteristics such as volume, weight and the like, the risk of being moved, stolen or hidden is low, so that the effective control on information security can be basically realized on the premise of keeping data secret. However, for miniaturized devices such as mobile phones, tablet computers and notebook computers, due to the characteristics of small volume and light weight, forgetting and losing are easy to occur in office adjustment or device transportation processes, and even the risk of key data leakage caused by malicious stealing exists, so that security control of the miniaturized devices becomes a popular issue in the field of information security research in recent years.
At present, a Global Positioning System (Global Positioning System) widely used in the world has the advantages of Global all-weather Positioning, high Positioning precision, short observation time, high commercialization degree and the like, but the Global Positioning System is not made in China, and the risk of the Global Positioning System is self-evident.
Disclosure of Invention
In view of the above, the invention provides a Beidou-based portable equipment management System, wherein a Beidou Navigation System (English name: BeiDou Navigation Satellite System) is a global Satellite Navigation System developed by China, and is also a third mature Satellite Navigation System following GPS and GLONASS, the Beidou Navigation System is a national important space infrastructure for providing all-weather, all-day-long and high-precision positioning, Navigation and time service for global users, and at present, 30 Beidou third System satellites are finished in networking, and can provide various basic services such as all-day-long positioning, Navigation, time service, short messages and the like.
The invention relates to a management method and a system of portable equipment, wherein the system consists of a server and a client, different software and hardware environments are respectively deployed, functions of accurate positioning of the portable equipment, active destruction of remote data, automatic destruction judgment according to a safety distance judgment threshold value and the like can be realized, and destroyed files can be recorded through a digital tag technology for an administrator to inquire or backup; the data leakage of the portable equipment can be effectively prevented.
The invention provides a management method of portable equipment, which comprises the following steps:
s1, the server reads the unique identification code and the hardware information of the device in the control chip of the portable device client, completes the registration of the client, and communicates with the client in real time to issue a management requirement, so as to realize the setting of a safety distance judgment threshold value according to the management requirement;
s2, using the portable equipment within the safety distance judgment threshold value, and carrying out Beidou positioning by adopting an RNSS + RDSS combined working mode;
s3, after the server and the client successfully communicate in real time, the server enters a destruction waiting state of the portable equipment, and a threshold is judged according to the safety distance to judge whether to destroy the portable equipment;
and when the calculated distance between the server and the client exceeds a threshold value, starting destruction operation, and recording the event by the server. If the distance between the two parties is within the threshold range, the administrator starts a remote active destruction function according to the out-of-control state of the portable equipment, the server side records the event, and the client side starts destruction operation. Before destruction, the client reports the electronic file information to the server, after destruction is completed, the client reports the server destruction result through the Beidou communication unit, and if destruction is not completed all the time and exceeds a time threshold, the client reports an overtime judgment result and a destruction progress to the server.
Furthermore, the RNSS + RDSS combined working mode enables the ground operation control system to have information processing and operation control capabilities at the same time, has user signal random access capability, can process short burst information, and completes information exchange from a user to a central control system. And the signals of the two can be used for navigation and communication information at the same time, and the terminal user has the RNSS and RDSS functions at the same time, and realizes continuous positioning, speed measurement, communication and position report at the same user terminal, comprising the following steps:
2a, starting an RNSS to capture a satellite, calculating the position information of the portable equipment through the acquired satellite signal, and then sending the position information to an RDSS;
and the RNSS is used for system positioning, the hot start time of the first positioning is not more than 15s, the warm start is not more than 120s, and the refresh period is 1 s. The RDSS is used for communication and positioning, the first capture time is not more than 2s, and the lock losing recapture time is not more than 1 s. Taking client positioning as an example, after the Beidou system is started, the RNSS is started immediately to capture a satellite, and position information is resolved through the acquired satellite signal and then sent to the RDSS;
2b, sending a short message by the RDSS to inform a server;
and sending a short message in the RDSS to inform a server-side system. If the RNSS does not receive the position information within a specified time, namely within one minute of starting to acquire the satellite, the method shifts to an active positioning mode adopted by the RDSS to acquire the satellite again, sends signals, receives the satellite positioning information, calculates the position information, and then sends the information again.
Further, in the step S3, the process of successful real-time communication between the server and the client further includes that the server issues an instruction to activate the beidou communication unit of the client.
Further, in the step S3, the step of determining whether to destroy according to the safe distance determination threshold includes:
3a, when the calculated distance between the server and any one of the clients exceeds a threshold value, starting destruction operation, and recording the event by the server;
and 3b, starting a remote active destruction function according to the out-of-control state of the portable equipment, recording the event by the server side, and starting destruction operation by the client side.
Further, in the step 3a, before the destruction operation is started when the calculated distance between the server and any one of the clients exceeds the threshold, the client reports the service electronic file information to the server.
Further, after the portable device is destroyed, the client reports the server destroying result.
Further, if the portable device has not been destroyed when reaching the time threshold, the client reports the timeout determination result and the destruction progress to the server.
The present invention also provides a system of the management method of the portable device as described above, including:
an identification module: the system comprises a server side, a client side control chip, a server side and a safety distance judgment threshold, wherein the server side is used for reading a unique identification code and equipment hardware information in the portable equipment client side control chip, completing the registration of the client side and communicating with the client side in real time to issue a management requirement so as to realize the setting of the safety distance judgment threshold according to the management requirement;
the server is deployed in a special secret-related management computer and provides a basic service function;
the client is integrated in the portable equipment, performs short message communication and position sharing with the server, and reports the electronic file information of the portable equipment, the destruction progress and the result to the server;
the server reads and stores the registration information and the unique identification code of the portable equipment, performs short message communication and position sharing with the client, enters a portable equipment destruction waiting state after success, and sends a destruction instruction and receives a destruction result when finding out that the portable equipment is out of control;
the client is integrated in the portable equipment in a hardware design stage, and the Beidou communication unit of the client responds to a destruction command message of the Beidou communication unit of the server through the control chip and destroys an encryption key, a cryptographic algorithm and storage data in the portable equipment. In the aspect of power supply needed after the Beidou communication unit responds messages in real time and has a destroying function, products with large-capacity lithium batteries such as mobile phones, tablet computers and notebook computers can directly acquire energy from the lithium batteries to complete information destruction, in the destroying process, in order to prevent incomplete data destruction caused by insufficient electric quantity, a destroying setting mark is written in an internal storage area of a control chip, and after the equipment obtains power supply, the equipment judges the marking position and continues to complete destruction. For small portable equipment such as a mobile hard disk, a special battery needs to be designed for the small portable equipment to complete basic functions such as message response, a destruction position and the like, and if the residual electric quantity cannot ensure that data is completely destroyed, the equipment can judge the destruction identification position after being powered on and continue to complete the rest operation. If the portable equipment cannot complete the response of the destruction instruction due to the exhaustion of the electric quantity, the portable equipment is intentionally or unintentionally powered on at the later stage and then is firstly reported to the server, and the server continues to issue the destruction instruction after receiving the power-on information of the portable equipment. In terms of software functions, the destroying operation is mainly divided into two modes: (1) actively destroying remote data, wherein a server administrator inquires the real-time position of the portable equipment and issues a destroying instruction when the equipment is out of control; (2) according to the safe distance judgment threshold value, automatic destruction is carried out, the distance threshold value is set when the portable equipment is registered through the server management computer, the threshold value is stored in the management computer and the portable equipment for redundancy judgment, when the portable equipment is in work, the two parties share position information through respective Beidou communication units, and when any party finds that the actual distance exceeds the threshold value, information destruction is carried out on the portable equipment. The method comprises the steps that the portable equipment sends a file identification code in a storage area to a server before destruction operation is completed, a result is fed back to a management system server after destruction is completed, and an administrator can check the identification code, registration information, the file identification code before destruction, a destruction state and position information of the portable equipment through list information of the server;
positioning the communication module: the Beidou positioning adopts a combined working mode of RNSS + RDSS and is used as a message communication interface between a server and a client;
a destroying module: and the server side is used for entering a destruction waiting state of the portable equipment after the server side and the client side are successfully communicated in real time, and judging whether to destroy the portable equipment according to the safety distance judgment threshold value.
Further, the identification module comprises upper computer software, the upper computer software provides account registration and deletion functions of the portable equipment, and functions of calling an encryption and decryption algorithm, inquiring the position of the portable equipment, sharing the positions of a server and a client in real time, calling a judgment algorithm according to a safety distance judgment threshold value, issuing a remote destruction command and receiving a destruction result; meanwhile, the upper computer software provides a digital label technology operation interface, when files are copied to the portable device through the interface, the digital labels can be uniformly embedded into the whole electronic files, and electronic file codes are recorded in the management computer, so that the files which are destroyed can be conveniently registered.
Further, the positioning communication module comprises a Beidou communication unit;
the Beidou communication unit of the server side is connected to the management computer through the USB interface so as to meet the communication and power supply requirements. Deploying server software in a management computer, wherein the software stores registration information and a unique identification code of the portable equipment, records electronic file information stored in the portable equipment through a digital tag technology, and provides human-computer interface service of customer control and remote destruction;
and the Beidou communication unit of the client responds to the destruction command message of the Beidou communication unit through the control chip and destroys the encryption key, the cryptographic algorithm and the storage data in the portable equipment. In the aspect of power supply needed after the Beidou communication unit responds messages in real time and has a destroying function, products with large-capacity lithium batteries such as mobile phones, tablet computers and notebook computers can directly acquire energy from the lithium batteries to complete information destruction, in the destroying process, in order to prevent incomplete data destruction caused by insufficient electric quantity, a destroying setting mark is written in an internal storage area of a control chip, and after the equipment obtains power supply, the equipment judges the marking position and continues to complete destruction. For small portable equipment such as a mobile hard disk, a special battery needs to be designed for the small portable equipment to complete basic functions such as message response, a destruction position and the like, and if the residual electric quantity cannot ensure that data is completely destroyed, the equipment can judge the destruction identification position after being powered on and continue to complete the rest operation. If the portable equipment cannot complete the response of the destruction instruction due to the exhaustion of the electric quantity, the portable equipment is intentionally or unintentionally powered on at the later stage and then is firstly reported to the server, and the server continues to issue the destruction instruction after receiving the power-on information of the portable equipment. In terms of software functions, the destroying operation is mainly divided into two modes: (1) actively destroying remote data, wherein a server administrator inquires the real-time position of the portable equipment and issues a destroying instruction when the equipment is out of control; (2) according to the safe distance judgment threshold value, automatic destruction is carried out, the distance threshold value is set when the portable equipment is registered through the server management computer, the threshold value is stored in the management computer and the portable equipment for redundancy judgment, when the portable equipment is in work, the two parties share position information through respective Beidou communication units, and when any party finds that the actual distance exceeds the threshold value, information destruction is carried out on the portable equipment. The method comprises the steps that the portable equipment sends a file identification code in a storage area to a server before destruction operation is completed, a result is fed back to a management system server after destruction is completed, and an administrator can check the identification code, registration information, the file identification code before destruction, a destruction state and position information of the portable equipment through list information of the server;
further, the destroying module comprises a control chip, a destroying device and a storage area.
The control chip is used for analyzing message commands of the server and issuing commands, and meanwhile, monitoring the destruction condition of the storage area and reporting results to the server;
the destroying device is used for erasing the storage area by software, and can be converted into a physical destroying device if the energy of the portable equipment is sufficient.
Compared with the prior art, the invention has the beneficial effects that:
the invention realizes the safety control of the portable equipment by all-weather, all-day, high-precision positioning and information communication technologies, and the invention is an effective supplement in the field of information safety and realizes the omnibearing and dead-angle-free monitoring of portable products; the Beidou system which is successfully networked and is widely applied is used as a positioning and communication module, so that the domestic substitution of core components is realized, and the product supply safety and information safety are ensured to the maximum extent; by adopting an RNSS + RDSS integrated mode, the ground operation control system has the information processing and operation control capabilities at the same time, has the user signal random access capability, can process short burst information and complete information exchange from a client to a server, and has stronger fault-tolerant capability, stronger anti-interference capability and reliability; the system provides two destruction modes of remote data active destruction and threshold automatic destruction according to safety distance judgment, and in the threshold destruction mode according to safety distance judgment, a redundant design of position sharing and simultaneous judgment of a server side and a client side is adopted, so that data safety is guaranteed to the maximum extent.
Drawings
Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiments. The drawings are only for purposes of illustrating the preferred embodiments and are not to be construed as limiting the invention.
In the drawings:
fig. 1 is a flowchart of a management method of a portable device of the present invention;
FIG. 2 is a system configuration diagram of an embodiment of the present invention;
FIG. 3 is an RNSS workflow diagram of an embodiment of the invention;
FIG. 4 is a RDSS workflow diagram of an embodiment of the invention;
fig. 5 is a flow chart of a destruction process of an embodiment of the invention;
FIG. 6 is a process diagram of the RNSS + RDSS joint mode of operation of an embodiment of the present invention;
fig. 7 is a process diagram after the portable device destroys the wait state according to the embodiment of the present invention.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The implementations described in the exemplary embodiments below are not intended to represent all implementations consistent with the present disclosure. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the present disclosure, as detailed in the appended claims.
The terminology used in the present disclosure is for the purpose of describing particular embodiments only and is not intended to be limiting of the disclosure. As used in this disclosure and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any and all possible combinations of one or more of the associated listed items.
It is to be understood that although the terms first, second, third, etc. may be used herein to describe various information, such information should not be limited to these terms. These terms are only used to distinguish one type of information from another. For example, first information may also be referred to as second information, and similarly, second information may also be referred to as first information, without departing from the scope of the present disclosure. The word "if" as used herein may be interpreted as "at … …" or "when … …" or "in response to a determination", depending on the context.
The invention provides a management method and a management system of portable equipment in order to reduce the risk of data leakage caused by forgetting and losing the portable equipment.
The invention provides a management method of portable equipment, which is shown in figure 1 and comprises the following steps:
s1, the server reads the unique identification code and the hardware information of the device in the control chip of the portable device client, completes the registration of the client, and communicates with the client in real time to issue a management requirement, so as to realize the setting of a safety distance judgment threshold value according to the management requirement;
s2, using the portable equipment within the safety distance judgment threshold value, and carrying out Beidou positioning by adopting an RNSS + RDSS combined working mode;
s3, after the server and the client successfully communicate in real time, the server enters a destruction waiting state of the portable equipment, and a threshold is judged according to the safety distance to judge whether to destroy the portable equipment;
and when the calculated distance between the server and the client exceeds a threshold value, starting destruction operation, and recording the event by the server. If the distance between the two parties is within the threshold range, the administrator starts a remote active destruction function according to the out-of-control state of the portable equipment, the server side records the event, and the client side starts destruction operation. Before destruction, the client reports the electronic file information to the server, after destruction is completed, the client reports the server destruction result through the Beidou communication unit, and if destruction is not completed all the time and exceeds a time threshold, the client reports an overtime judgment result and a destruction progress to the server.
The RNSS + RDSS combined working mode enables a ground operation control system to have information processing and operation control capabilities at the same time, has user signal random access capability, can process short burst information, and completes information exchange from a user to a central control system. And the signals of the two can be used for navigation and communication information at the same time, and the terminal user has the RNSS and RDSS functions at the same time, and realizes continuous positioning, speed measurement, communication and position report at the same user terminal, as shown in fig. 6, including the following steps:
2a, starting an RNSS to capture a satellite, calculating the position information of the portable equipment through the acquired satellite signal, and then sending the position information to an RDSS;
and the RNSS is used for system positioning, the hot start time of the first positioning is not more than 15s, the warm start is not more than 120s, and the refresh period is 1 s. The RDSS is used for communication and positioning, the first capture time is not more than 2s, and the lock losing recapture time is not more than 1 s. Taking client positioning as an example, after the Beidou system is started, the RNSS is started immediately to capture a satellite, and position information is resolved through the acquired satellite signal and then sent to the RDSS;
2b, sending a short message by the RDSS to inform a server;
and sending a short message in the RDSS to inform a server-side system. If the RNSS does not receive the position information within a specified time, namely within one minute of starting to acquire the satellite, the method shifts to an active positioning mode adopted by the RDSS to acquire the satellite again, sends signals, receives the satellite positioning information, calculates the position information, and then sends the information again.
In the step S3, the process of successful real-time communication between the server and the client further includes the server issuing an instruction to activate the beidou communication unit of the client.
In the step S3, the step of determining whether to destroy the device according to the safety distance determination threshold, as shown in fig. 7, includes:
3a, when the calculated distance between the server and any one of the clients exceeds a threshold value, starting destruction operation, and recording the event by the server;
and 3b, starting a remote active destruction function according to the out-of-control state of the portable equipment, recording the event by the server side, and starting destruction operation by the client side.
In the step 3a, before the destruction operation is started when the calculated distance between the server and any one of the clients exceeds the threshold, the client reports the service electronic file information to the server.
And after the portable equipment is destroyed, the client reports the server side destruction result.
And if the portable equipment is not destroyed when the time threshold is reached, the client reports the overtime judgment result and the destruction progress to the server.
The present invention also provides a system of the management method of the portable device as described above, as shown in fig. 2, including:
an identification module: the system comprises a server side, a client side control chip, a server side and a safety distance judgment threshold, wherein the server side is used for reading a unique identification code and equipment hardware information in the portable equipment client side control chip, completing the registration of the client side and communicating with the client side in real time to issue a management requirement so as to realize the setting of the safety distance judgment threshold according to the management requirement;
the server is deployed in a special secret-related management computer and provides a basic service function;
the client is integrated in the portable equipment, performs short message communication and position sharing with the server, and reports the electronic file information of the portable equipment, the destruction progress and the result to the server;
the server reads and stores the registration information and the unique identification code of the portable equipment, performs short message communication and position sharing with the client, enters a portable equipment destruction waiting state after success, and sends a destruction instruction and receives a destruction result when finding out that the portable equipment is out of control;
the client is integrated in the portable equipment in a hardware design stage, and the Beidou communication unit of the client responds to a destruction command message of the Beidou communication unit of the server through the control chip and destroys an encryption key, a cryptographic algorithm and storage data in the portable equipment. In the aspect of power supply needed after the Beidou communication unit responds messages in real time and has a destroying function, products with large-capacity lithium batteries such as mobile phones, tablet computers and notebook computers can directly acquire energy from the lithium batteries to complete information destruction, in the destroying process, in order to prevent incomplete data destruction caused by insufficient electric quantity, a destroying setting mark is written in an internal storage area of a control chip, and after the equipment obtains power supply, the equipment judges the marking position and continues to complete destruction. For small portable equipment such as a mobile hard disk, a special battery needs to be designed for the small portable equipment to complete basic functions such as message response, a destruction position and the like, and if the residual electric quantity cannot ensure that data is completely destroyed, the equipment can judge the destruction identification position after being powered on and continue to complete the rest operation. If the portable equipment cannot complete the response of the destruction instruction due to the exhaustion of the electric quantity, the portable equipment is intentionally or unintentionally powered on at the later stage and then is firstly reported to the server, and the server continues to issue the destruction instruction after receiving the power-on information of the portable equipment. In terms of software functions, the destroying operation is mainly divided into two modes: (1) actively destroying remote data, wherein a server administrator inquires the real-time position of the portable equipment and issues a destroying instruction when the equipment is out of control; (2) according to the safe distance judgment threshold value, automatic destruction is carried out, the distance threshold value is set when the portable equipment is registered through the server management computer, the threshold value is stored in the management computer and the portable equipment for redundancy judgment, when the portable equipment is in work, the two parties share position information through respective Beidou communication units, and when any party finds that the actual distance exceeds the threshold value, information destruction is carried out on the portable equipment. The method comprises the steps that the portable equipment sends a file identification code in a storage area to a server before destruction operation is completed, a result is fed back to a management system server after destruction is completed, and an administrator can check the identification code, registration information, the file identification code before destruction, a destruction state and position information of the portable equipment through list information of the server;
positioning the communication module: the Beidou positioning adopts a combined working mode of RNSS + RDSS and is used as a message communication interface between a server and a client;
a destroying module: and the server side is used for entering a destruction waiting state of the portable equipment after the server side and the client side are successfully communicated in real time, and judging whether to destroy the portable equipment according to the safety distance judgment threshold value.
The identification module comprises upper computer software, the upper computer software provides account registration and deletion functions of the portable equipment, the functions of calling an encryption and decryption algorithm, inquiring the position of the portable equipment, sharing the positions of a server and a client in real time, calling a judgment algorithm according to a safety distance judgment threshold value, issuing a remote destroying command and receiving a destroying result; meanwhile, the upper computer software provides a digital label technology operation interface, when files are copied to the portable device through the interface, the digital labels can be uniformly embedded into the whole electronic files, and electronic file codes are recorded in the management computer, so that the files which are destroyed can be conveniently registered.
The positioning communication module comprises a Beidou communication unit;
the Beidou communication unit of the server side is connected to the management computer through the USB interface so as to meet the communication and power supply requirements. Deploying server software in a management computer, wherein the software stores registration information and a unique identification code of the portable equipment, records electronic file information stored in the portable equipment through a digital tag technology, and provides human-computer interface service of customer control and remote destruction;
and the Beidou communication unit of the client responds to the destruction command message of the Beidou communication unit through the control chip and destroys the encryption key, the cryptographic algorithm and the storage data in the portable equipment. In the aspect of power supply needed after the Beidou communication unit responds messages in real time and has a destroying function, products with large-capacity lithium batteries such as mobile phones, tablet computers and notebook computers can directly acquire energy from the lithium batteries to complete information destruction, in the destroying process, in order to prevent incomplete data destruction caused by insufficient electric quantity, a destroying setting mark is written in an internal storage area of a control chip, and after the equipment obtains power supply, the equipment judges the marking position and continues to complete destruction. For small portable equipment such as a mobile hard disk, a special battery needs to be designed for the small portable equipment to complete basic functions such as message response, a destruction position and the like, and if the residual electric quantity cannot ensure that data is completely destroyed, the equipment can judge the destruction identification position after being powered on and continue to complete the rest operation. If the portable equipment cannot complete the response of the destruction instruction due to the exhaustion of the electric quantity, the portable equipment is intentionally or unintentionally powered on at the later stage and then is firstly reported to the server, and the server continues to issue the destruction instruction after receiving the power-on information of the portable equipment. In terms of software functions, the destroying operation is mainly divided into two modes: (1) actively destroying remote data, wherein a server administrator inquires the real-time position of the portable equipment and issues a destroying instruction when the equipment is out of control; (2) according to the safe distance judgment threshold value, automatic destruction is carried out, the distance threshold value is set when the portable equipment is registered through the server management computer, the threshold value is stored in the management computer and the portable equipment for redundancy judgment, when the portable equipment is in work, the two parties share position information through respective Beidou communication units, and when any party finds that the actual distance exceeds the threshold value, information destruction is carried out on the portable equipment. The method comprises the steps that the portable equipment sends a file identification code in a storage area to a server before destruction operation is completed, a result is fed back to a management system server after destruction is completed, and an administrator can check the identification code, registration information, the file identification code before destruction, a destruction state and position information of the portable equipment through list information of the server;
the destroying module comprises a control chip, a destroying device and a storage area.
The control chip is used for analyzing message commands of the server and issuing commands, and meanwhile, monitoring the destruction condition of the storage area and reporting results to the server;
the destroying device is used for erasing the storage area by software, and can be converted into a physical destroying device if the energy of the portable equipment is sufficient.
In the embodiment of the invention, before using the management system, an administrator needs to register the portable equipment, the portable equipment is connected to the management computer through the USB interface, the computer reads the unique identification code and the equipment information in the control chip of the portable equipment and completes the registration, the service end issues an instruction to activate the Beidou communication unit of the client, the service end and the client start to share the position information, and the administrator sets the safety distance judgment threshold according to the management requirement.
After the registration is completed, the equipment is used in a safe distance threshold range, Beidou positioning is performed by adopting an RNSS + RDSS combined working mode, the mode enables a ground operation control system to have information processing and operation control capabilities at the same time, has user signal random access capability, can process short burst information, completes information exchange from a user to a central control system, signals of the two can be used for navigation and communication information at the same time, a terminal user has RNSS and RDSS functions at the same time, and continuous positioning, speed measurement, communication and position reporting are realized at the same user terminal.
And the RNSS is used for system positioning, the hot start time of the first positioning is not more than 15s, the warm start is not more than 120s, and the refresh period is 1 s. The RDSS is used for communication and positioning, the first capture time is not more than 2s, and the lock losing recapture time is not more than 1 s. Taking client positioning as an example, after the Beidou system is started, the RNSS is started immediately to capture a satellite, position information is calculated through the acquired satellite signal and then sent to the RDSS, and a short message is sent in the RDSS to inform a server system. If the RNSS does not receive the location information within a specified time, that is, within one minute of starting to acquire the satellite, the RNSS switches to the active location method adopted by the RDSS to acquire the satellite again, sends a signal, receives the satellite location information, calculates the location information, and then sends the information, wherein the RNSS work flow is as shown in fig. 3, and the RDSS work flow is as shown in fig. 4.
After the position sharing and the short message communication establishment are successful, the system enters a destruction waiting state, the process is as shown in fig. 5, when the calculated distance between the server and the client exceeds the threshold, the destruction operation is started, and the server records the event. If the distance between the two parties is within the threshold range, the administrator starts a remote active destruction function according to the out-of-control state of the portable equipment, the server side records the event, and the client side starts destruction operation. Before destruction, the client reports the electronic file information to the server, after destruction is completed, the client reports the server destruction result through the Beidou communication unit, and if destruction is not completed all the time and exceeds a time threshold, the client reports an overtime judgment result and a destruction progress to the server.
So far, the technical solutions of the present invention have been described in connection with the preferred embodiments shown in the drawings, but it is easily understood by those skilled in the art that the scope of the present invention is obviously not limited to these specific embodiments. Equivalent changes or substitutions of related technical features can be made by those skilled in the art without departing from the principle of the invention, and the technical scheme after the changes or substitutions can fall into the protection scope of the invention.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention; various modifications and alterations to this invention will become apparent to those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (10)

1. A method for managing a portable device, comprising the steps of:
s1, the server reads the unique identification code and the hardware information of the device in the control chip of the portable device client, completes the registration of the client, and communicates with the client in real time to issue a management requirement, so as to realize the setting of a safety distance judgment threshold value according to the management requirement;
s2, using the portable equipment within the safety distance judgment threshold value, and carrying out Beidou positioning by adopting an RNSS + RDSS combined working mode;
and S3, after the server and the client successfully communicate in real time, entering a destruction waiting state of the portable equipment, and judging whether to destroy the portable equipment according to the safety distance by judging a threshold value.
2. The method of managing of claim 1, wherein the RNSS + RDSS joint mode of operation comprises the steps of:
2a, starting an RNSS to capture a satellite, calculating the position information of the portable equipment through the acquired satellite signal, and then sending the position information to an RDSS;
2b, sending short message by RDSS to inform service end.
3. The management method according to claim 1, wherein in the step S3, the process of the server side successfully communicating with the client side in real time further includes the server side issuing an instruction to activate a beidou communication unit of the client side.
4. The method for managing according to claim 1, wherein the step of determining a threshold value according to the safety distance to determine whether to destroy in the step of S3 includes:
3a, when the calculated distance between the server and any one of the clients exceeds a threshold value, starting destruction operation, and recording the event by the server;
and 3b, starting a remote active destruction function according to the out-of-control state of the portable equipment, recording the event by the server side, and starting destruction operation by the client side.
5. The management method according to claim 4, wherein in the step 3a, before both of the server and the client start destruction operation when the calculated distance exceeds the threshold, the client reports the service electronic file information to the server.
6. The management method according to claim 4, wherein after the portable device is destroyed, the client reports the server destruction result.
7. The management method according to claim 6, wherein if the portable device has not been destroyed when the time threshold is reached, the client reports the timeout determination result and the destruction progress to the server.
8. The system of the management method of the portable device according to any one of claims 1 to 7, characterized by comprising:
an identification module: the system comprises a server side, a client side control chip, a server side and a safety distance judgment threshold, wherein the server side is used for reading a unique identification code and equipment hardware information in the portable equipment client side control chip, completing the registration of the client side and communicating with the client side in real time to issue a management requirement so as to realize the setting of the safety distance judgment threshold according to the management requirement;
positioning the communication module: the Beidou positioning adopts a combined working mode of RNSS + RDSS and is used as a message communication interface between a server and a client;
a destroying module: and the server side is used for entering a destruction waiting state of the portable equipment after the server side and the client side are successfully communicated in real time, and judging whether to destroy the portable equipment according to the safety distance judgment threshold value.
9. The management system according to claim 8, wherein the identification module comprises upper computer software, the upper computer software provides functions of account registration and deletion of the portable device, calling of encryption and decryption algorithms, position inquiry of the portable device, real-time sharing of a server and a client, calling of a judgment algorithm according to a safety distance judgment threshold, issuing of a remote destruction command, and receiving of a destruction result;
the positioning communication module comprises a Beidou communication unit;
the destroying module comprises a control chip, a destroying device and a storage area.
10. The management system according to claim 9, wherein the control chip is configured to parse a message command of the server and issue an instruction, and monitor a destruction condition of the storage area and report a result to the server;
the destroying device is used for erasing the storage area by software.
CN202110145475.XA 2021-02-03 2021-02-03 Management method and system of portable equipment Pending CN112468968A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110145475.XA CN112468968A (en) 2021-02-03 2021-02-03 Management method and system of portable equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110145475.XA CN112468968A (en) 2021-02-03 2021-02-03 Management method and system of portable equipment

Publications (1)

Publication Number Publication Date
CN112468968A true CN112468968A (en) 2021-03-09

Family

ID=74802632

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110145475.XA Pending CN112468968A (en) 2021-02-03 2021-02-03 Management method and system of portable equipment

Country Status (1)

Country Link
CN (1) CN112468968A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115334505A (en) * 2022-06-21 2022-11-11 西安电子科技大学 Multimode intelligent terminal safety communication method and system facing 5G + Beidou

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060212664A1 (en) * 2003-11-20 2006-09-21 Canon Kabushiki Kaisha Data storage apparatus, data processing apparatus, information processing system, and data storage method
CN101047961A (en) * 2006-03-31 2007-10-03 联想(北京)有限公司 Radio network system and moving terminal
CN201207189Y (en) * 2008-04-21 2009-03-11 李先林 System for computer hard disk anti-theft monitoring and secret disclosure preventing
CN105554083A (en) * 2015-12-11 2016-05-04 中南大学 Self-destruction method of intelligent terminal
CN106933132A (en) * 2015-12-30 2017-07-07 娄文忠 A kind of system and its self-destruction method that intelligent self-destruction is realized based on wireless networking
CN109541652A (en) * 2018-11-12 2019-03-29 北京时代民芯科技有限公司 A kind of Beidou, GPS dual-mode vehicle-mounted terminal system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060212664A1 (en) * 2003-11-20 2006-09-21 Canon Kabushiki Kaisha Data storage apparatus, data processing apparatus, information processing system, and data storage method
CN101047961A (en) * 2006-03-31 2007-10-03 联想(北京)有限公司 Radio network system and moving terminal
CN201207189Y (en) * 2008-04-21 2009-03-11 李先林 System for computer hard disk anti-theft monitoring and secret disclosure preventing
CN105554083A (en) * 2015-12-11 2016-05-04 中南大学 Self-destruction method of intelligent terminal
CN106933132A (en) * 2015-12-30 2017-07-07 娄文忠 A kind of system and its self-destruction method that intelligent self-destruction is realized based on wireless networking
CN109541652A (en) * 2018-11-12 2019-03-29 北京时代民芯科技有限公司 A kind of Beidou, GPS dual-mode vehicle-mounted terminal system

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115334505A (en) * 2022-06-21 2022-11-11 西安电子科技大学 Multimode intelligent terminal safety communication method and system facing 5G + Beidou
CN115334505B (en) * 2022-06-21 2024-05-14 西安电子科技大学 5 G+Beidou-oriented multimode intelligent terminal secure communication method and system

Similar Documents

Publication Publication Date Title
US20190245853A1 (en) Secure storage device with on-board encryption control
US6362736B1 (en) Method and apparatus for automatic recovery of a stolen object
EP2503806B1 (en) Anti-theft mobile terminal and anti-theft method for mobile terminal
US9253308B2 (en) Portable computing device with data encryption and destruction
US7860793B2 (en) Smart secure storage
US20090183266A1 (en) Method and a system for recovering a lost or stolen electronic device
CN101667934B (en) Centralized supervision device and supervision method of USB interface equipment networking
CN104836894A (en) Triggering actions based on changes in a network connection
CN101630422A (en) Intelligent electronic access control system
CN103581441B (en) Mobile terminal follows the trail of burglary-resisting system and method
CN101650867A (en) Radioactive source alarming, positioning and tracking system device
CN202617350U (en) Mobile phone safety management and control system
EP2618264A1 (en) Method for clearing computer data and computer
CN104460479A (en) Seal monitoring device
CN101521662B (en) Confidential U-disk remote monitoring system and method thereof
CN112468968A (en) Management method and system of portable equipment
CN103582184A (en) Double-card smart phone high in safety performance
JP2003333656A (en) Mobile terminal device
CN108470130A (en) A kind of concerning security matters mobile memory system and its implementation with long-distance positioning function
CN103945325A (en) Mobile phone anti-theft and tracking system based on J2EE and Android platform
CN100478903C (en) Data backup system and method
CN112217811A (en) Safety monitoring and early warning system for intelligent data transmission of government and enterprise
KR101620934B1 (en) Management of the identities of users in a system
JP2003234828A (en) Information processing equipment and security system
WO2022125020A1 (en) A digital mobile identity

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20210309