CN100555938C - A kind of intelligent cipher key equipment and with the mutual method of host information - Google Patents
A kind of intelligent cipher key equipment and with the mutual method of host information Download PDFInfo
- Publication number
- CN100555938C CN100555938C CN 200610113057 CN200610113057A CN100555938C CN 100555938 C CN100555938 C CN 100555938C CN 200610113057 CN200610113057 CN 200610113057 CN 200610113057 A CN200610113057 A CN 200610113057A CN 100555938 C CN100555938 C CN 100555938C
- Authority
- CN
- China
- Prior art keywords
- cipher key
- key equipment
- intelligent cipher
- main frame
- ccid
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 10
- 230000003993 interaction Effects 0.000 claims abstract description 12
- 238000004891 communication Methods 0.000 claims description 9
- 230000004044 response Effects 0.000 claims description 4
- 238000009434 installation Methods 0.000 abstract description 3
- 238000013500 data storage Methods 0.000 description 5
- 230000005540 biological transmission Effects 0.000 description 4
- 230000006870 function Effects 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
Images
Abstract
The invention discloses a kind of intelligent cipher key equipment and with the mutual method of host information, belong to information security field.Carry out information interaction in order to solve main frame and intelligent cipher key equipment, the driver that needs to rely on intelligent cipher key equipment just can be finished, and the problem of inconvenient operation such as installation of driver, upgrading, unloading, the present invention proposes a kind of intelligent cipher key equipment of the CCID of meeting interface standard, and utilize this intelligent cipher key equipment to realize and the mutual method of host information.
Description
Technical field
The present invention relates to information security field, particularly a kind of intelligent cipher key equipment and with the mutual method of host information.
Background technology
Intelligent cipher key equipment is as terminal encryption and decryption and authenticating device, and it directly provides safeguard protection for system and hardware view, guarantees that key message such as key, certificate and Authorization Attributes etc. are safely stored in the hardware device.Along with smart card and USB broad application, intelligent cipher key equipment has spread in users' hand.
Several big international IT enterprises have been formulated CCID (USB Chip/Smart CardInterface Devices-USB chip intelligent card equipment) interface standard jointly at the problem of application of IC cards aspect.The CCID kind equipment is chip/intelligence card interface device, and this kind equipment meets the data of CCID interface standard by the USB interface transmitting-receiving, thereby makes equipment be connected communication with main frame or other embedded host.Microsoft provides on its WINDOWS2000 and above operating system and supports CCID to drive, and device fabrication manufacturer can be developed easily use the equipment that meets the CCID interface standard.Simultaneously, the CCID interface standard is supported PC (Personal Computer-personal computer)/SC (Smart Card-smart card) interface interchange, makes numerous developers develop operation to intelligent cipher key equipment easily.On numerous versions of other increase income operating system such as LINUX, also having many CCID that increase income to drive can use for developer and user.
Descriptor is the format piece of data result or information, and it can make main frame know this equipment, and each descriptor has comprised the information about the Global Information of this equipment or an element.According to the CCID consensus standard, the feature that meets its descriptor of equipment of CCID interface standard is: in interface descriptor, byte 0 is the byte length of descriptor, value is 09h, and byte 1 is a fixed terminal, is worth to be 04h, byte 4 is except terminal 0, and the terminal number of support is worth and is 02h or 03h, byte 5 is category codes, value is 0Bh, and byte 6 is the subclass code, is worth to be 00h, byte 7 is protocol code, is worth to be 00h; In the type specification symbol, byte 0 is the byte length of descriptor, is worth to be that 36h, byte 2 are version numbers of CCID standard, and it is the decimal of representing with binary code, is worth to be 0100h, and byte 52 is PIN code supports, is worth to be 00H-03h.Meet the byte in other descriptor of equipment of CCID interface standard, as other byte in the byte in device descriptor, the configuration descriptor and above-mentioned interface descriptor and the type specification symbol still according to the regulation setting in the usb protocol.
Generally speaking, the privately owned driver that information interaction must rely on intelligent cipher key equipment manufacturer and provide is provided for main frame and intelligent cipher key equipment can finish, and such intelligent cipher key equipment is exactly the intelligent cipher key equipment of often saying that the type of driving is arranged.But the privately owned driver that intelligent cipher key equipment production firm provides is all very inconvenient in operating aspects such as installation, upgrading, unloadings, but also easily operating system is caused damage.The information interaction that how to realize main frame and intelligent cipher key equipment simply and easily is the problem that IT worker and user are concerned about very much.
Summary of the invention
Carry out information interaction in order to solve main frame and intelligent cipher key equipment, the driver that needs to rely on intelligent cipher key equipment just can be finished, and the problem of inconvenient operation such as installation of driver, upgrading, unloading, the present invention proposes a kind of intelligent cipher key equipment of the CCID of meeting interface standard, described intelligent cipher key equipment comprises usb interface module and intelligent processing module, and described usb interface module comprises that descriptor is provided with the unit and end points is provided with the unit;
Described descriptor is provided with the unit and is used for being provided with and meets descriptor and the corresponding value thereof that the CCID standard stipulates;
Described end points is provided with the unit and is used at least one OUT end points and is set to the BULK-OUT end points, and at least one IN end points is set to the BULK-IN end points, and at least one IN end points is set to interrupt endpoint.
Described intelligent processing module is made up of master control module and data memory module;
Described master control module is used for the control program operation, carries out the corresponding program order;
Described data memory module is used to store relevant key information.
Described intelligent processing module is made up of master control module, program storage block and intelligent key data storage module;
Described master control module is used for the control program operation, carries out the corresponding program order;
Described program storage block is used to store corresponding program;
Described intelligent key data storage module is used to store relevant key information.
Described intelligent processing module is an intelligent card chip.
Described intelligent processing module and described usb interface module are integrated on the chip or are positioned on two chips.
The present invention also provides a kind of and has utilized described intelligent cipher key equipment to realize and the mutual method of host information, said method comprising the steps of:
Steps A: set up the physical connection of intelligent cipher key equipment and main frame, described intelligent cipher key equipment powers on;
Step B: described intelligent cipher key equipment statement oneself is the equipment that meets the CCID interface standard;
Step C: described main frame sends query State information to described intelligent cipher key equipment, and described intelligent cipher key equipment returns the response message that smart card has inserted to described main frame;
Step D: described main frame sends the smart card electrification reset order that meets the CCID standard to described intelligent cipher key equipment, and described intelligent cipher key equipment is packaged into the packet that meets the CCID standard with reset answer, and sends described packet to described main frame;
Step e: described main frame is set up communication with described intelligent cipher key equipment and is connected, and carries out information interaction according to application program in the described main frame and described intelligent cipher key equipment.
Described reset answer is stored in the described intelligent cipher key equipment or is solidificated in the interior firmware program of described intelligent cipher key equipment.
The intelligent cipher key equipment of the CCID of meeting interface standard provided by the invention has been realized combining of CCID interface standard and intelligent cipher key equipment, when utilizing this intelligent cipher key equipment and main frame to carry out information interaction, main frame no longer needs install driver, improved the applicability of intelligent cipher key equipment widely, simultaneously also help the developer and develop better, more easily intelligent cipher key equipment.
Description of drawings
Fig. 1 is the theory diagram of the embodiment of the invention 1 intelligent cipher key equipment;
Fig. 2 is the theory diagram of the embodiment of the invention 2 intelligent cipher key equipments;
Fig. 3 is that intelligent cipher key equipment and main frame carry out mutual flow chart.
Embodiment
The invention will be further described below in conjunction with the drawings and specific embodiments, but not as a limitation of the invention.
Embodiment 1
A kind of system of imitative smart card that adopted present embodiment realizes that intelligent cipher key equipment and main frame carry out information interaction, in fact just is to use microcontroller to simulate the function that realizes smart card, carries out information interaction by CCID agreement and main frame simultaneously.As shown in Figure 1, intelligent cipher key equipment 102 is made up of usb interface module 103, master control module 104 and data memory module 105.Usb interface module 103 is the interface modules that meet the CCID interface standard, be used to realize that intelligent cipher key equipment and main frame carry out communication according to the CCID interface standard, and the physical connection of setting up main frame and intelligent cipher key equipment, usb interface module comprises that descriptor is provided with the unit and end points is provided with the unit, descriptor is provided with the unit and is used for being provided with and meets descriptor and the corresponding value thereof that the CCID agreement stipulates, end points is provided with the unit and is used to be provided with at least one pair of IN/OUT end points and is claimed as BULK-IN, the BULK-OUT end points, be used for realizing replying and ordering pipeline, at least one IN end points is set is claimed as interrupt endpoint, be used for realization event notice pipeline; Master control module 104 is used for the control program operation, carries out the corresponding program order; Data memory module 105 is used to store the memory of information such as association key.Master control module 104 and data memory module 105 have constituted intelligent processing module 106 (in the frame of broken lines) jointly.Main frame 101 passes through usb interface module 103 physical connections with intelligent cipher key equipment 102, and master control module 104 is carried out communication by usb interface module 103 and main frame 101.
Embodiment 2
Present embodiment has adopted a kind of single-chip to realize that intelligent cipher key equipment and main frame carry out information interaction.Single-chip is meant the integrated chip that can realize USB function and intelligent card function in a slice integrated circuit (IC) chip, the existing usb interface module that meets the CCID standard in this chip, the interface module that meets the ISO7816 standard is also arranged, can be used as smart card and use.As shown in Figure 2, intelligent cipher key equipment 202 is made up of usb interface module 203, program storage block 204, intelligent key data storage module 205, master control module 206 and 7816 interface modules 207.Usb interface module 203 is the interface modules that meet the CCID interface standard, be used to realize that intelligent cipher key equipment 202 and main frame 201 carry out communication according to the CCID interface standard, and the physical connection of setting up main frame 201 and intelligent cipher key equipment 202, usb interface module 203 comprises that descriptor is provided with the unit and end points is provided with the unit, descriptor is provided with the unit and is used for being provided with and meets descriptor and the corresponding value thereof that the CCID agreement stipulates, end points is provided with the unit and is used to be provided with at least one pair of IN/OUT end points and is claimed as BULK-IN, the BULK-OUT end points, be used for realizing replying and ordering pipeline, at least one IN end points is set is claimed as interrupt endpoint, be used for realization event notice pipeline; Program storage block 204 is used to store corresponding program; Intelligent key data storage module 205 is used to store information such as association key; Master control module 206 is used for the control program operation, carries out the corresponding program order.Program storage block 204, intelligent key data storage module 205, master control module 206 and 7816 interface modules 207 have constituted intelligent processing module 208 (in the frame of broken lines) jointly.Main frame 201 passes through usb interface module 203 physical connections with intelligent cipher key equipment 202, and master control module 206 is carried out communication by usb interface module 203 and main frame 201.
Intelligent cipher key equipment and main frame carry out mutual embodiment referring to Fig. 3, may further comprise the steps:
Step 301: set up the physical connection of intelligent cipher key equipment and main frame, intelligent cipher key equipment powers on;
Step 302: the intelligent cipher key equipment statement oneself is the equipment that meets the CCID interface standard;
Step 303: main frame sends query State information to intelligent cipher key equipment;
Step 304: intelligent cipher key equipment returns the response message that smart card has inserted to main frame after receiving the query State information of main frame transmission;
Step 305: after main frame receives the response message of intelligent cipher key equipment transmission, send the smart card electrification reset order that meets the CCID interface standard to intelligent cipher key equipment;
Step 306: intelligent cipher key equipment is packaged into the packet that meets the CCID standard with reset answer after receiving the electrification reset order of main frame transmission, and sends packet to main frame;
Step 307: main frame is set up communication with intelligent cipher key equipment and is connected after receiving the packet of intelligent cipher key equipment transmission;
Step 308: according to the application program of host side, main frame and intelligent cipher key equipment carry out information interaction, finish up to information interaction.
Reset answer in the step 306 can be stored in the intelligent cipher key equipment or be solidificated in the interior firmware program of intelligent cipher key equipment.
Intelligent cipher key equipment of the present invention can be used for carrying out authentication, also can simulate such as reading and writing data, file management, algorithm download, data encryption etc.
Above-described embodiment is a more preferably embodiment of the present invention, and common variation that those skilled in the art carries out in the technical solution of the present invention scope and replacement all should be included in protection scope of the present invention.
Claims (2)
1. intelligent cipher key equipment and mutual method of host information that realizes by single-chip, it is characterized in that, this intelligent cipher key equipment is the chip of integrated USB function and intelligent card function in a slice integrated circuit (IC) chip, wherein, have in the described intelligent cipher key equipment and comprise that descriptor is provided with the usb interface module of unit, wherein descriptor is provided with the unit and is used for being provided with and meets descriptor and the corresponding value thereof that the CCID agreement stipulates, thereby realize that intelligent cipher key equipment carries out communication by this usb interface module according to CCID interface standard and main frame, said method comprising the steps of:
Steps A: intelligent cipher key equipment is set up physical connection by USB interface and main frame, and described intelligent cipher key equipment powers on;
Step B: described intelligent cipher key equipment statement oneself is the equipment that meets the CCID interface standard;
Step C: described main frame sends query State information to described intelligent cipher key equipment, and described intelligent cipher key equipment returns the response message that smart card has inserted to described main frame;
Step D: described main frame sends the smart card electrification reset order that meets the CCID standard to described intelligent cipher key equipment, and described intelligent cipher key equipment is packaged into the packet that meets the CCID standard with reset answer, and sends described packet to described main frame;
Step e: described main frame is set up communication with described intelligent cipher key equipment and is connected, and carries out information interaction according to application program in the described main frame and described intelligent cipher key equipment.
2. the method for claim 1 is characterized in that, described reset answer is stored in the described intelligent cipher key equipment or is solidificated in the interior firmware program of described intelligent cipher key equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200610113057 CN100555938C (en) | 2006-09-08 | 2006-09-08 | A kind of intelligent cipher key equipment and with the mutual method of host information |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200610113057 CN100555938C (en) | 2006-09-08 | 2006-09-08 | A kind of intelligent cipher key equipment and with the mutual method of host information |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1953372A CN1953372A (en) | 2007-04-25 |
| CN100555938C true CN100555938C (en) | 2009-10-28 |
Family
ID=38059520
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200610113057 Active CN100555938C (en) | 2006-09-08 | 2006-09-08 | A kind of intelligent cipher key equipment and with the mutual method of host information |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100555938C (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102736992B (en) * | 2011-04-15 | 2015-01-21 | 深圳市文鼎创数据科技有限公司 | Method and device for self-adaption driving of intelligent secret key equipment and intelligent secret key equipment |
| CN102231667B (en) * | 2011-07-29 | 2013-06-19 | 飞天诚信科技股份有限公司 | Method and device for registering serial device |
-
2006
- 2006-09-08 CN CN 200610113057 patent/CN100555938C/en active Active
Non-Patent Citations (4)
| Title |
|---|
| . Universal Serial Bus Device Class:Smart Card CCIDSpecification for integrated Circuit(s) Cards interface DeviceRevision 1.1. 2005 |
| Universal Serial Bus Device Class:Smart Card CCIDSpecification for integrated Circuit(s) Cards interface DeviceRevision 1.1. 2005 * |
| 利用ST7系列微处理器实现 E-Key. 金尔雅.慧聪网电子行业频道. 2004 |
| 利用ST7系列微处理器实现 E-Key. 金尔雅.慧聪网电子行业频道. 2004 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1953372A (en) | 2007-04-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7762470B2 (en) | RFID token with multiple interface controller | |
| CN102037499B (en) | NFC mobile communication device and NFC reader | |
| CN101965597B (en) | Method and devices for installing and retrieving linked MIFARE applications | |
| US7413129B2 (en) | USB device with secondary USB on-the-go function | |
| RU2267155C2 (en) | Method for user-computer interaction for use by a set of flexibly connected computer systems, device, having block for connection to flexibly connected computer systems, a set of devices, having a block for connection to flexibly connected computer system, universal serial bus key, method for interaction with main computer via usb and data storage method (variants) | |
| EP1473664B1 (en) | Smart card device as mass storage device | |
| CN100438409C (en) | Intelligent card with financial-transaction message processing ability and its method | |
| CN101719054B (en) | Method and device for realizing multi-card slot access | |
| MXPA03002250A (en) | Method and device for universal serial bus smart card traffic signaling. | |
| CN101266590A (en) | Method and system for dynamically switching equipment arrangement | |
| CN1722432A (en) | The multi-mode integrated circuit device and the method that makes its work that comprise mode detection | |
| CN1918549A (en) | Framework for providing a security context and configurable firewall for computing systems | |
| US20080163350A1 (en) | Portable information security device | |
| JP2003091704A (en) | Storage unit with non-volatile memory and information processing device with freely detachable storage unit | |
| CN100468440C (en) | Method and device for information interaction between host and smart card | |
| US20010024066A1 (en) | Handheld device, smart card interface device (IFD) and data transmission method | |
| CN100555938C (en) | A kind of intelligent cipher key equipment and with the mutual method of host information | |
| US8190898B2 (en) | Portable electronic entity and communication method | |
| TWI494886B (en) | Mobile device, virtual worth of the conversion system and conversion methods | |
| CN108243402A (en) | A kind of method and device for reading and writing smart card | |
| CN211606520U (en) | Security chip based on SIM function | |
| CN101754448B (en) | Dual-core intelligent card for mobile communication and data transmission and processing method thereof | |
| CN2929835Y (en) | Intelligent card with financial trade message processing property | |
| CN108108801B (en) | Device for realizing data read-write by simulating contact type IC card and read-write method | |
| KR100638383B1 (en) | Usb apparatus which is installed a smart card, and using method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C56 | Change in the name or address of the patentee |
Owner name: FEITIAN CHENGXIN TECHNOLOGIES CO., LTD. Free format text: FORMER NAME: BEIJING FEITIAN CHENGXIN SCIENCE + TECHNOLOGY CO. LTD. |
|
| CP03 | Change of name, title or address |
Address after: 100085 Beijing city Haidian District Xueqing Road No. 9 Ebizal building B block 17 layer Patentee after: Feitian Technologies Co.,Ltd. Address before: 100083, Haidian District, Xueyuan Road, No. 40 research, 7 floor, 5 floor, Beijing Patentee before: FEITIAN TECHNOLOGIES Co.,Ltd. |
|
| CP03 | Change of name, title or address | ||
| CP03 | Change of name, title or address |
Address after: 17th floor, building B, Huizhi building, No.9, Xueqing Road, Haidian District, Beijing 100085 Patentee after: Feitian Technologies Co.,Ltd. Country or region after: China Address before: 100085 17th floor, block B, Huizhi building, No.9 Xueqing Road, Haidian District, Beijing Patentee before: Feitian Technologies Co.,Ltd. Country or region before: China |