CN101013456A - Data storing device in pluggable electronic assembly and system and method for implementing anti-counterfeiting - Google Patents

Data storing device in pluggable electronic assembly and system and method for implementing anti-counterfeiting Download PDF

Info

Publication number
CN101013456A
CN101013456A CNA2007100631403A CN200710063140A CN101013456A CN 101013456 A CN101013456 A CN 101013456A CN A2007100631403 A CNA2007100631403 A CN A2007100631403A CN 200710063140 A CN200710063140 A CN 200710063140A CN 101013456 A CN101013456 A CN 101013456A
Authority
CN
China
Prior art keywords
sample
storage unit
electronic assembly
pluggable electronic
sample value
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2007100631403A
Other languages
Chinese (zh)
Other versions
CN100561494C (en
Inventor
顾汉超
汤勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
New H3C Technologies Co Ltd
Original Assignee
Hangzhou Huawei 3Com Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Huawei 3Com Technology Co Ltd filed Critical Hangzhou Huawei 3Com Technology Co Ltd
Priority to CNB2007100631403A priority Critical patent/CN100561494C/en
Publication of CN101013456A publication Critical patent/CN101013456A/en
Application granted granted Critical
Publication of CN100561494C publication Critical patent/CN100561494C/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

The invention discloses data storage devices in pluggable electronic components, including secure storage unit, which includes calibration algorithm modules for storing calibration algorithms, and according to the received sample check request, resolve the samples by the checking algorithms, and sending the analysis sample values. Or, the secure storage unit also includes value processing units connected to the calibration algorithm modules to store sample values. It compare the stored values and the analysis sample values, if right, then send the security check pass result, or send the security failed result. The invention also discloses the systems and methods to implement pluggable electronic security components. Through the data memory, system and method in this invention, the pluggable electronic identification can be implemented efficiently, the imitation possibility of pluggable electronic components is eliminated, and the cost to upgrade security is reduced.

Description

Data storage device and realize false proof system and method in the pluggable electronic assembly
Technical field
The present invention relates to the secure communication field, relate in particular to data storage device in a kind of pluggable electronic assembly, and realize the system and method that this pluggable electronic assembly is false proof.
Background technology
When the part of electronic equipment need change, such as situations such as part component upgrade, damaged part replacings, cause the wasting of resources for fear of the replacing of carrying out electronic equipment integral body, often in electronic equipment, use some pluggable electronic packages.These electronic packages generally have ripe design, be easy to be applied in various types of electronic equipments by standard interface, suitable specialized vendor carries out large-scale making in batches, therefore when some component faults or when needing to upgrade, can carry out the part replacement and reach and use purpose easily.Such as, electronic packages such as the memory bar in the electronic equipments such as the router of today, switch and computing machine, Ethernet optical module and USB storage have extensively adopted the plug type design.
With the optical module is example: optical module is widely used in Ethernet and POS (Packet overSynchronous Digital Hierarchy, transmit IP on the SDH (Synchronous Digital Hierarchy)) etc. high speed communication equipment in, generally be used to realize the conversion of electric signal to light signal, make this high speed communication equipment realize optical communication with miscellaneous equipment by optical fiber, thereby make signal transmission distance farther, anti-interference is higher.Consider demands such as light mouth electricity mouthful convenience of switching and failed part replacing, the general employing of optical module is independent of the plug type design realization of main PCB plate and being connected of veneer PCB, cooperate the composition system, this design can be divided into following type: GBIC (Giga Bitrate Interface Converter, GBIC), SFP (SmallForm Pluggable, small form factor pluggable), XFP (Extended Small Form Pluggable, extra small package pluggable formula) and XENPAK (10G Ethenet Transceiver Package, ten thousand mbit ethernet transceivers); GBIC and SFP can be used for the 155M/622M/2.5G interface of Fast Ethernet, Gigabit Ethernet and POS, and XFP and XENPAK are used for ten thousand mbit ethernets (10GE).With reference to figure 1, it is the structural representation that an optical module and veneer are formed system, veneer PCB is system level chip CPU (the System on Chip CPU of communication facilities, be called for short SoC CPU) or be the ethernet physical layer device of communication facilities, then veneer PCB gives the Ethernet electrical signal transfer optical module of plug type, finish the electrical-optical conversion by optical module, send by external optical fiber through the light mouth.
With the interior example that saves as: all can use memory devices in the equipment such as router, switch is random access memory (Random Access Memory, be called for short RAM), RAM is divided into static memory (StaticRAM is called for short SRAM) and Dram (Dynamic RAM is called for short DRAM).Consider demands such as memory size expansion and failed part replacing, the general plug type implementation that is independent of veneer PCB that also adopts of these memory devices, such as adopting dual inline memory module (Dual Inline Memory Module, abbreviation DIMM) pattern is connected with veneer PCB, for another example, in order to satisfy notebook computer etc. memory size there is the product of requirement, adopts SOMIMM (Small Outline DIMM Module) pattern to be connected with veneer PCB.As shown in Figure 2, be the structural representation that a memory bar and veneer are formed system, SoCCPU carries out data transmission by rambus to memory bar.
But, the widespread use that in the design of electronic communication equipment, is obtained along with the pluggable electronic assembly mode, a very serious problem has also appearred, that is exactly that the realization circuit of these electronic packages is very simple, a lot of manufacturers can make, cause the quality of like product to have very big difference,, then may cause equipment to break down at run duration if in equipment, use some electronic package inferior.For fear of user's loss, also for the number one of service equipment manufacturer, manufacturer often requires equipment must adopt the former factory matching component of quality assurance, therefore requires electronic package is carried out false proof processing simultaneously.
But at present very limited to the false proof means of electronic package, mainly comprise following two kinds:
First kind comparatively simple, and the Help by Phone of disposable label and anti-counterfeiting serial numbers is provided; This mode needs user's cooperation, and has suitable user to be unwilling to carry out so loaded down with trivial details checking routine;
Use at present morely in the design of router, switch for second kind, be specially and store specific information in electronic package, read this information after system powers on and carry out verification, it is as follows to be with optical module and memory bar that example describes respectively:
1, referring to Fig. 1, optical module inside comprises photoelectric switching circuit, light mouth and EEPROM; Provided by upstream IC producer because electrooptical device is unified, therefore specific information that can't memory device manufacturer can only carry out information stores by the EEPROM device.The present widely used a kind of optical module method for anti-counterfeit of institute some specific informations that are memory device manufacturer in EEPROM, and in the initialized process of optical module, detect it, to reach the purpose of discerning optical module manufacturer.The specific implementation method comprises: the manufacturer of communication facilities and supporting optical module in process of production, in the EEPROM of optical module inside, not only write the general information (as model, wavelength etc.) of this optical module, also write the specific information (as manufacturer's number, sales date etc.) of this optical module; In the communication facilities use, as shown in Figure 3, when optical module inserts also initialization, this communication facilities is by internal integrated circuit (Inter-integratedcircuit, be called for short I2C) bus or management data input and output (Management Data Input/Output, abbreviation MDIO) bus reads the specific information of being stored among the EEPROM of optical module inside, if discovery manufacturer's numbers etc. are undesirable, think that then this optical module is not a former factory genuine piece, program is printed warning information, and the prompting customer requirements is changed or further recognition of refusal.
2, referring to Fig. 2, memory bar inside comprises that there are detection (Serial PresenceDetect is called for short SPD) module in internal memory particle and serial; Provided by upstream IC producer because the internal memory particle is unified, therefore specific information that can't memory device manufacturer can only carry out information stores by the SPD module.So-called SPD module, be deposit the memory bar configuration information comprise voltage, frequency, OK/column address quantity, the EEPROM in various main time sequential routine (as CL, tRCD, tRP, tRAS etc.), present widely used memory bar method for anti-counterfeit is some specific informations of memory device manufacturer in memory bar SPD, and when the memory bar initialization, detect it, to reach the purpose of identification optical module manufacturer.The specific implementation method comprises: communications equipment manufacturer writes the general information (as CL, tRCD, tRP, tRAS etc.) that contains this memory bar to the SPD of memory bar in process of production, also writes specific information (as manufacturer's number, marketing information etc.); In the communication facilities use, as shown in Figure 4, after memory bar inserts, when device power is carried out the memory bar initialization, this communication facilities reads the specific information of being stored among the SPD of memory bar by the I2C bus, if discovery manufacturer's number etc. are undesirable, thinks that then this optical module is not a former factory genuine piece, program is printed warning information, and the prompting customer requirements is changed or further recognition of refusal.
As can be seen, current by can recognizer component manufacturer to the detection of storage specific information, thus reach false proof purpose.But along with the continuous reduction of programmable device price, increasing user buys and uses programmable device; Because the specific information of being stored in the assembly is easy to be read out, and the hardware interface of assembly and system such as I2C and MDIO go up the information of transmitting and are easy to be intercepted and captured, and the device of storage specific information itself does not have salvo in the assembly, cause this device easily by imitated, these just cause any producer or individual can both pass through programmable device easily, read all information that are stored among EEPROM and the FLASH, comprise general information and specific information; For some illegal manufacturer or individual, after obtaining these information, can copy EEPROM and the FLASH device that contains with former factory identical information again easily by programmable device, after then these devices being installed to the electronic package of some forgeries, owing to duplicated fully for false proof related specific information, so the true and false that communication facilities can't detection components.
Obviously, in the application of optical module, these pluggable electronic assemblies of memory bar, existing anti-fake scheme can not play due effect, therefore is badly in need of a more effectively anti-fake scheme, to guarantee the interests of user and equipment manufacturers.
Summary of the invention
The technical problem to be solved in the present invention provides data storage device in a kind of pluggable electronic assembly, and realize the system and method that this pluggable electronic assembly is false proof, anti-counterfeiting information easily is read and security devices duplicates easily to overcome in the prior art, thereby causes the defective of false proof inefficacy.
For achieving the above object, embodiments of the invention provide data storage device in a kind of pluggable electronic assembly, comprising:
The secure storage unit that comprises the checking algorithm unit is used to preserve checking algorithm, and according to the sample check request that receives, adopts the checking algorithm of being preserved that sample is resolved, and sends the sample value of resolving acquisition.
Wherein, for fear of secure storage unit is carried out read/write, preferable technical scheme is that described secure storage unit is to solidify in described data storage device, have the hardware memory of read/write protection.
Perhaps, preferable technical scheme is that data storage device also comprises security control unit, is connected with described secure storage unit, is used for recognition sample check request and security information read, the sample check request is sent to secure storage unit, refusal secure storage unit read.
In order to help the subsequent modification of equipment vendor, better technical scheme is also to comprise the password verification unit in the described security control unit, be used for discerning the password that the secure storage unit read is provided, password is met, send to described secure storage unit and carry out read/write operation, incongruent to password, return the refusal instruction.
Be read in transmission course for fear of sample/sample value, preferable technical scheme is that described secure storage unit also comprises the cryptographic algorithm storage unit, be used to decipher the received sample check request of described secure storage unit, and described secure storage unit resolved the result who obtains encrypt.
In the technical program, secure storage unit is resolved and is obtained sample value, and the process of comparison sample value is finished outside data storage device; Also have a kind of situation to finish within data storage device for the process of comparison sample value, then embodiments of the invention also provide data storage device in the another kind of pluggable electronic assembly, comprising:
The secure storage unit that comprises the checking algorithm unit is used to preserve checking algorithm, and according to the sample check request that receives, adopts the checking algorithm of being preserved that sample is resolved, and obtains sample value;
Described secure storage unit also comprises the sample value processing unit, be connected with described checking algorithm unit, be used to preserve sample value, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, the inconsistent analysis result that then sends false proof verification failure.
Embodiments of the invention also provide a kind of system that realizes that pluggable electronic assembly is false proof, comprise pluggable electronic assembly and the equipment veneer that communicates to connect by bus and described pluggable electronic assembly, described pluggable electronic assembly comprises assembly function processing module and data storage device, and described equipment veneer comprises operating system;
Described data storage device comprises secure storage unit, described secure storage unit comprises the checking algorithm unit, be used to preserve checking algorithm, according to receiving the sample check request from described equipment veneer, adopt the checking algorithm preserved to be resolved, and the sample value that will resolve acquisition send to described equipment veneer;
Also comprise sample sample value storage unit in the described equipment veneer, sample of being stored and the funtcional relationship between the sample value are described checking algorithm; Operating system in the described equipment veneer is used to call sample sample value storage unit, select sample to form the sample check request and send to described pluggable electronic assembly, and the received sample value and the sample value of being stored compared, finish the initialization checking of described pluggable electronic assembly.
Be read in transmission course for fear of sample/sample value, preferable technical scheme is also to comprise the first cryptographic algorithm storage unit in the described equipment veneer, described operating system is called the described first cryptographic algorithm storage unit sample check request is encrypted, and received sample value is decrypted;
Described secure storage unit also comprises the second cryptographic algorithm storage unit that is connected with the checking algorithm unit; The described second cryptographic algorithm storage unit is used to decipher received sample check request, and encrypts resolving the sample value that obtains.
Embodiments of the invention also provide a kind of system that realizes that pluggable electronic assembly is false proof, comprise pluggable electronic assembly and the equipment veneer that communicates to connect by bus and described pluggable electronic assembly, described pluggable electronic assembly comprises assembly function processing module and data storage device, and described equipment veneer comprises operating system;
Described data storage device comprises secure storage unit, described secure storage unit is used for according to receiving the sample check request from described equipment veneer, adopt the checking algorithm of being preserved to be resolved, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, the inconsistent analysis result that then sends false proof verification failure;
Also comprise sample storage unit in the described equipment veneer, operating system in the described equipment veneer is used to call sample storage unit, select sample to form the sample check request and send to described pluggable electronic assembly, and, finish the initialization checking of described pluggable electronic assembly according to the analysis result that receives.
Be read in transmission course for fear of sample/analysis result, preferable technical scheme is also to comprise the first cryptographic algorithm storage unit in the described equipment veneer, described operating system is called the described first cryptographic algorithm storage unit sample check request is encrypted, and received analysis result is decrypted; Described secure storage unit also comprises the second cryptographic algorithm storage unit; The described second cryptographic algorithm storage unit is used to decipher received sample check request, and encrypts resolving the result who obtains.
Embodiments of the invention also provide a kind of method that realizes that pluggable electronic assembly is false proof, comprise that pluggable electronic assembly identifies instruction that equipment veneer sends when sending the sample check request, carries out following step:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and send to described equipment veneer;
Described equipment veneer is compared received sample value and the sample value of being stored, and the then false proof verification of unanimity is passed through; Otherwise false proof verification failure.
In order to satisfy to the normal read of non-vital data and to the protection of security information, preferable technical scheme be pluggable electronic assembly identification equipment veneer sent instruction the time also comprise: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
Be read in transmission course for fear of sample/sample value, preferable technical scheme is for also comprising sample encryption and/or sample value encrypting and decrypting process; Described sample encryption comprises: described equipment veneer also comprised before pluggable electronic assembly sends the sample check request and adopts first cryptographic algorithm that prestores that described sample is encrypted; Described pluggable electronic assembly calls the checking algorithm of being preserved and also comprises and adopt second cryptographic algorithm that prestores to be decrypted that successful decryption then continues to carry out, otherwise returns failure command to described equipment veneer, false proof verification failure before being resolved.Described sample value encryption comprises: described pluggable electronic assembly will be resolved the sample value that obtains and be sent to and also comprise before the described equipment veneer and adopt second cryptographic algorithm that prestores that sample value is encrypted; Also comprise before described equipment veneer is compared received sample value and the sample value of being stored and adopt first cryptographic algorithm that prestores that sample value is decrypted, successful decryption then continues to carry out, otherwise false proof verification failure.
Can comprise a sample of preserving in advance in the described equipment veneer in the described sample check request, but decode for fear of the exhaustive to the sample sample value, better technical scheme is the combination that comprises a plurality of samples of preserving in advance in the described equipment veneer in the described sample check request.
Embodiments of the invention also provide a kind of method that realizes that pluggable electronic assembly is false proof, it is characterized in that comprising that the instruction that pluggable electronic assembly identification equipment veneer is sent is when sending the sample check request, to carry out following step:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and be compared with the sample value of storing, and unanimity then sends false proof verification by instructing to described equipment veneer; Otherwise send false proof verification failure command to described equipment veneer.
In order to satisfy to the normal read of non-vital data and to the protection of security information, preferable technical scheme be pluggable electronic assembly identification equipment veneer sent instruction the time also comprise: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
As shown from the above technical solution, the present invention adopts and does not directly transmit security information by a kind of follow-on data storage device is provided, and control has following beneficial effect to the read/write scheme of security information:
1, effectively carries out the identification of pluggable electronic assembly;
2,, avoided possibility effectively, thereby stopped the possibility of imitated pluggable electronic assembly by common programmable device simple copy security information by control to the security information read/write operation;
3, to the maintenance of non-vital data and interface type, make this programme can be compatible on hardware design with common pluggable electronic assembly, false proof upgrade cost reduces greatly.
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Description of drawings
Fig. 1 is the structural representation that optical module and veneer are formed system in the prior art;
Fig. 2 is the structural representation that memory bar and veneer are formed system in the prior art;
Fig. 3 is the process flow diagram of optical module detection scheme in the prior art;
Fig. 4 is the process flow diagram of memory bar detection scheme in the prior art;
Fig. 5 is the structural drawing of data storage device embodiment 1 in a kind of pluggable electronic assembly;
Fig. 6 is the structural drawing of data storage device embodiment 2 in a kind of pluggable electronic assembly;
Fig. 7 is the structural drawing of data storage device embodiment 3 in a kind of pluggable electronic assembly;
Fig. 8 is the structural drawing of data storage device embodiment 1 in the another kind of pluggable electronic assembly;
Fig. 9 is a kind of system construction drawing of realizing the false proof system embodiment of pluggable electronic assembly 1;
Figure 10 is the system construction drawing of system shown in Figure 9 embodiment 2;
Figure 11 is the system construction drawing of system shown in Figure 9 embodiment 3;
Figure 12 is the another kind of system construction drawing of realizing the system embodiment 1 that pluggable electronic assembly is false proof;
Figure 13 is a kind of process flow diagram of realizing the false proof method embodiment of pluggable electronic assembly 1;
Figure 14 is the process flow diagram of method embodiment 2 shown in Figure 13.
Embodiment
In order to overcome pluggable electronic assembly in the prior art easily by imitated defective, embodiments of the invention provide data storage device in the pluggable electronic assembly, realized the system that pluggable electronic assembly is false proof and have realized the false proof method of pluggable electronic assembly, described respectively below.
Embodiments of the invention provide the data storage device in a kind of follow-on pluggable electronic assembly, such as EEPROM device, SPD device etc.; By the security information of being stored in this data storage device being carried out the checking treatment of sample sample value, realize the false proof of pluggable electronic assembly.Referring to Fig. 5, the structural drawing for data storage device A2 embodiment 1 in the pluggable electronic assembly comprises interface unit 1 and secure storage unit 2, wherein:
Interface unit 1 can adopt I2C/MDIO interface of the prior art, the schematic diagram of veneer and PCB needn't make amendment in so original electronic package, can plug original data storage device in the electronic package can directly be substituted by the data storage device A2 institute that the embodiment of the invention provided, and guarantee this data storage device A2 and the common pluggable electronic assembly compatibility in the hardware design aspect.But those skilled in the art are to be understood that, the I2C/MDIO interface only is a preferred embodiment but not limits to, this interface unit 1 can adopt the arbitrary interface that exists in the prior art to guarantee compatibility, also can be along with new interface standard is adopted in the evolution of interfacing.By this interface unit 1, can carry out the information transmission of data storage device in equipment veneer and the pluggable electronic assembly.
Present embodiment as electronic package manufacturer information etc., is stored in the information of need to be keep secret in the secure storage unit 2.For other information, such as information such as the model of optical module, wavelength, the reading and writing time sequence information in the memory bar etc. can leave in the non-secure storage unit (not shown), and the information that is about among the data storage device A2 is deposited respectively according to safe class; But, also these information can be left in the secure storage unit 2 in order to improve security.
For secure storage unit 2, it comprises checking algorithm unit 21, is used to preserve checking algorithm, and according to the sample check request that equipment veneer sent that receives, adopts the checking algorithm of being preserved that the sample in the sample check request is resolved; Also be connected, send and resolve the sample value that obtains with described interface unit 1.Described checking algorithm can be the verification function that electronic package equipment vendor sets in advance, and resolves the sample value that is obtained by this verification function, can judge the true and false of pluggable electronic assembly.
In the present embodiment, secure storage unit 2 is resolved and is obtained sample value, and the process of comparison sample value is finished outside data storage device A2, promptly receive the sample value that the equipment veneer of sample value can prestore itself and electronic package equipment vendor and compare, thereby finish the true and false verification of pluggable electronic assembly; Another kind of situation is finished within data storage device A2 for the process of comparison sample value, and then the present invention also provides data storage device in the corresponding pluggable electronic assembly, will be described in the back.
As seen, by the data storage device that present embodiment 1 is provided, equipment manufacturers can verify the true and false of pluggable electronic assembly effectively.The technical program application widely and optical module, memory bar false proof, thus the interests of user and equipment manufacturers guaranteed.
In order to prevent by other people by software program or physical method such as oscillograph, logic analyser etc.; thereby surveying and obtaining security information causes the antiforge function of verification function etc. to lose efficacy; further; in order to guarantee that security information itself is not by hardware interface transmission such as I2C and MDIO; then equipment manufacturers can realize the one-time write of security information by the mode that security information directly is cured to data storage device, and promptly secure storage unit 2 can be for solidifying in described data storage device A2, having a hardware memory of read/write protection.So the electronic package manufacturer can give with the data storage device that is solidified with security information in equipment manufacturers, the electronic package manufacturer replaces original data storage device in the electronic package with these improved data storage devices again, thereby produce and have anti-fraud functional electronic package, then in whole process of production, security information in the data storage device is only grasped in equipment manufacturers' hand, even the electronic package manufacturer also can't obtain, more help the carrying out of false proof work.
Perhaps pluggable electronic assembly A2 also comprises security control unit 4, as shown in Figure 6, structural drawing for data storage device A2 embodiment 2 in the pluggable electronic assembly comprises interface unit 1, secure storage unit 2, non-secure storage unit 3 and security control unit 4.
In the present embodiment, non-secure storage unit 3 is used to store non-vital data, is also referred to as general information such as information such as the model of optical module, wavelength, the reading and writing time sequence information in the memory bar etc.; And carry out calling or revising of stored information according to the non-vital data read that receives; Also be connected, send non-vital data with described interface unit 1; Then for general information, the user can equally with traditional scheme directly read by I2C, MDIO bus, guarantees this data storage device A2 and the common pluggable electronic assembly compatibility in the software design aspect.But it will be appreciated by those skilled in the art that non-secure storage unit 3 is not to be present in the device, and in different application, also may have the not only situation of a non-secure storage unit 3 that comprises.
In the present embodiment 2, this security control unit 4 is connected with secure storage unit 2 with described interface unit 1 respectively, be used for recognition sample check request and security information read, the sample check request is sent to secure storage unit 2, refusal secure storage unit read.Then, can guarantee security information itself equally, prevent that the disabled user from adopting detection acquisitions such as oscillograph not by hardware interface transmission such as I2C and MDIO by security control unit 4.
Further, security control unit 4 can also be connected with non-secure storage unit 3, the non-vital data read is sent to non-secure storage unit 3, as shown in this embodiment.But it will be understood by those skilled in the art that non-secure storage unit 3 can directly receive the non-vital data read by interface unit 1 fully, above-mentioned difference can't constitute influence to technical scheme of the present invention.
As seen, by the data storage device that present embodiment 2 is provided, equipment manufacturers can prevent any entity or individual effectively by reading the key message in the pluggable electronic assembly and duplicate, thereby prevent the false proof of pluggable electronic assembly effectively.
Further, carry out subsequent modification in order to help equipment manufacturers, described security control unit 4 can be designed as read-write pattern, but in order to guarantee its security, this security control unit 4 also comprises password verification unit 41, is used for discerning the password that secure storage unit 3 read are provided, password is met, send to described secure storage unit 3 and carry out read/write operation, incongruent to password, return the refusal instruction.This scheme can avoid in the data storage device security information by common programmable device simple copy equally; and can allow mode by password protection; make security information by the bus interface transmission; like this; equipment manufacturers will be solidified with the data storage device of security information and give the electronic package manufacturer; and after electronic package production is finished, carry out the adjustment of security information.In whole process of production, the security information in the data storage device is same only to be grasped in equipment manufacturers' hand.Simultaneously, carry out the adjustment of security information and must be undertaken, avoided other people in the equipment use, to pass through software mode online modification, the possibility of avoiding security information to be acquired and duplicating by the hardware device that has password.Referring to Fig. 7, the structural drawing for data storage device A2 embodiment 3 in the pluggable electronic assembly on the basis of embodiment 2, further comprises password verification unit 41.
In embodiment 3, secure storage unit 2 also comprises cryptographic algorithm storage unit 22, be used to decipher received sample check request, and to resolving the sample value encryption that obtains, promptly sample and the sample value transmitted are taked cryptographic operation on bus, avoid being carried out the exhaustive analysis after the intercepting and capturing of hardware probe and decode.
Simultaneously, annexation given in the present embodiment 3 is specially: security control unit 4 identification non-vital data read, sample check request and security information read, the non-vital data read is sent to non-secure storage unit 3, the sample check request is sent to secure storage unit 2, refusal secure storage unit read; But not the information that secure storage unit 3 and secure storage unit 2 are sent is directly sent by interface unit 1.Those skilled in the art are to be understood that, the information that non-secure storage unit 3 and secure storage unit 2 are sent also can be sent from interface unit 1 by security control unit 4 again, be that non-secure storage unit 3 can directly be connected with interface unit 1 with secure storage unit 2, also can be connected with interface unit 1 indirectly.
The present invention also provides data storage device A2 in the another kind of pluggable electronic assembly, secure storage unit comprises the checking algorithm unit, also comprise the sample value processing unit, the sample value processing unit is connected with described checking algorithm unit, be used to preserve sample value, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, inconsistently then send the analysis result that false proof verification is failed.Then on bus, no longer carry out the transmission of sample value, further improve security.
Present embodiment is identical with other functions of the data storage device of preceding a kind of pluggable electronic assembly, also can comprise expanded functions such as cryptographic algorithm unit, as shown in Figure 8, block diagram for this method embodiment 1, it also is the most preferred embodiment of this method, comprise interface unit 1, secure storage unit 2, non-secure storage unit 3 and security control unit 4, wherein, secure storage unit 2 comprises checking algorithm unit 21, cryptographic algorithm storage unit 22 and sample value processing unit 23, and security control unit 4 comprises password verification unit 41.
Embodiments of the invention provide two kinds of data storage devices that are applied to pluggable electronic assembly, by control to the security information read/write operation, avoided possibility effectively, thereby stopped the possibility of imitated pluggable electronic assembly by common programmable device simple copy security information; To the maintenance of non-vital data and interface type, make this programme can be compatible on hardware design with common pluggable electronic assembly, false proof upgrade cost reduces greatly.Simultaneously, undertaken by Device Host, so embodiments of the invention also provide the false proof system of pluggable electronic assembly that realizes owing to discern the work of pluggable electronic assembly.Referring to Fig. 9, be a kind of embodiment 1 that realizes the system that pluggable electronic assembly is false proof, comprise: pluggable electronic assembly A and the equipment veneer B that communicates to connect by bus and pluggable electronic assembly A, described pluggable electronic assembly A comprises assembly function processing module A1 and data storage device A2, and described equipment veneer B comprises operating system B1; Wherein, described data storage device A2 comprises secure storage unit 2; Described secure storage unit 2 comprises checking algorithm unit 21, is used to preserve checking algorithm, according to receiving the sample check request from described equipment veneer B, adopts the checking algorithm of being preserved to be resolved, and the sample value that will resolve acquisition sends to described equipment veneer B; In this process, the reception of broadcasting of data is undertaken by interface unit 1, and described interface unit 1 is an interface unit of the prior art.
Also comprise sample sample value storage unit B2 among the described equipment veneer B, sample of being stored and the funtcional relationship between the sample value are described checking algorithm; Operating system B1 among the described equipment veneer B is used to call sample sample value storage unit B2, select sample to form the sample check request and send to described pluggable electronic assembly A, and the received sample value and the sample value of being stored compared, finish the initialization checking of described pluggable electronic assembly A.
By a kind of embodiment 1 that realizes the system that pluggable electronic assembly is false proof provided by the present invention, when pluggable electronic assembly insertion equipment carries out initialization, send the sample check request and compare the anti-counterfeiting detection that the sample value of returning is carried out assembly, make equipment veneer B can effectively carry out the truth identification of pluggable electronic assembly A.
On the basis of embodiment 1, the present invention also provides a kind of embodiment 2 that realizes the system that pluggable electronic assembly is false proof, referring to Figure 10.
For in the use of equipment, host computer side is that equipment veneer is the same with traditional scheme, can send the non-vital data read by hardware interface, also comprise non-secure storage unit 3 in the native system among the pluggable electronic assembly A, with the general information in the visit electronic package.
Simultaneously, in native system, secure storage unit 2 can be for solidifying in described data storage device A2, having the hardware memory of read/write protection, pluggable electronic assembly A production is finished after, promptly can not make amendment.Perhaps, also comprise security control unit 4 among the data storage device A2, refusal is to the read of secure storage unit 2.But carry out the subsequent modification of security information for convenience in equipment manufacturers, can also comprise password verification unit 41 in the security control unit 4, be used for discerning the password that the secure storage unit read is provided, password is met, send to described secure storage unit 2 and carry out read/write operation, incongruent to password, return the refusal instruction, then only can read and write and the host computer side program that only equipment manufacturers arranged and produced is just grasped this password, improve security by special hardware with particular password.
As can be seen, in the system that present embodiment 2 is provided, in the initialization or use of pluggable electronic assembly, by the sample sample value relatively finish true and false verification, need not to carry out the bus transmission of security information as traditional scheme; Simultaneously, security information can or must could not transmitted on bus by password protection, has guaranteed that security information can not be read by host computer side in the mode of other hardware or software, has effectively avoided the possibility that pluggable electronic assembly is forged; Simultaneously, interface adopts the I2C/MDIO interface, and the equipment after having guaranteed to improve and the pin compatibility of pluggable electronic assembly have reduced upgrade cost.
Referring to Figure 11, for realizing the embodiment 3 of the system that pluggable electronic assembly is false proof, comprise pluggable electronic assembly A and the equipment veneer B that communicates to connect by bus and pluggable electronic assembly A, described pluggable electronic assembly A comprises assembly function processing module A1 and data storage device A2, and described equipment veneer B comprises operating system B1; Described data storage device A2 comprises non-secure storage unit 3, secure storage unit 2 and security control unit 4, also comprises sample sample value storage unit B2 among the described equipment veneer B, and the annexation of each module is shown in embodiment 1.Further, also comprise the first cryptographic algorithm storage unit B3 described in the present embodiment 2 among the equipment veneer B, described operating system is called the described first cryptographic algorithm storage unit sample check request is encrypted, and received sample value is decrypted; Described secure storage unit 2 also comprises the second cryptographic algorithm storage unit 22 that is connected with checking algorithm unit 21; The described second cryptographic algorithm storage unit 22 is used to decipher received sample check request, and encrypts resolving the sample value that obtains.Like this, only when host computer side is consistent with cryptographic algorithm in the pluggable electronic assembly, can carry out the checking of checking algorithm, obviously, by encryption to the transmission data, increased the disabled user and on bus, surveyed institute's transmission information and resolve the difficulty that obtains the verification function by oscillograph etc. in the equipment use, strengthened and realized the false proof security of system of pluggable electronic assembly.
This cryptographic algorithm can directly adopt checking algorithm, but in order to strengthen security, also cryptographic algorithm and checking algorithm can be separated, and also can introduce random number in cryptographic algorithm and decode interference.
Fig. 9-system embodiment shown in Figure 11, it all is the situation of carrying out the sample value comparison outside the device plugging, the present invention also provides another kind of realization pluggable electronic assembly false proof system embodiment, it is the consistency detection of carrying out sample value within the device plugging, as shown in figure 12, comprise pluggable electronic assembly A and the equipment veneer B that communicates to connect by bus and described pluggable electronic assembly A, described pluggable electronic assembly A comprises assembly function processing module A1 and data storage device A2, and described equipment veneer B comprises operating system B1; Wherein, described data storage device A2 comprises non-secure storage unit 3, secure storage unit 2 and security control unit 4, described security control unit 4 is used to refuse the security information read to secure storage unit 2, transmit the non-vital data read to non-secure storage unit 3, transmit the sample check request to secure storage unit 2; Described secure storage unit 2 comprises checking algorithm unit 21 and sample value processing unit 23, be used for according to receiving the sample check request from described equipment veneer B, adopt the checking algorithm of being preserved to be resolved, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, the inconsistent analysis result that then sends false proof verification failure;
Also comprise sample storage unit B4 in the described equipment veneer, operating system B1 among the described equipment veneer B is used to call sample storage unit B4, select sample to form the sample check request and send to described pluggable electronic assembly A, and, finish the initialization checking of described pluggable electronic assembly A according to the analysis result that receives.Because sample value need not to transmit in this process, therefore improved security on bus.
Similarly, also comprise the first cryptographic algorithm storage unit B3 among the described equipment veneer B, described operating system B1 calls the described first cryptographic algorithm storage unit B3 sample check request is encrypted, and received analysis result is decrypted;
Described secure storage unit 2 also comprises the second cryptographic algorithm storage unit 22; The described second cryptographic algorithm storage unit 22 is used to decipher received sample check request, and encrypts resolving the result who obtains.
The present invention also provides a kind of method that realizes that pluggable electronic assembly is false proof, and pluggable electronic assembly identifies instruction that equipment veneer sends when sending the sample check request, may further comprise the steps:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and send to described equipment veneer;
Described equipment veneer is compared received sample value and the sample value of being stored, and the then false proof verification of unanimity is passed through; Otherwise false proof verification failure.
In order to satisfy to the normal read of non-vital data and to the protection of security information, preferable technical scheme be pluggable electronic assembly identification equipment veneer sent instruction the time also comprise: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
Be read in transmission course for fear of sample/sample value, preferable technical scheme is for also comprising sample encryption and/or sample value encrypting and decrypting process; Described sample encryption comprises: described equipment veneer also comprised before pluggable electronic assembly sends the sample check request and adopts first cryptographic algorithm that prestores that described sample is encrypted; Described pluggable electronic assembly calls the checking algorithm of being preserved and also comprises and adopt second cryptographic algorithm that prestores to be decrypted that successful decryption then continues to carry out, otherwise returns failure command to described equipment veneer, false proof verification failure before being resolved.Described sample value encryption comprises: described pluggable electronic assembly will be resolved the sample value that obtains and be sent to and also comprise before the described equipment veneer and adopt second cryptographic algorithm that prestores that sample value is encrypted; Also comprise before described equipment veneer is compared received sample value and the sample value of being stored and adopt first cryptographic algorithm that prestores that sample value is decrypted, successful decryption then continues to carry out, otherwise false proof verification failure.
Can comprise a sample of preserving in advance in the described equipment veneer in the described sample check request, but decode for fear of the exhaustive to the sample sample value, better technical scheme is the combination that comprises a plurality of samples of preserving in advance in the described equipment veneer in the described sample check request.
Referring to Figure 13, the process flow diagram for said method embodiment 1 comprises:
The instruction that step 1, pluggable electronic assembly identification equipment veneer are sent is the non-vital data read, and then execution in step 2, is the security information read, and then execution in step 3, is sample check request execution in step 4 then;
In this step 1, equipment veneer sends instruction to pluggable electronic assembly by hardware interface such as I2C/MDIO.
For the sample check request, can comprise a sample of preserving in advance in the described equipment veneer, but, can be undertaken by the combination of a plurality of samples in order to improve anti-cracking.
Step 2, the non-vital data read/write of carrying out, checking procedure finishes; Promptly for the general information in the pluggable electronic assembly, visit and prior art scheme as configuration, model and the wavelength information of optical module and the read-write sequence information in the memory bar etc. are consistent, keep this programme effectively compatiblely to have scheme now, upgrade cost is reduced greatly.
Step 3, return refusal instruction, checking procedure finishes;
This step 3 has guaranteed that security information can not transmit by hardware interface between electronic package and single board system, thereby effectively reduces the disabled user by hardware detectings such as oscillographs, illegally intercepts and captures the possibility of security information.
Step 4, carry out the sample verification, comprising:
Step 41, the pluggable electronic assembly that receives the sample check request call the checking algorithm of being preserved and are resolved;
Step 42, will resolve the sample value that obtains and send to described equipment veneer;
Step 43, described equipment veneer are compared the received sample value and the sample value of being stored, and unanimity is execution in step 44 then, otherwise execution in step 45;
Step 44, false proof verification are passed through, and can plug the pluggable electronic assembly that electronic package is equipment manufacturers' appointment, and checking procedure finishes;
Step 45, false proof verification failure can plug the pluggable electronic assembly that electronic package is not equipment manufacturers' appointment, and checking procedure finishes.
In this step 4, method of calibration is different from the security information such as direct extraction manufacturer of prior art and carries out verification, but is undertaken by the mode that receives sample value and send sample, need not to carry out the security information transmission of bus, thereby can not be blocked and obtain.
But, if being tackled fully, sample and sample value obtain, then might realize decoding by the mode of limit, such as, if designed four sample a, b, c and d altogether, its corresponding sample value is A, B, C and D, if then illicit interception person obtains the whole correspondences of sample sample value by probe, then might forge, not have checking algorithm in the pluggable electronic assembly of being forged, sample, sample value and corresponding relation are only arranged.Therefore, in order to overcome this defective, then preferable scheme for realizing the process flow diagram of the method embodiment 2 that pluggable electronic assembly is false proof, on the basis of embodiment 1, has been taked following operation as shown in figure 14:
The described equipment veneer of step 1 also comprised before pluggable electronic assembly sends the sample check request:
Step 10, also comprise and adopt first cryptographic algorithm prestore that described sample is encrypted;
The described pluggable electronic assembly of step 41 calls the checking algorithm of being preserved and also comprises before being resolved:
Step 40, described pluggable electronic assembly adopt second cryptographic algorithm that prestores to be decrypted, and successful decryption then continues to carry out, otherwise returns failure command to described equipment veneer, false proof verification failure, and checking procedure finishes.
The described pluggable electronic assembly of step 42 will be resolved the sample value that obtains and also be comprised before sending to described equipment veneer:
Second cryptographic algorithm that step 420, employing prestore is encrypted sample value;
The described equipment veneer of step 43 also comprises before received sample value and the sample value of being stored are compared:
First cryptographic algorithm that step 430, employing prestore is decrypted sample value, and successful decryption then continues to carry out, otherwise false proof verification failure, checking procedure finishes.
In this scheme, step 10 and 40 is used in combination, and step 420 and step 430 are used in combination, and these two groups combinations can only be used one group, also can adopt simultaneously.
In order further to overcome the defective that exhaustive is decoded, a plurality of samples, sample value can also be used in combination, improve anti-cracking.
In the above embodiment of the present invention, can also comprise after the false proof verification failure that the equipment veneer refusal carries out the read/write operation of described pluggable electronic assembly, perhaps carries out the read/write operation of described pluggable electronic assembly and points out warning message before.Directly refusal can be avoided the damage of equipment, but points out warning message can have the user to take treatment measures, and is flexible relatively.
Figure 13 and method embodiment shown in Figure 14, it all is the situation of carrying out the sample value comparison outside the device plugging, the present invention also provides another kind of realization pluggable electronic assembly false proof method embodiment, it is the consistency detection of carrying out sample value within the device plugging, comprise that the instruction that pluggable electronic assembly identification equipment veneer is sent is when sending the sample check request, to carry out following step:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and be compared with the sample value of storing, unanimity then sends false proof verification and passes through instruction to described equipment veneer, otherwise sends false proof verification failure command to described equipment veneer.
In order to satisfy to the normal read of non-vital data and to the protection of security information, can comprise equally during instruction that pluggable electronic assembly identification equipment veneer is sent: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
In fact, this method is equivalent to the processing procedure of equipment veneer transferred within the pluggable electronic assembly carries out, and avoids carrying out sample transmission on bus, further improves security.Also based on the simple transfer that is processing capacity, so be equally applicable to encrypt, situation that the sample sample value is used in combination.
It should be noted that at last: above embodiment is only in order to technical scheme of the present invention to be described but not limit it, although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that: it still can make amendment or be equal to replacement technical scheme of the present invention, and these modifications or be equal to replacement and also can not make amended technical scheme break away from the spirit and scope of technical solution of the present invention.

Claims (18)

1, data storage device in a kind of pluggable electronic assembly is characterized in that comprising:
The secure storage unit that comprises the checking algorithm unit is used to preserve checking algorithm, and according to the sample check request that receives, adopts the checking algorithm of being preserved that sample is resolved, and sends the sample value of resolving acquisition.
2, data storage device according to claim 1 is characterized in that described secure storage unit is to solidify in described data storage device, have the hardware memory of read/write protection.
3, data storage device according to claim 1, it is characterized in that also comprising security control unit, be connected with described secure storage unit, be used for recognition sample check request and security information read, the sample check request is sent to secure storage unit, refusal secure storage unit read.
4, data storage device according to claim 3, it is characterized in that also comprising in the described security control unit password verification unit, be used for discerning the password that the secure storage unit read is provided, password is met, send to described secure storage unit and carry out read/write operation, incongruent to password, return the refusal instruction.
5, according to the arbitrary described data storage device of claim 1-4, it is characterized in that described secure storage unit also comprises the cryptographic algorithm storage unit, be used to decipher the received sample check request of described secure storage unit, and described secure storage unit resolved the result who obtains encrypt.
6, according to claim 1 or 3 described data storage devices, it is characterized in that also comprising non-secure storage unit, be used to store non-vital data, and carry out calling or revising of stored information according to the non-vital data read that receives.
7, data storage device in a kind of pluggable electronic assembly is characterized in that comprising:
The secure storage unit that comprises the checking algorithm unit is used to preserve checking algorithm, and according to the sample check request that receives, adopts the checking algorithm of being preserved that sample is resolved, and obtains sample value;
Described secure storage unit also comprises the sample value processing unit, be connected with described checking algorithm unit, be used to preserve sample value, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, the inconsistent analysis result that then sends false proof verification failure.
8, a kind of system that realizes that pluggable electronic assembly is false proof, comprise pluggable electronic assembly and the equipment veneer that communicates to connect by bus and described pluggable electronic assembly, described pluggable electronic assembly comprises assembly function processing module and data storage device, and described equipment veneer comprises operating system; It is characterized in that:
Described data storage device comprises secure storage unit, described secure storage unit comprises the checking algorithm unit, be used to preserve checking algorithm, according to receiving the sample check request from described equipment veneer, adopt the checking algorithm preserved to be resolved, and the sample value that will resolve acquisition send to described equipment veneer;
Also comprise sample sample value storage unit in the described equipment veneer, sample of being stored and the funtcional relationship between the sample value are described checking algorithm; Operating system in the described equipment veneer is used to call sample sample value storage unit, select sample to form the sample check request and send to described pluggable electronic assembly, and the received sample value and the sample value of being stored compared, finish the initialization checking of described pluggable electronic assembly.
9, system according to claim 8 is characterized in that:
Also comprise the first cryptographic algorithm storage unit in the described equipment veneer, described operating system is called the described first cryptographic algorithm storage unit sample check request is encrypted, and received sample value is decrypted;
Described secure storage unit also comprises the second cryptographic algorithm storage unit that is connected with the checking algorithm unit; The described second cryptographic algorithm storage unit is used to decipher received sample check request, and encrypts resolving the sample value that obtains.
10, a kind of system that realizes that pluggable electronic assembly is false proof, comprise pluggable electronic assembly and the equipment veneer that communicates to connect by bus and described pluggable electronic assembly, described pluggable electronic assembly comprises assembly function processing module and data storage device, and described equipment veneer comprises operating system; It is characterized in that:
Described data storage device comprises secure storage unit, described secure storage unit is used for according to receiving the sample check request from described equipment veneer, adopt the checking algorithm of being preserved to be resolved, and to the sample value of being preserved with resolve the sample value that obtains and compared, consistent then send the analysis result that false proof verification is passed through, the inconsistent analysis result that then sends false proof verification failure;
Also comprise sample storage unit in the described equipment veneer, operating system in the described equipment veneer is used to call sample storage unit, select sample to form the sample check request and send to described pluggable electronic assembly, and, finish the initialization checking of described pluggable electronic assembly according to the analysis result that receives.
11, system according to claim 10, it is characterized in that also comprising in the described equipment veneer the first cryptographic algorithm storage unit, described operating system is called the described first cryptographic algorithm storage unit sample check request is encrypted, and received analysis result is decrypted;
Described secure storage unit also comprises the second cryptographic algorithm storage unit; The described second cryptographic algorithm storage unit is used to decipher received sample check request, and encrypts resolving the result who obtains.
12, a kind of method that realizes that pluggable electronic assembly is false proof is characterized in that comprising that pluggable electronic assembly identifies instruction that equipment veneer sends when sending the sample check request, carries out following step:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and send to described equipment veneer;
Described equipment veneer is compared received sample value and the sample value of being stored, and the then false proof verification of unanimity is passed through; Otherwise false proof verification failure.
13, method according to claim 12, also comprise when it is characterized in that instruction that pluggable electronic assembly identification equipment veneer sent: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
14, method according to claim 12 is characterized in that also comprising sample encryption and/or sample value encrypting and decrypting process;
Described sample encryption comprises:
Described equipment veneer also comprised before pluggable electronic assembly sends the sample check request and adopts first cryptographic algorithm that prestores that described sample is encrypted; And
Described pluggable electronic assembly calls the checking algorithm of being preserved and also comprises and adopt second cryptographic algorithm that prestores to be decrypted that successful decryption then continues to carry out, otherwise returns failure command to described equipment veneer, false proof verification failure before being resolved;
Described sample value encryption comprises:
Described pluggable electronic assembly will be resolved the sample value that obtains and be sent to and also comprise before the described equipment veneer and adopt second cryptographic algorithm that prestores that sample value is encrypted; And
Also comprise before described equipment veneer is compared received sample value and the sample value of being stored and adopt first cryptographic algorithm that prestores that sample value is decrypted, successful decryption then continues to carry out, otherwise false proof verification failure.
15, method according to claim 12, it is characterized in that comprising that also the equipment veneer refusal carries out the read/write operation of described pluggable electronic assembly after the false proof verification failure, perhaps carry out the read/write operation of described pluggable electronic assembly and point out warning message before.
16, method according to claim 12 is characterized in that comprising in the described sample check request in the described equipment veneer sample preserving in advance or the combination of a plurality of samples.
17, a kind of method that realizes that pluggable electronic assembly is false proof is characterized in that comprising that the instruction that pluggable electronic assembly identification equipment veneer is sent is when sending the sample check request, to carry out following step:
The pluggable electronic assembly that receives the sample check request calls the checking algorithm of being preserved and is resolved, and will resolve the sample value that obtains and be compared with the sample value of storing, unanimity then sends false proof verification and passes through instruction to described equipment veneer, otherwise sends false proof verification failure command to described equipment veneer.
18, method according to claim 17, also comprise when it is characterized in that instruction that pluggable electronic assembly identification equipment veneer sent: the instruction that pluggable electronic assembly identification equipment veneer is sent, be the non-vital data read, then carry out the non-vital data read/write; Be the security information read, then return the refusal instruction.
CNB2007100631403A 2007-01-29 2007-01-29 Data storage device and realize false proof system and method in the pluggable electronic assembly Active CN100561494C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNB2007100631403A CN100561494C (en) 2007-01-29 2007-01-29 Data storage device and realize false proof system and method in the pluggable electronic assembly

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB2007100631403A CN100561494C (en) 2007-01-29 2007-01-29 Data storage device and realize false proof system and method in the pluggable electronic assembly

Publications (2)

Publication Number Publication Date
CN101013456A true CN101013456A (en) 2007-08-08
CN100561494C CN100561494C (en) 2009-11-18

Family

ID=38700964

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB2007100631403A Active CN100561494C (en) 2007-01-29 2007-01-29 Data storage device and realize false proof system and method in the pluggable electronic assembly

Country Status (1)

Country Link
CN (1) CN100561494C (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102411994A (en) * 2011-11-24 2012-04-11 深圳市芯海科技有限公司 Data verification method and apparatus for integrated circuit built-in memory
CN102567691A (en) * 2012-01-13 2012-07-11 成都优博创技术有限公司 Method for preventing pirating by optical modules
CN103136127A (en) * 2011-11-28 2013-06-05 启碁科技股份有限公司 Electronic device, electronic device identification system and identification method of electronic device
WO2015131521A1 (en) * 2014-03-03 2015-09-11 烽火通信科技股份有限公司 Ethernet sfp electrical module and method for realizing synchronization of ethernet
WO2016058306A1 (en) * 2014-10-17 2016-04-21 中兴通讯股份有限公司 Optical module authentication method and apparatus
WO2016066099A1 (en) * 2014-10-28 2016-05-06 Hangzhou H3C Technologies Co., Ltd. Anti-counterfeiting of component
CN105577288A (en) * 2015-12-12 2016-05-11 浙江环顺网络科技有限公司 Double-jack FTTH terminal and module replacing method thereof
CN107566048A (en) * 2017-09-21 2018-01-09 武汉恒泰通技术有限公司 A kind of method that the step of optical module two card is carried out using data-interface
CN112204556A (en) * 2019-09-09 2021-01-08 深圳市大疆创新科技有限公司 Storage device, verification and encryption method thereof and movable platform

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103733203B (en) * 2011-06-13 2017-03-29 意法半导体亚太私人有限公司 Delay or forgery and/or the clone of blocking member
CN103136454B (en) * 2011-11-25 2016-01-20 北京泛华恒兴科技有限公司 Encryption device and encryption method
CN102542204A (en) * 2012-01-19 2012-07-04 天津大学 Method for protecting local data storage file of environment-protective data acquisition and transmission instrument

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102411994A (en) * 2011-11-24 2012-04-11 深圳市芯海科技有限公司 Data verification method and apparatus for integrated circuit built-in memory
CN103136127A (en) * 2011-11-28 2013-06-05 启碁科技股份有限公司 Electronic device, electronic device identification system and identification method of electronic device
CN103136127B (en) * 2011-11-28 2016-03-09 启碁科技股份有限公司 The recognition methods of electronic installation, electronic installation recognition system and electronic installation
CN102567691A (en) * 2012-01-13 2012-07-11 成都优博创技术有限公司 Method for preventing pirating by optical modules
CN102567691B (en) * 2012-01-13 2014-12-17 成都优博创技术有限公司 Method for preventing pirating by optical modules
WO2015131521A1 (en) * 2014-03-03 2015-09-11 烽火通信科技股份有限公司 Ethernet sfp electrical module and method for realizing synchronization of ethernet
WO2016058306A1 (en) * 2014-10-17 2016-04-21 中兴通讯股份有限公司 Optical module authentication method and apparatus
CN105577380A (en) * 2014-10-17 2016-05-11 中兴通讯股份有限公司 Optical module authentication method and device
WO2016066099A1 (en) * 2014-10-28 2016-05-06 Hangzhou H3C Technologies Co., Ltd. Anti-counterfeiting of component
CN105577288A (en) * 2015-12-12 2016-05-11 浙江环顺网络科技有限公司 Double-jack FTTH terminal and module replacing method thereof
CN105577288B (en) * 2015-12-12 2017-12-15 浙江环顺网络科技有限公司 Double socket FTTH terminals and its module replacing method
CN107566048A (en) * 2017-09-21 2018-01-09 武汉恒泰通技术有限公司 A kind of method that the step of optical module two card is carried out using data-interface
CN107566048B (en) * 2017-09-21 2019-09-17 武汉恒泰通技术有限公司 A method of two step of optical module, which is carried out, using data-interface demonstrate,proves
CN112204556A (en) * 2019-09-09 2021-01-08 深圳市大疆创新科技有限公司 Storage device, verification and encryption method thereof and movable platform

Also Published As

Publication number Publication date
CN100561494C (en) 2009-11-18

Similar Documents

Publication Publication Date Title
CN100561494C (en) Data storage device and realize false proof system and method in the pluggable electronic assembly
US7650510B2 (en) Method and apparatus for in-line serial data encryption
CN105099711B (en) A kind of small cipher machine and data ciphering method based on ZYNQ
CN104899506B (en) Security system implementation method based on virtual secure element in credible performing environment
CN108345806A (en) A kind of hardware encryption card and encryption method
CN103701977B (en) Portable electronic equipment, communication system and information authentication method
CN105991565B (en) Method, system and the database proxy server of read and write abruption
US10256980B2 (en) System and method for authentication for field replaceable units
CN102542449A (en) Wireless communication device and payment authentication method
CN103430479A (en) Systems, methods, and apparatus to authenticate communications modules
US20090100502A1 (en) Protecting against counterfeit electronic devices
CN107528829A (en) BMC chip, server end and its remote monitoring and administration method
CN101322134B (en) Adaptable security module
CN114884649A (en) Intelligent gas meter and system
CN110602107B (en) Zynq-based network cipher machine and network data encryption and decryption method
CN116628770B (en) Chip data protection method and device, chip, electronic equipment and storage medium
CN105516210A (en) System and method for terminal security access authentication
CN108614967A (en) Battery authentication method, device battery, unmanned plane and storage medium
CN205232389U (en) Frequency encoding and decoding SOC chip is looked to safe sound
CN101777979A (en) Operating method and system for intelligent key device
CN106295372A (en) A kind of encryption Hub device supporting multiple EMMC equipment
CN106899545A (en) A kind of system and method for terminal security communication
CN113918392B (en) Debug protection system and debug processing module
CN114650138A (en) I2C communication method, system, equipment and medium
CN103095458A (en) Device and method of data communication by storing digital certificate private key

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CP03 Change of name, title or address
CP03 Change of name, title or address

Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No.

Patentee after: Xinhua three Technology Co., Ltd.

Address before: 310053 Hangzhou hi tech Industrial Development Zone, Zhejiang province science and Technology Industrial Park, No. 310 and No. six road, HUAWEI, Hangzhou production base

Patentee before: Huasan Communication Technology Co., Ltd.