CN101017462A - Portable memory devices having biological date protection mechanism and protection method thereof - Google Patents
Portable memory devices having biological date protection mechanism and protection method thereof Download PDFInfo
- Publication number
- CN101017462A CN101017462A CNA2006100238068A CN200610023806A CN101017462A CN 101017462 A CN101017462 A CN 101017462A CN A2006100238068 A CNA2006100238068 A CN A2006100238068A CN 200610023806 A CN200610023806 A CN 200610023806A CN 101017462 A CN101017462 A CN 101017462A
- Authority
- CN
- China
- Prior art keywords
- end host
- interface
- controller
- data
- fingerprint
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
This invention relates to one biological data protection mechanism portable memory device and its method, wherein, the device comprises one host machine interface, one controller, one finger print sensor, one memory device interface and one memory unit with large volume; controller and terminal host are connected to load the memory unit to terminal host by drive and application program; terminal machine informs controller print sensor through application program to read user print data to be identified; terminal host uses application program to identify whether the processed data and the stored mode board print data are coordinate to display the memory unit in special blind area block and to take the memory unit with large volume through coding and decoding formula method.
Description
Technical field
The present invention relates to a kind of portable memory device and guard method thereof of tool biological date protection mechanism, particularly a kind ofly reach portable memory device and guard method thereof voluntarily with biological data protection archives function by hardware setting.
Background technology
The secret practice of traditional personal data, the most normal protected mode that accesses to your password is reached, and protects personal data yet access to your password, and not only easily gives birth to troubles such as the user forgets Password, the danger that more has password cracked by the people.Therefore use individual biological data, for example biological identification methods such as fingerprint, vocal print, person's handwriting, iris have been developed into complete and active data protected mode gradually.Its advantage is that biological characteristic is the part of human body, must not remember especially, more can't be stolen, and is especially in conjunction with the guard method of fingerprint biological characteristic, not only tight, and quite convenient on using.
In recent years more because of the invention of chip type fingerprint sensor; making compact electronic product integrate fingerprint identifier no longer is infeasible technology; this has also opened up a kind of brand-new individualized application; that is the function of the subsidiary identification of fingerprint of individual carry-on electronic product; particularly aspect the protection of Storage Media, especially in conjunction with the important development project of biological identification method.For example United States Patent (USP) has just disclosed a kind of guard method of Storage Media for No. 4582985 before 20 years, it utilizes the finger print identifying mode to protect the personal data that are stored in personal status's card-type device, after the identification of fingerprint program is passed through, be stored in the card-type device protected data and just exported, for carrying out follow-up relevant treatment or authentication supervisor; The lateral dimension of this kind device is same as general credit card at present, it comprises a fingerprint sensor, image processing and recognition module and storage internal memory, it is a fingeprint distinguisher (that is fingerprint acquisition and identification all be in same device, to carry out) fully independently, even it uses target is prevent personal credit card for example etc. counterfeit, yet, this device costs an arm and a leg, except fingerprint sensor, image processing and recognition module need the microprocessor of high-order, for example the risc processor of 32 (bits) or dsp chip make that this a kind of independent device for identifying is difficult for promoting.
Secondly, No. the 6213403rd, United States Patent (USP), world patent WO 02/42887A2; No. the 6213403rd, United States Patent (USP); European patent EP 124079A1; No. the 2003/005337th, U.S. Patent Publication; BrP equally all discloses a kind of data that are stored in internal memory inside in this device of protecting by identification of fingerprint for GB2387933 number; it still is similar to No. 4582985 communique of United States Patent (USP) and discloses the storage device with fingerprint sensor, and disclosed identification of fingerprint framework mainly all is a fingeprint distinguisher (that is fingerprint acquisition and identification all be to carry out in same device) independently.
Aforesaid known techniques has a common characteristic, and a fingeprint distinguisher independently just is provided, and inside comprises fingerprint sensor and fingerprint image is handled and identification chip (IC).Such design advantage is not installed the fingerprint application program in the end host end for perhaps not needing, and provide the ease of use of hot plug, but derive another major issue, that costs an arm and a leg exactly, this is that a fingerprint image is handled and the cost of identification chip (IC) and supporting design thereof because must increase, usually this identification chip is 32 RISC or DSP, could carry out identification of fingerprint fast.The cost of processor increases along with the increase of its arithmetic speed and processing power usually, and above-mentioned RISC and/or the minimum cost of DSP also will be more than U.S. dollar be hexa-atomic.
For solving expensive problem, best mode is to utilize the microprocessor of end host to carry out fingerprint image processing and identification, just can effectively reduce cost.As No. 2003/005337 communique revealer of U.S. Patent Publication, fingerprint processing and recognition software can be installed on the end host in advance, handle and identification just can utilize the microprocessor of end host to carry out fingerprint image.Yet the shortcoming person of being to use of such design maximum can't use the convenience of hot plug use at the different terminals main frame, perhaps needs the install software that wastes time and energy.
For this reason; the part inventor of this case once proposed " containing the guard method of the internal storing memory and the storage data thereof of fingerprint sensor " patent of invention (applying for No. 092133887) in TaiWan, China; wherein disclosed the method that addresses the above problem; automatic download fingerprint application program is provided, and (comprising fingerprint image handles; identification etc.) in functions such as end hosts; do not need to be installed on fingerprint processing and recognition software on the end host in advance; and the microprocessor that utilizes end host is carried out fingerprint image and is handled and identification, reaches the convenient function of using and effectively reducing cost.
So far, above-mentioned known invention all is to utilize the fingerprint of human body with the data in the protection internal memory, particularly nonvolatile memory device.Yet based on considering of cost and high power capacity, the portable large capacity storage element of other type just becomes another important developing direction, particularly magnetic hard-disk and CD.
For this reason; part inventor of the present invention once proposes " containing the Portable encryption storage device of biological identification and the guard method of storage data thereof " patent of invention (applying for No. 093112282) in addition in Taiwan Province; it has disclosed solution to the problems described above, provides the fingerprint that utilizes human body with the data in the protection portable large capacity storage element.Yet based on cost, use the storage device space elasticity, use considering of different encryption/decryption algorithm, and general portable large capacity storage element to other type just becomes another important developing direction.
Summary of the invention
Order of the present invention is to provide a kind of portable memory device of tool biological date protection mechanism; the wherein portable high capacity storage element of mat is connected with an end host; and by the acting in conjunction of controller and end host; can be under the cost that does not increase this high capacity storage element; the portable memory device that contains fingerprint sensor is provided; fingerprint characteristic data with the user replaces password; make the access of hiding its fingerprint sensor and high capacity storage element in end host because of the braking of controller; in order to simplifying the control mode of this end host, in order to do to soft; hardware unit is encrypted and is deciphered.
The present invention's a time purpose is for to cut into two intervals to this high capacity storage element; one is that public block is read-only space; the fingerprint application program that storage system can read; and another is a hidden blocks; this block makes system have no way of finding; so store user's fingerprint characteristic data, data, program, encryption gold key, electronic certificate with this hidden blocks ... etc. the secret data, and add that encryption is to provide a complete protection and a hiding method.Indication is to be handled by the application program that downloads to end host with the private data of encrypting, manner of decryption is handled existing desire protection herein, or by after the processing of the encryption and decryption engine in the controller, deposits back in the hidden blocks again.
Another purpose of the present invention, be to provide a kind of portable memory device guard method of tool biological date protection mechanism, its method comprises this controller to be linked up through this host interface and with end host, and the driver and the application program loading that make end host will be suitable for end host are mounted in the end host; And enter fingerprint and login pattern or finger print identifying pattern, to login in the pattern in fingerprint, this end host is that notification controller control fingerprint sensor reads authorized user's template fingerprint data, and the template fingerprint data are sent to end host; Reach this end host and utilize application program to handle this template fingerprint data, and the template fingerprint data transmission that will handle stores to hidden blocks; And in the finger print identifying pattern, this controller with this template fingerprint data transmission to end host, end host is notified this controller to control this fingerprint sensor and is read one of user finger print data to be identified, and should be sent in this end host by finger print data to be identified; And this end host utilizes this application program to handle this finger print data to be identified and this template fingerprint data, and judge whether both are identical in fact, and when coincideing in fact, make user's database activation in the hidden blocks, and produce a virtual logical disks, otherwise make the interior user's database forbidden energy of hidden blocks to prevent the main frame access for the main frame access.
Technical scheme of the present invention is:
A kind of portable memory device of tool biological date protection mechanism comprises: a host interface, in order to be connected with end host; One controller is connected to described host interface; One fingerprint sensor in order to sensing user's finger print data to be identified is connected to controller; One storage device interface; And a high capacity storage element, being connected to controller, this Portable high capacity storage element is split into a public block and stores driver and application program, and a hidden blocks is in order to store fingerprint template data and data to be protected; This controller is handed over by host interface and end host and is held communication, and the driver and the application program loading that make end host will be suitable for this end host are mounted in this end host; This controller with this fingerprint template data transmission to end host; This end host reads user's finger print data to be identified by driver and application notification controller control fingerprint sensor, and finger print data to be identified is sent in the end host; And this end host utilizes application program to handle finger print data to be identified and fingerprint template data; access can appear being carried out in the particular block that the high capacity storage element is hidden on end host, form the portable memory device of tool biological date protection mechanism by this.
Described hidden blocks is more in order to storage enciphering/deciphering gold key, and described controller transfers to this enciphering/deciphering gold key in this end host.
The application program system of described end host sees through described enciphering/deciphering gold key will give encrypt/decrypt from the data to be protected of this closed security zone block access.
Described host interface is universal sequential bus interface (USB), pcmcia interface, PCI-E high-speed interface (PCIEXPRESS) or high density transmission connecting interface (IEEE 1394).
Described storage device interface is the interface of Smart Media interface (NDND Flash interface), pcmcia interface, CF interface, ide interface, Memory Stick interface, SD interface, xD interface or other standard.
Described fingerprint sensor is area-type fingerprint sensor or sweep fingerprint sensor.
The guard method of the portable memory device of tool biological date protection mechanism, this portable memory device comprise a host interface in order to be connected with an end host, a controller is connected to host interface, a fingerprint sensor is connected to the fingerprint template data of controller in order to the sensing user, and a high capacity storage element is connected to controller with a storage device interface; This high capacity storage element is split into a public block in order to storage drive program and application program, reaches a secret block in order to store data to be protected, reaches a hidden blocks, and this guard method comprises following steps:
Controller is linked up by host interface and end host, and the driver and the application program loading that make end host will be suitable for end host are mounted to end host;
Enter and begin to login fingerprint pattern or finger print identifying pattern, login in the pattern, read user's fingerprint template data by end host notification controller control fingerprint sensor, and the fingerprint template data are sent to end host at fingerprint; Utilize application program to handle the fingerprint template data by end host, and fingerprint template data transmission to the hidden blocks that will handle store; And in this finger print identifying pattern, by controller with the fingerprint template data transmission to end host, read user's finger print data to be identified by end host notification controller control fingerprint sensor, and finger print data to be identified is sent to end host, utilize application program to handle finger print data to be identified and fingerprint template data by end host, judge whether the two is identical in fact, when coincideing in fact, make the user's database activation in the hidden blocks, produce a virtual logical disks for the main frame access, otherwise make the interior user's database forbidden energy of hidden blocks, to prevent the main frame access.
Hidden blocks described in the guard method of the portable memory device of described tool biological date protection mechanism is deposited the template fingerprint data, is encrypted golden key, electronic certificate and user's database private data.
The space system of the hidden blocks described in the guard method of the portable memory device of described tool biological date protection mechanism cuts into the different user's database of plural number; end host can be videoed out correspond to a plurality of different user's databases; the corresponding a plurality of different virtual logical disks that goes out; manifest a plurality of different virtual logical disks of hidden blocks in end host, and the logic magnetic disc that public block is read-only.
Virtual logical disks described in the guard method of the portable memory device of described tool biological date protection mechanism can demonstrate the disk code name at end host; can do data storage and deletion to this disk code name space down; read the following data of this disk code name for expressly showing; deposit hidden blocks meeting encryption in and become ciphertext, and make end host have no way of discovering hidden blocks by controller is hiding.
Hidden blocks described in the guard method of the portable memory device of described tool biological date protection mechanism is more in order to store enciphering/deciphering gold key; and this controller transfers to enciphering/deciphering gold key in the end host; application program by end host sees through the data of enciphering/deciphering gold key from the hidden area access, and gives encrypt/decrypt.
This enciphering/deciphering is handled in the guard method of the portable memory device of described tool biological date protection mechanism, can be positioned over controller and handle.
Technique effect of the present invention is:
Portable high capacity storage element is connected with an end host among the present invention, and by the acting in conjunction of controller and end host, can be under the cost that does not increase this high capacity storage element, the portable memory device that contains fingerprint sensor is provided, fingerprint characteristic data with the user replaces password, make the access of hiding its fingerprint sensor and high capacity storage element in end host because of the braking of controller, in order to simplifying the control mode of this end host, in order to do to soft, hardware unit is encrypted and decipher.
Description of drawings
Fig. 1 is the calcspar of the portable memory device of tool biological date protection mechanism of the present invention;
Fig. 2 is the step synoptic diagram of its guard method of portable memory device of tool biological date protection mechanism of the present invention;
Fig. 3 cuts into the synoptic diagram of different isolated areas for its high capacity storage element of portable memory device of tool biological date protection mechanism of the present invention;
Among the figure:
The 10-portable memory device; The 100-end host;
The 102-controller; 103-storage device interface;
104-high capacity storage element; The 106-fingerprint sensor;
The 108-host interface; The 110-expansion slot.
Embodiment
Describe the present invention below in conjunction with specific embodiment.
As Fig. 1 and shown in Figure 3, be the calcspar of the portable memory device 10 of tool biological date protection mechanism of the present invention.Portable memory device 10 comprises a controller 102; one storage device interface 103 and high capacity storage element 104; a fingerprint sensor 106 and can be connected to a host interface 108 of end host 100 (for example computer system); in order to carry out the enciphering/deciphering protection of software or hardware; wherein: storage device interface 103 is Smart Media interface (a NDND Flash interface) in the present embodiment; it also can be pcmcia interface; the CF interface; ide interface; Memory Stick interface; the SD interface; the interface of other standard of xD interface person, this device can provide the method for any high capacity storage element 104 data protections thus.And host interface 108 is a USB interface, also can be the interface of a pcmcia interface, PCI-E high-speed interface (PCI EXPRESS) or high density transmission connecting interface (IEEE 1394) or other standard.Host interface 108 is to be connected with end host 100, and make controller 102 be connected to host interface 108, make controller 102 be connected with end host 100, and be connected with high capacity storage element 104 through the expansion slot 110 of storage device interface 103 by host interface 108.This controller 102 task be and end host 100 is linked up managing mass storage element 104 and fingerprint sensor 106 simultaneously.This high capacity storage element 104 must comprise that at least one is used for storage chip, internal memory or other any storage element of storage data, for example flash memory, programmable read-only memory (prom), disk or any programmable internal memory etc. of can electrically erasing.High capacity storage element 104 is split into: a public block 104A; comprise the fingerprint application program in interior at least one application program in order to storage; an and hidden blocks 104B; in order to store at least one template fingerprint data; more can be in order to store enciphering/deciphering gold key and to store data to be protected; and this controller 102 more can transfer to this enciphering/deciphering gold key in this end host 100, makes the application program system of end host 100 through enciphering/deciphering gold key the data to be protected from hidden blocks 104B access be given encrypt/decrypt.
And this fingerprint sensor 106 is to comprise the area-type fingerprint sensor that leaves standstill finger print thereon in order to sensing, or slides through the sweep fingerprint sensor of the finger print on it in order to sensing.106 controlled device 102 access control of this fingerprint sensor are grasped real-time finger print data and are used, and by end host 100 the real-time finger print data of grasps and previous template fingerprint data are done template and compare and move.So-called template fingerprint data, the owner who is exactly portable memory device 10 of the present invention is when using for the first time this device, and left therein primary finger print data, this finger print data are in order to the benchmark of conduct with the comparison of subsequent fingerprint data.Therefore, fingerprint sensor 106 is to be connected to this controller 102, in order to sensing authorized user's template fingerprint data, more can come the comparison with the template fingerprint data in order to sensing one user's a finger print data to be identified.
As shown in Figures 2 and 3; it is as follows that portable memory device 10 of the present invention is connected to the guard method of storage data of end host 100: at first; seeing through host interface 108 by controller 102 links up with end host 100; the driver and application program (the containing the fingerprint application program) loading that make end host 100 will be suitable for end host 100 operating systems are mounted in the end host 100, carry out the application program of public section shown in step 210.Then, in logining the fingerprint stage shown in the step 220, demonstrate a window on the end host 100 and enter the finger print identifying pattern (shown in step 230) logining fingerprint pattern (shown in step 225) at the beginning or read fingerprint template from hidden blocks for user's selection or automatic judgement.Begin to login fingerprint pattern if enter, then end host 100 reads authorized user's fingerprint template data with notification controller 102 control fingerprint sensors 106, and the fingerprint template data are sent to (shown in step 235,245) in the end host 100.At this moment, end host 100 utilizes fingerprint application routine processes fingerprint template data, and the fingerprint template data transmission that will handle stores to the hidden blocks 104B of high capacity storage element 104, perhaps, the fingerprint application program can be utilized golden key encrypted template finger print data (shown in step 255), and the fingerprint template data transmission that will encrypt then stores (shown in the step 265) to the hidden blocks 104B of high capacity storage element 104.
If will enter the finger print identifying pattern, then controller 102 will read template fingerprint data (shown in step 230) from the hidden blocks 104B of high capacity storage element 104, the fingerprint template data are transferred in the end host 100, then with golden key deciphering fingerprint template data (shown in step 240); Then, these end host 100 notification controllers 102 control fingerprint sensors 106 read user's finger print data to be identified, and finger print data to be identified is sent to (shown in step 250) in the end host 100; Then, utilize application program to handle finger print data to be identified and template fingerprint data by end host 100, and judge whether both are identical in fact, and when coincideing in fact, untie user's database activation in the hidden blocks 104B, and corresponding one-tenth one logic magnetic disc is for these end host 100 accesses (shown in step 280), otherwise make the user's database forbidden energy in this hidden blocks 104B, to prevent that this end host 100 from carrying out access, inquire perhaps whether the user continues comparison again and authenticate (shown in step 270).
Easy speech, the method of the employed controller 102 managing mass storage elements 104 of apparatus of the present invention, system can cut into this high capacity storage element 104 different independent blocks to store different data respectively, with the embodiment of the invention, this high capacity storage element 104 is to be cut into aforementioned one a public block 104A and a hidden blocks 104B (as shown in Figure 3).
When portable memory device 10 of the present invention with after terminal system is connected, terminal system can be considered as portable memory device 10 disk independently, and link the public block 104A of independence in the memory modules 104 automatically, on the display device of terminal system, to show the archives option of fingerprint application program, and select a fingerprint comparison picture for example to occur to carry out this fingerprint application program by the user.
Execute as the user after the fingerprint application program and authentication success of this public block 104A, this controller 102 can read user's database of hidden blocks 104B automatically, and corresponding one-tenth one logic magnetic disc is for these end host 100 accesses, by user's database of secret block 104B the corresponding logic magnetic disc that goes out, be called for short virtual logical disks.Corresponding, on the terminal system display device, the switching of picture can occur, that is switch to the virtual logical disks of shielded hidden blocks 104B, to demonstrate shielded data in this block, make the user can free access.
Easy speech, when using apparatus of the present invention, controller 102 can be earlier be downloaded the fingerprint application program automatically to public block, pending intact fingerprint application program and successful after, demonstrate the virtual logical disks of hidden blocks 104B again in end host 100.And the function that so automatic download and picture switch; also be because in Taiwan Province's application for a patent for invention of the present patent application people No. 092133887 " containing the guard method of the internal storing memory and the storage data thereof of fingerprint sensor "; disclose and solve the function that proprietary controller 102 designs of above-mentioned patent have note body body independently to cut and manage; and cause apparatus of the present invention can be different from existing known techniques; do the processing and the identification of fingerprint by the microprocessor of terminal system, also take into account automatic download simultaneously and contain the fingerprint application program in interior various application programs.
What deserves to be explained is that the Any Application of public block 104A of the present invention all is a read-only file, can't do any change.And in the present invention, a hidden blocks 104B is arranged in addition, this block need see through direct and controller 102 communications of separate procedure, and this block is had no way of discovering by system, and the big I of this hidden blocks 104B is adjusted according to design.This hidden blocks 104B system deposits the template fingerprint data, encrypts golden key, electronic certificate, user's database ... Deng private data.According to actual needs, also can claim a plurality of different user's databases with the space cutting of hidden blocks 104B, at this moment, the disk that end host 100 is videoed in the face of this device, can video out and correspond to a plurality of different user's databases, the corresponding a plurality of different virtual logical disks that goes out, so this device can manifest a plurality of different virtual logical disks (the hidden blocks 104B in device) and a read-only logic magnetic disc (the public block 104A in device) in end host 100.This virtual logical disks can demonstrate the disk code name in end host 100, so the user can do data storage and deletion to the space under this disk code name, the user is expressly demonstration in the data that read under this disk code name, hidden blocks 104B meeting encryption in depositing device in, and the controller 102 of device is hidden this user's database thus, makes end host 100 have no way of discovering this block; So during the user's database forbidden energy in the hidden blocks 104B, just hide all user's information.
Below refer again to Fig. 1 and Fig. 2 application system flow process of the present invention is described.
At first; the portable memory device 10 of tool biological date protection mechanism of the present invention inserts the slot of end host 100; by controller 102 after primary power is opened; controller 102 is to link up with end host 100 through host interface 108, and this controller 102 reads in the information block in the SRAM of controller 102.According to the block of information blocks of data that is loaded into SRAM, controller will be made a response to the request that main frame sends, and high capacity storage element 104 is configured, and it is considered as logic magnetic disc.End host 100 will read high capacity storage element 104 public block 104A application program and carry out it.This acts may is automatically performed by controller 102 controls, and the user does not need manual installation driver and application program.
Then, end host 100 is through direct executive utility and by the instruction (can with the mode of spring window guide user carry out) of application program reception from the authorized user, read authorized user's template fingerprint data with notification controller 102 control fingerprint sensors 106, and the template fingerprint data are sent in this end host 100.Then, end host 100 utilizes this application program to handle this template fingerprint data, and the template fingerprint data transmission that will handle stores to hidden blocks 104B, if this, the user promptly can be stored into private data among the secret block 104B.When the user is carried into another station terminal main frame 100 uses with portable memory device 10, this controller 102 sees through host interface 108 and holds communication with these end host 100 friendships, controller 102 will be made a response to the request that this end host 100 sends, high capacity storage element 104 is configured, and it is considered as logic magnetic disc, and one of them application program loaded to be mounted in this end host 100 carries out.Then, the application program of this end host 100 is judged among the hidden blocks 104B of high capacity storage element 104 and has been stored the template fingerprint data, perhaps controller 102 will store this end host 100 of condition notification of template fingerprint data among the hidden blocks 104B, in in the case, controller 102 with the template fingerprint data transmission to main frame 100.This end host 100 sees through direct executive utility again, and by the instruction of application program reception from the user, read user's finger print data to be identified with notification controller 102 control fingerprint sensors 106, and finger print data to be identified is sent in this end host 100.This end host 100 utilizes application program to handle finger print data to be identified and template fingerprint data, and judge whether both are identical in fact, and when coincideing in fact, make user's database activation in the hidden blocks 104B, and produce a virtual logical disks, otherwise make the interior user's database forbidden energy of hidden blocks 104B to prevent end host 100 accesses for end host 100 accesses.
The present invention is for the private data of the secret block 104B that further protects memory modules 104; can will do the private data of secret block 104B at the gold of the encryption among hidden blocks 104B key and store enciphering/deciphering action (handling) by application program; under controller 102 controls, enciphering/deciphering gold key can be transferred in the end host 100.By this, the application program of end host 100 just can see through enciphering/deciphering gold key the data to be protected from secret block 104B access are given encryption/decryption process.
By above-mentioned structure of the present invention, the on-line unit of being seen from the end host 100, no longer comprise a non-voltile memory and a fingerprint sensor, so do not need the driver that is applicable to this non-voltile memory and this fingerprint sensor is installed simultaneously, so end host 100 does not need the running of two devices of control tasks.The substitute is, the on-line unit of being seen from the end host 100 only has a portable memory device 10, so end host 100 only need be controlled the running of a device.As for the non-voltile memory in the portable memory device 10 and the running of fingerprint sensor, can control by controller 102.It should be noted that the controller 102 of indication of the present invention, is other assembly that can comprise the running of control non-voltile memory and fingerprint sensor largo, such as internal memory (ROM), random access memory (RAM) etc. only.
The embodiment that the present invention is proposed in the detailed description of above-mentioned preferred embodiment, only in order to the convenient technology contents that the present invention is described, but not with narrow sense of the present invention be limited to the foregoing description, situation in spirit that does not exceed the present invention and following claim, the many variations of being done is implemented, and all belongs to the present invention's scope.
Claims (12)
1. the portable memory device of a tool biological date protection mechanism (10) comprising:
One host interface (108) is in order to be connected with end host (100);
One controller (102) is connected to described host interface (108);
One fingerprint sensor (106) in order to sensing user's finger print data to be identified is connected to controller (102);
One storage device interface (103); And
One high capacity storage element (104) is connected to controller (102), and this Portable high capacity storage element (104) is split into a public block and stores driver and application program, and a hidden blocks is in order to store fingerprint template data and data to be protected;
This controller (102) is handed over end host (100) by host interface (108) and is held communication, and the driver and the application program loading that make end host (100) will be suitable for this end host (100) are mounted in this end host; This controller (102) with this fingerprint template data transmission to end host (100); This end host (100) reads user's finger print data to be identified by driver and application notification controller (102) control fingerprint sensor (106), and finger print data to be identified is sent in the end host (100); And this end host (100) utilizes application program to handle finger print data to be identified and fingerprint template data; access can appear being carried out in the particular block that high capacity storage element (104) is hidden on end host, form the portable memory device (10) of tool biological date protection mechanism by this.
2. the portable memory device of tool biological date protection mechanism according to claim 1; it is characterized in that described hidden blocks more in order to storage enciphering/deciphering gold key, and described controller (102) transfers to this enciphering/deciphering gold key in this end host (100).
3. the portable memory device of tool biological date protection mechanism according to claim 2 is characterized in that the application program system of described end host (100) will give encrypt/decrypt from the data to be protected of this closed security zone block access through described enciphering/deciphering gold key.
4. the portable memory device of tool biological date protection mechanism according to claim 1 is characterized in that described host interface (108) is universal sequential bus interface (USB), pcmcia interface, PCI-E high-speed interface (PCI EXPRESS) or high density transmission connecting interface (IEEE 1394).
5. the portable memory device of tool biological date protection mechanism according to claim 1 is characterized in that the interface of described storage device interface (103) for Smart Media interface (NDND Flash interface), pcmcia interface, CF interface, ide interface, Memory Stick interface, SD interface, xD interface or other standard.
6. the portable memory device of tool biological date protection mechanism according to claim 1 is characterized in that described fingerprint sensor (106) is area-type fingerprint sensor or sweep fingerprint sensor.
7. the guard method of the portable memory device of a tool biological date protection mechanism, this portable memory device (10) comprise a host interface (108) in order to be connected with an end host (100), a controller (102) is connected to host interface (108), a fingerprint sensor (106) is connected to the fingerprint template data of controller (102) in order to the sensing user, and a high capacity storage element (104) is connected to controller (102) with a storage device interface (103); This high capacity storage element (104) is split into a public block in order to storage drive program and application program, reaches a secret block in order to store data to be protected, reaches a hidden blocks, it is characterized in that this guard method comprises following steps:
Controller (102) is linked up by host interface (108) and end host (100), and the driver and the application program loading that make end host (100) will be suitable for end host (100) are mounted to end host (100);
Enter and begin to login fingerprint pattern or finger print identifying pattern, login in the pattern at fingerprint, read user's fingerprint template data by end host (100) notification controller (102) control fingerprint sensor (106), and the fingerprint template data are sent to end host; Utilize application program to handle the fingerprint template data by end host, and fingerprint template data transmission to the hidden blocks that will handle store; And in this finger print identifying pattern, by controller with the fingerprint template data transmission to end host (102), read user's finger print data to be identified by end host (102) notification controller (102) control fingerprint sensor (106), and finger print data to be identified is sent to end host (102), utilize application program to handle finger print data to be identified and fingerprint template data by end host (102), judge whether the two is identical in fact, when coincideing in fact, make the user's database activation in the hidden blocks, produce a virtual logical disks for the main frame access, otherwise make the interior user's database forbidden energy of hidden blocks, to prevent the main frame access.
8. the guard method of the portable memory device of tool biological date protection mechanism according to claim 7 is characterized in that this hidden blocks is deposited the template fingerprint data, encrypted golden key, electronic certificate and user's database private data.
9. the guard method of the portable memory device of tool biological date protection mechanism according to claim 7; the space system that it is characterized in that described hidden blocks cuts into the different user's database of plural number; end host can be videoed out correspond to a plurality of different user's databases; the corresponding a plurality of different virtual logical disks that goes out; manifest a plurality of different virtual logical disks of hidden blocks in end host, and the logic magnetic disc that public block is read-only.
10. the guard method of the portable memory device of tool biological date protection mechanism according to claim 9; it is characterized in that described virtual logical disks can demonstrate the disk code name at end host; can do data storage and deletion to this disk code name space down; read the following data of this disk code name for expressly showing; deposit hidden blocks meeting encryption in and become ciphertext, and make end host have no way of discovering hidden blocks by controller is hiding.
11. the guard method of the portable memory device of tool biological date protection mechanism according to claim 7; it is characterized in that this hidden blocks is more in order to store enciphering/deciphering gold key; and this controller transfers to enciphering/deciphering gold key in the end host; application program by end host sees through the data of enciphering/deciphering gold key from the hidden area access, and gives encrypt/decrypt.
12. the guard method of the portable memory device of tool biological date protection mechanism according to claim 7 is characterized in that this enciphering/deciphering processing, can be positioned over controller and handle.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2006100238068A CN101017462A (en) | 2006-02-09 | 2006-02-09 | Portable memory devices having biological date protection mechanism and protection method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2006100238068A CN101017462A (en) | 2006-02-09 | 2006-02-09 | Portable memory devices having biological date protection mechanism and protection method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101017462A true CN101017462A (en) | 2007-08-15 |
Family
ID=38726484
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2006100238068A Pending CN101017462A (en) | 2006-02-09 | 2006-02-09 | Portable memory devices having biological date protection mechanism and protection method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101017462A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101571902B (en) * | 2008-04-29 | 2011-09-14 | 慧国(上海)软件科技有限公司 | Method and computer system using network video camera for protecting digital data |
| CN103178961A (en) * | 2013-02-04 | 2013-06-26 | 快车科技有限公司 | Safe information interaction method and related device |
| TWI447583B (en) * | 2012-02-10 | 2014-08-01 | Phison Electronics Corp | Data protecting method, memory controller and memory storage device |
| CN106682522A (en) * | 2016-11-29 | 2017-05-17 | 大唐微电子技术有限公司 | Fingerprint encryption device and implementation method thereof |
| CN107563171A (en) * | 2017-09-11 | 2018-01-09 | 英业达科技有限公司 | Storage device with biological characteristic identification module |
| WO2018076163A1 (en) * | 2016-10-25 | 2018-05-03 | 深圳市汇顶科技股份有限公司 | Binding authentication method for fingerprint algorithm library and fingerprint sensor, and fingerprint recognition system |
| CN108460261A (en) * | 2017-01-03 | 2018-08-28 | 三星电子株式会社 | Method for managing content and its electronic equipment |
| CN110225014A (en) * | 2019-05-30 | 2019-09-10 | 上海应用技术大学 | The internet of things equipment identity identifying method of lower hairdo is concentrated based on fingerprint |
-
2006
- 2006-02-09 CN CNA2006100238068A patent/CN101017462A/en active Pending
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101571902B (en) * | 2008-04-29 | 2011-09-14 | 慧国(上海)软件科技有限公司 | Method and computer system using network video camera for protecting digital data |
| TWI447583B (en) * | 2012-02-10 | 2014-08-01 | Phison Electronics Corp | Data protecting method, memory controller and memory storage device |
| CN103178961A (en) * | 2013-02-04 | 2013-06-26 | 快车科技有限公司 | Safe information interaction method and related device |
| CN103178961B (en) * | 2013-02-04 | 2017-05-17 | 快车科技有限公司 | Safe information interaction method and related device |
| WO2018076163A1 (en) * | 2016-10-25 | 2018-05-03 | 深圳市汇顶科技股份有限公司 | Binding authentication method for fingerprint algorithm library and fingerprint sensor, and fingerprint recognition system |
| CN106682522A (en) * | 2016-11-29 | 2017-05-17 | 大唐微电子技术有限公司 | Fingerprint encryption device and implementation method thereof |
| CN108460261A (en) * | 2017-01-03 | 2018-08-28 | 三星电子株式会社 | Method for managing content and its electronic equipment |
| CN108460261B (en) * | 2017-01-03 | 2023-01-10 | 三星电子株式会社 | Method for managing content and electronic device thereof |
| CN107563171A (en) * | 2017-09-11 | 2018-01-09 | 英业达科技有限公司 | Storage device with biological characteristic identification module |
| CN107563171B (en) * | 2017-09-11 | 2020-08-28 | 英业达科技有限公司 | Storage device with biological characteristic identification module |
| CN110225014A (en) * | 2019-05-30 | 2019-09-10 | 上海应用技术大学 | The internet of things equipment identity identifying method of lower hairdo is concentrated based on fingerprint |
| CN110225014B (en) * | 2019-05-30 | 2021-07-16 | 上海应用技术大学 | Internet of things equipment identity authentication method based on fingerprint centralized issuing mode |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101017462A (en) | Portable memory devices having biological date protection mechanism and protection method thereof | |
| CN103415855B (en) | Mass-memory unit memory encryption method, system and device | |
| US7069447B1 (en) | Apparatus and method for secure data storage | |
| US8255697B2 (en) | Portable or embedded access and input devices and methods for giving access to access limited devices, apparatuses, appliances, systems or networks | |
| US5515440A (en) | Preboot protection of unauthorized use of programs and data with a card reader interface | |
| US7519203B2 (en) | Portable encrypted storage device with biometric identification and method for protecting the data therein | |
| EP0379333B1 (en) | Secure data interchange system | |
| CN101345619B (en) | Electronic data protection method and device based on biological characteristic and mobile cryptographic key | |
| ATE175505T1 (en) | PRE-CHARGE PROTECTION FOR A DATA SECURITY DEVICE | |
| CN101986597A (en) | Identity authentication system with biological characteristic recognition function and authentication method thereof | |
| US20040025035A1 (en) | Contactless electronic identification system | |
| CN104850764B (en) | A kind of method for protecting software and system based on smart card | |
| CN1284090C (en) | Storage store device containing finger print senser and method for protecting its stored document | |
| CN101930521A (en) | File protecting method and device thereof | |
| CN1333348C (en) | Method for protecting portable cryptographic storage device of containing biological identification and stored data | |
| CN101089896A (en) | Protection method for file of optical store medium/device | |
| CN100451999C (en) | Memory and method for protecting storage data | |
| TWI296780B (en) | Hard disk apparatus with a biometrics sensor and method of protecting data therein | |
| CN100476764C (en) | Storage device and method for protecting stored data | |
| CN105893821A (en) | Method for encrypting USB flash disk with fingerprint authentication | |
| CN106855923A (en) | A kind of electronic installation based on biological identification technology | |
| CN101968773A (en) | Data storage system with biometric protection and method thereof | |
| CN103824029B (en) | Intelligent card data treating method and apparatus | |
| WO2004055738A1 (en) | Devices for combined access and input | |
| RU68149U1 (en) | MOBILE DEVICE FOR PROTECTING SOFTWARE AND PERSONAL DATA FROM UNAUTHORIZED ACCESS |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |