CN101441602B - Hard disk data protection device, hard disk, computer and hard disk data protection method - Google Patents

Hard disk data protection device, hard disk, computer and hard disk data protection method Download PDF

Info

Publication number
CN101441602B
CN101441602B CN2007101776626A CN200710177662A CN101441602B CN 101441602 B CN101441602 B CN 101441602B CN 2007101776626 A CN2007101776626 A CN 2007101776626A CN 200710177662 A CN200710177662 A CN 200710177662A CN 101441602 B CN101441602 B CN 101441602B
Authority
CN
China
Prior art keywords
hard disk
write
read
order
attribute
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2007101776626A
Other languages
Chinese (zh)
Other versions
CN101441602A (en
Inventor
靳玉茹
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Lenovo Beijing Ltd
Original Assignee
Lenovo Beijing Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Lenovo Beijing Ltd filed Critical Lenovo Beijing Ltd
Priority to CN2007101776626A priority Critical patent/CN101441602B/en
Priority to JP2008294801A priority patent/JP2009129453A/en
Priority to KR1020080114360A priority patent/KR20090051705A/en
Publication of CN101441602A publication Critical patent/CN101441602A/en
Application granted granted Critical
Publication of CN101441602B publication Critical patent/CN101441602B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • G06F21/80Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0602Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
    • G06F3/062Securing storage systems
    • G06F3/0622Securing storage systems in relation to access
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0638Organizing or formatting or addressing of data
    • G06F3/0644Management of space entities, e.g. partitions, extents, pools
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/10Digital recording or reproducing

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Human Computer Interaction (AREA)
  • Computer Hardware Design (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Storage Device Security (AREA)
  • Signal Processing For Digital Recording And Reproducing (AREA)

Abstract

The invention discloses a device for protecting data of a hard disk, and a method for protecting a hard disk, a computer and the data of the hard disk. The device for protecting the data of the hard disk comprises a first generation module and a sending module, wherein the first generation module is used for generating a hard disk attribute setting command with a unique command code; the hard disk attribute setting command is used for setting a read-write attribute of a hard disk memory region; and the sending module is used for sending the hard disk attribute setting command. The device has the advantages of no extra hardware expense, good portability, strong reliability and safety.

Description

Hard disc data protector, hard disk, computing machine and hard disk data protection method
Technical field
The present invention relates to guarantee to store the technical field of data security, particularly a kind of hard disc data protector, hard disk, computing machine and hard disk data protection method.
Background technology
Along with the widespread use of computing machine, the hard disc data safety problem more and more causes people's attention, continues to bring out based on the hard disk data protection technology.Current; be protection hard disk particular data district; usually adopt following several modes: hardware adds software mode and simple software mode; wherein hardware adds software mode and comprises again: hard disk protecting card, single hard disk isolation card and this several types of hard disk protection device; and simple software mode comprises: revise the mode of the driver under BIOS and change, the installing operating system, below variety of way is described respectively.
The hard disk protecting card mode adopts " anti-writing " principle, isolates protecting the write operation of subregion from hardware signal.While is along with the development of hard disk protection card technique; further expanded the hard disk protection card technique; it realizes data protection function according to the hard drive space that the fdisk situation takies a fixed size as buffer zone; carry out data backup; or cushion mapping; yet the hard disk protecting card mode needs certain hardware cost, perhaps needs to consume certain hard drive space resource.
Single hard disk isolation card mode is by certain hardware device and corresponding software; intercepting hard-disk interface signal; obtain the address signal of disk read-write; after being converted to logical address, the specified hard disc data field is protected, realized isolating between hard disk areas; its application is wider; but also need certain hardware cost, and because of the difference of hard disk, and bring the difficulty of support maintenance.
And the hard disk protection device is by adopting some specific processor or circuit arrangements; intercepting hard-disk interface signal; address signal when obtaining disk read-write; after being converted to logical address; control the read-write of hard disk again, thereby realize the function in protection particular data district, and this method needs hardware cost; and need the computer system of existing standard design is changed, make troubles.
As can be seen from the above description, adopt the mode of combination of hardware software to realize that hard disk data protection all needs to increase hardware cost, also can bring the problem of corresponding maintenance thus, therefore, the hard disk data protection method of software mode occurred.
Revise the input-output system mode and interrupt (INT13) by the read-write of change hard disc data, thereby the district backs up, protects to the hard disk particular data, this mode need not extra cost of device, but Interrupt Service Routine causes the compatibility issue with some application easily by the intercepting change; And at present a lot of operating systems do not rely on the BIOS Interrupt Service Routine, need the specific driving under the compounding practice system to realize that easily cause compatibility issue, platform transplantation is relatively poor.
By change, the mode of driver under the installing operating system by combining with operating system, thereby realize the protection in hard disk particular data district, this mode depends on operating system kernel, and the invasion and attack of susceptible viral or illegal software, illegal operation bring certain influence to security; Need to change according to the type of operating system, platform transplantation is relatively poor.
Summary of the invention
The purpose of the embodiment of the invention provides a kind of hard disc data protector, hard disk, computing machine and hard disk data protection method, under the situation that does not increase extra hardware expense, realizes reliable, safe hard disk data protection.
One embodiment of the present of invention provide a kind of hard disk protection device, comprising:
First generation module, be used to generate hard disk attribute order is set with unique command code, described hard disk attribute is provided with the read-write properties that order is used to be provided with hard disk memory region, described hard disk attribute is provided with and comprises unique command code in the order at least, the hard disk memory region information and the read-write properties configuration information that need to be provided with, described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, described hard disk memory region is set for not readable but can write, described hard disk memory region is set for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Sending module is used to send described hard disk attribute order is set;
Described first generation module specifically is used for when the user selects to enable the Intranet system, and generating interior barrier is set is that hard disk attribute readable and that can write is provided with order;
Described sending module specifically is used to send described hard disk attribute order is set, make described in the barrier be set to readable and can write; And
Described first generation module specifically is used for when the user selects to enable the outer net system, and it is not readable generating described interior barrier is set and hard disk attribute that can not write is provided with order;
Described sending module specifically is used to send described hard disk attribute order is set, make described in the barrier be set to not readable and can not write.
An alternative embodiment of the invention provides a kind of hard disk, comprising:
First register, be used to receive and store hard disk attribute order is set with unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Wherein, described unique command code and read-write properties configuration information are to be used for the pairing hard disk memory region of described hard disk memory region information is carried out the information that read-write properties are provided with,
Described first register is used for when the user selects to enable the Intranet system, and the barrier was that hard disk attribute readable and that can write is provided with order in reception and storage were provided with; When the user selected to enable the outer net system, reception and storage were provided with described interior barrier and for not readable and hard disk attribute that can not write order are set.
An alternative embodiment of the invention provides a kind of data guard method of hard disk, and described method is applied to include in the data system of hard disk, may further comprise the steps:
Receive hard disk attribute order is set, described hard disk attribute is provided with order and has unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
According to described unique command code and read-write properties configuration information the pairing hard disk memory region of hard disk memory region information is carried out the read-write properties setting;
Wherein, described reception hard disk attribute is provided with order, according to described unique command code and read-write properties configuration information the pairing hard disk memory region of hard disk memory region information is carried out the read-write properties setting and comprises:
When the user selects to enable the Intranet system, receive be provided with in the barrier be that hard disk attribute readable and that can write is provided with order, and according to described hard disk attribute the described interior barrier of order is set and is set to readable and can writes;
When the user selects to enable the outer net system, receive be provided with described in the barrier for not readable and hard disk attribute that can not write order is set, and according to described hard disk attribute the described interior barrier of order is set and is set to not readable and can not writes.
An alternative embodiment of the invention provides a kind of computing machine, comprising:
Processor;
Display is connected with described processor;
Hard disk links to each other with described processor, is used to store data,
Wherein, described hard disk comprises:
First register, be used to receive and store hard disk attribute order is set with unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Wherein, described unique command code and read-write properties configuration information are to be used for the pairing hard disk memory region of described hard disk memory region information is carried out the information that read-write properties are provided with,
Described first register is used for when the user selects to enable the Intranet system, and the barrier was that hard disk attribute readable and that can write is provided with order in reception and storage were provided with; When the user selected to enable the outer net system, reception and storage were provided with described interior barrier and for not readable and hard disk attribute that can not write order are set.
One or more embodiment of the present invention has following beneficial effect at least:
At first, because this programme is in the firmware (firm ware) at hard disk, to expand some interface commands, realize with the order of software transmission interface, so need not extra hardware expense;
Secondly, because it only depends on ata command, do not rely on computer hardware system or operating system, transplantability is better;
At last, only need hard disk firmware change to support this function, cooperate some software controls during practical application, as passing through basic input output system of computer (BIOS) change, or design and develop some application software, and just can conveniently realize, avoid increasing system cost, this scheme has stronger reliability, security based on bottom firmware.
Description of drawings
Fig. 1 is the brief configuration synoptic diagram of hard disk;
Fig. 2 is the schematic flow sheet of data guard method of the hard disk protection device of the embodiment of the invention;
Fig. 3 is that the storage area of hard disk is divided the synoptic diagram for storage block.
Embodiment
The hard disc data protector of the embodiment of the invention, hard disk, computing machine and hard disk data protection method are by the firmware module (Firmware) in the change hard disk; the increase hard disk is provided with order (Set Command) and realizes; send corresponding hard-disk interface order to hard disk; realize the attribute setting in hard disk logical address zone, with the data of protection hard disk specific region.
Before embodiments of the present invention is described in detail, earlier the hard disk structure is necessarily illustrated, the present invention can better be understood.
As shown in Figure 1, hard disk generally comprises memory module, control module and driver module, wherein:
Memory module is used to store data, and the position of data in memory module determined by LBA (Logic BlockAddress, LBA (Logical Block Addressing));
Control module comprises firmware unit and steering logic unit again, wherein is provided with in this firmware unit:
Input command block register (Input Command Block Register) is the register that sends to the hard disk end;
Output command block register (Output Command Block Register) group is the register of receiving from the hard disk termination;
Error code output register (Error outputs Register), the status register that returns for fill order (or not fill order) back hard disc apparatus.
In specific embodiments of the invention, be elaborated, can certainly realize based on other hard-disk interface ordering norms with existing ATA standard.
The hard disk protection device of the embodiment of the invention comprises:
First generation module, be used for selecting according to the user, utilize existing ATA standard to generate hard disk attribute order is set, described hard disk attribute is provided with the read-write properties that order is used to be provided with hard disk memory region, this hard disk attribute is provided with order and has unique command code, and comprise hard disk memory region information and read-write properties configuration information that needs are provided with in the order that sends, this hard disk memory region information utilizes LBA to transmit;
Wherein, the read-write properties configuration information comprises:
Readable but can not write, only with reading of data, it is invalid to write data;
Not readable but can write, write data only, reading of data is invalid data (0FFH);
Not readable and can not write; Reading of data is invalid data 0FFH), it is invalid to write data; And
Readable and can write normal condition.
First sending module is used for hard disk attribute is provided with the input command block register that order sends to the hard disk end.
Control module is provided with corresponding hard disk memory region according to the hard disk memory region information that hard disk attribute is provided with command code, read-write properties configuration information and needs setting in the order, and these hard disk memory region read-write properties are set to: readable but can not write, not readable but can write, not readable and can not write and readable and can write.
Above-mentioned hard disk protection device can be the integrated BIOS of being arranged at, and also can be the module that is provided with separately, and simultaneously, this disk read-write attribute is provided with and can be provided with when hard disk powers on, and also can be provided with in the hard disk operational process.
Certainly, before realizing the method for the embodiment of the invention, need know whether support disc storage area read-write properties setting of hard disk earlier,, can instruct by identification equipment and obtain hard disk and whether support the setting of hard disk memory region read-write properties at this.
As shown in the table as the information of obtaining by the identification equipment instruction.
Figure GSB00000283584800061
Figure GSB00000283584800071
Bit 6 is 1 among the Word Offset 84 (Command set/feature supported extension), expresses support for the setting of hard disk memory region read-write properties.
The hard disk data protection method of the embodiment of the invention comprises as shown in Figure 2:
Step 21 receives hard disk attribute order is set, and described hard disk attribute is provided with order and has unique command code;
This hard disk attribute is provided with order and generates based on the ATA standard, has unique command code, and comprises that hard disk memory region information and attribute configuration information that needs are provided with, this hard disk memory region information utilize the LBA transmission;
Wherein, described attribute configuration information comprises: readable but can not write, not readable but can write, not readable and can not write and readable and can write.
Step 22 is carried out the read-write properties setting according to unique command code that hard disk attribute is provided with in the order to the hard disk memory region in the described hard disk.
The hard disk memory region information that command code, attribute configuration information and needs setting in the order are set according to hard disk attribute is read and write setting to corresponding hard disk memory region, and these hard disk memory region read-write properties are set to: readable but can not write, not readable but can write, not readable and can not write or readable and can write.
Certainly, after the read-write properties of above-mentioned storage area are set, should recover it, can be undertaken this moment by dual mode, as described below.
First kind of mode directly is used to be provided with the hard disk areas read-write properties and is hard disk attribute readable and that can write and order is set reverts to the read-write properties of the storage area of correspondence readable and can write.
The second way generates the hard disk memory region read-write properties according to existing ATA standard and recovers order, and these hard disk memory region read-write properties are recovered order and are used for read-write properties with hard disk memory region and revert to readable and can write.
The difference of the two is that first kind of mode is different with the command code of the order of second way employing, and simultaneously, first kind of mode is provided with at particular memory region, and the second way can be provided with at all storage areas.
Adopt the described method of Fig. 2, owing to need obtain the LBA of the hard disk memory region that needs setting, this is to the general user, possible comfort level is not enough, therefore, and in the method for the embodiment of the invention, further generate hard disk and divide block command according to existing ATA standard, described hard disk divides block command to be used for the storage area of hard disk is divided into continuous a plurality of storage blocks, promptly the end address of last storage block (LBA) add 1 be the back one storage block start address, this order needs to comprise at least:
Unique command code; And
The number of storage block.
After hard disk was divided into a plurality of storage blocks, hard disk attribute was provided with the hard disk memory region information that needs in the order to be provided with and utilizes storage block to identify.
After the read-write properties of hard disk memory region are set, should read this regional read-write properties, therefore, the hard disk protection device also comprises:
Second generation module, be used for generating the hard disk attribute reading order according to existing ATA standard, described hard disk attribute reading order is used to read the read-write properties of hard disk memory region, this hard disk attribute reading order has unique command code, and comprise the hard disk memory region information that need read, this hard disk memory region information utilizes LBA to transmit;
Second sending module is used to send described hard disk and divides block command.
Be that example describes with storage block shown in Figure 3 below.
As shown in Figure 3, the storage area of this hard disk is divided for N storage block, is respectively:
First storage block, start address are sLBA 1, the end address is eLBA 1
Second storage block, start address are sLBA 2(eLBA 1+ 1), the end address is eLBA 2
N-1 storage block, start address are sLBA N-1, the end address is eLBA N-1
N storage block, start address are sLBA N, the end address is eLBA N
Certainly, above-mentioned storage block is continuous, and discontinuous storage block can certainly be set, and its difference only is the difference of LBA, is not described in detail at this.
Be set to readable can not writing as needs n storage block, the start address of then obtaining the n storage block is sLBA N-1, the end address is eLBA N-1After, the hard disk attribute that sends the ATA form to the hard disk end is provided with order, and this hard disk attribute is provided with and comprises sLBA in the order N-1, the end address is sLBA N-1, and also comprise:
Corresponding command code; With
Hard disk memory region is set is set to the readable information that can not write.
Because in the existing ATA standard, the 0th, the 1st, the 2nd and the 3rd of Device belongs to the reservation position, therefore, can select two to carry out the read-write properties setting from these 4 positions.
At this, the command code that the hard disk attribute of supposing to be provided with hard disk memory region is provided with order is B1H, and then the input command block register is as follows:
Figure GSB00000283584800091
Wherein, na represents that this position do not pay close attention to, and the value of command code register is B1H, and the pairing storage block of the value of Sector Count storer sign operation, DEV sign hard disk principal and subordinate attribute among the Device, 0 and 1 of Device is respectively applied for read and write control, wherein:
WRITE is that 1 expression sets a property to writing, and is that 0 expression sets a property to writing;
READ is that 1 expression sets a property to readable, is that 0 expression sets a property to not readable.
When WRITE is 1, and READ is 0 o'clock, and the hard disk end can carry out corresponding operating, and the n storage block is set, and (start address is sLBA n, the end address is eLBA n) attribute for writing but not readable;
When WRITE is 1, and READ is 1 o'clock, and the hard disk end can carry out corresponding operating, and the n storage block is set, and (start address is sLBA n, the end address is eLBA n) attribute for writing and readable;
When WRITE is 0, and READ is 0 o'clock, and the hard disk end can carry out corresponding operating, and the n storage block is set, and (start address is sLBA n, the end address is eLBA n) attribute for writing and not readable;
When WRITE is 0, and READ is 1 o'clock, and the hard disk end can carry out corresponding operating, and the n storage block is set, and (start address is sLBA n, the end address is eLBA n) attribute for writing but readable.
Can realize setting by above-mentioned processing to the read-write properties of particular memory region, and situation about not being provided with at storage area, the read-write properties of this storage area are readable and can write.
Hard disk memory region is being carried out after read-write properties are provided with, storage area can return one group of data of output command block register, and the output command block register is as shown in the table:
Figure GSB00000283584800101
Wherein:
Na represents that this position do not pay close attention to, and can arbitrarily fill in;
DEV represents that hard disk master (master) is from (slave) attribute;
BSY, the sign busy state is that 0 expression command execution finishes;
DRDY, the marking equipment state need be set to 1;
DF, the marking equipment fault need be clearly 0;
DRQ, the marking equipment request need be clearly 0;
ERR, error condition need be clearly 0.
When supporting 48 the hard disk setting area read-write properties of LBA, only need to increase HOB information and get final product, its command code is B2H, input command block register following two is represented:
Figure GSB00000283584800102
Figure GSB00000283584800103
Two top tables represent that respectively wherein HOB control is controlled by hard disk IO register-device control register (Device ControlRegister) to the setting of the hard disk of not supporting 48 LBA and 48 LBA of support.See the following form:
Device?Register 7 6 5 4 3 2 1 0
Bit HOB r r r r SRST nIEN 0
Wherein:
R, Reserved keeps the position;
SRST, software reset position;
NIEN allows hard disc apparatus to send INTRQ.
And the output command block register is same as described above, no longer describes.
Certainly, after the read-write properties of hard disk areas are set, should read the read-write properties of this specific region, the command code of this hard disk attribute reading order is B3H, and the input command block register is as shown in the table:
Figure GSB00000283584800111
Above-mentioned hard disk attribute reading order represents to read the read-write properties of n storage block.
And hard disk memory region is carried out after read-write properties read, storage area can return one group of data of output command block register, and the output command block register is as shown in the table:
Can obtain the read-write properties of n storage block according to the 0th of the Device register and the 1st 's value, wherein:
WRITE is that 1 expression sets a property to writing, and is that 0 expression sets a property to writing;
READ is that 1 expression sets a property to readable, is that 0 expression sets a property to not readable.
The front is mentioned, and for convenience the user is provided with, and hard disk is divided into a plurality of storage blocks, and at this, it is B4H that the command code that hard disk divides block command is set, and then the input command block register is as follows:
Figure GSB00000283584800113
Figure GSB00000283584800121
Above-mentioned order is represented hard disk is divided into n+1 storage block.
Its corresponding output command block register is as follows:
Figure GSB00000283584800122
Certainly, after hard disk was divided into a plurality of storage areas, the user also can divide block message to obtain the branch block message that hard disk is obtained in order by hard disk.
It is B5H that the command code that hard disk divides block message to obtain order is set, and then the input command block register is as follows:
Figure GSB00000283584800123
Above-mentioned order is represented to obtain hard disk and is divided block message.
Its corresponding output command block register is as follows:
Figure GSB00000283584800124
Wherein, the value in the above-mentioned Sector Count register is a hard disk piecemeal number, and promptly hard disk is divided into n+1 storage block.
Also can adopt above-mentioned mode for the hard disk of supporting 48 LBA, its difference only is whether to support 48 LBA, does not repeat them here.
Mention in the above, the embodiment of the invention can adopt dual mode to recover the hard disk setting, in the second way, adopts the disk read-write attribute to recover order and realizes, the command code that disk read-write attribute recovery order is set is B6H, and then the input command block register is as follows:
Figure GSB00000283584800131
Its corresponding output command block register is as follows:
Figure GSB00000283584800132
The computing machine of the embodiment of the invention comprises hard disk, and hard disk comprises:
First register is used to receive the hard disk attribute with unique command code order is set;
First hard disk attribute is provided with module, and the command code that is used for being provided with according to hard disk attribute order is carried out the read-write properties setting to hard disk memory region.
Hard disk also comprises:
Second register is used to receive the hard disk with unique command code and divides block command;
Second hard disk attribute is provided with module, divides the command code in the block command to mark off storage block from hard disk memory region according to hard disk.
Hard disk also comprises:
The 3rd register is used to receive the hard disk attribute reading order with unique command code;
The 3rd hard disk attribute is provided with module, reads the hard disk memory region read-write properties according to the command code in the hard disk attribute reading order.
Hard disk also comprises:
The 4th register is used to receive the disk read-write attribute with unique command code and recovers order;
The 4th hard disk attribute is provided with module, and the command code that is used for recovering order according to the disk read-write attribute reverts to default conditions with the read-write properties of hard disk memory region.
This hard disk attribute is provided with module and can be realized by the controller of existing hard disk.
Wherein, first register, second register, the 3rd register and the 4th register can be identical or different registers;
First hard disk attribute is provided with module, second hard disk attribute and module, the 3rd hard disk attribute are set module, the 4th hard disk attribute are set module is set can be identical or different modules;
Simultaneously, above-mentioned first sending module of mentioning, second sending module etc. also can be identical or different modules.
Utilize a real example that the application of the inventive method and device is described below.
Suppose two operating systems are installed in the hard disk, be respectively applied for outer net and Intranet, when switching to the outer net system, can't obtain, change intranet data, when using the Intranet system, the data sharing of alternative realization outer net.
Therefore, at first the hard disc data zone is divided into 3 zones:
The A district, the protection place of safety need set a property to not readable and can not write, and the user is invisible, is the place of safety of protecting, and is used to preserve some system's configuration informations, as hard disk partition table information;
The B district, use for the Intranet system in interior barrier
The C district, mainly use for the outer net system in outer barrier.
Behind system's electrifying startup, utilize hard disk to divide block command that the hard disc data zone is divided into 3 parts: A district, B district and C district;
The transmission command code is that the hard disk attribute of B1H is provided with order, and the A district is set to not readable and can not writes;
Judge that it still is the outer net system that the user enables the Intranet system;
When the user selects to enable the Intranet system, change hard disk partition table information, the concurrent command code of sending is that the hard disk attribute of B1H is provided with order, the B district is set to readable and can writes, and also the C district can be set simultaneously certainly;
When the user selects to enable the outer net system, change hard disk partition table information, the concurrent command code of sending is that the hard disk attribute of B1H is provided with order, the B district is set to not readable and can not writes.
By above-mentioned mode, the read-write properties of hard disk memory region can be set effectively, protection hard-disc storage data.
The above only is embodiments of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.

Claims (16)

1. a hard disk protection device is characterized in that, comprising:
First generation module, be used to generate hard disk attribute order is set with unique command code, described hard disk attribute is provided with the read-write properties that order is used to be provided with hard disk memory region, described hard disk attribute is provided with and comprises unique command code in the order at least, the hard disk memory region information and the read-write properties configuration information that need to be provided with, described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, described hard disk memory region is set for not readable but can write, described hard disk memory region is set for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Sending module is used to send described hard disk attribute order is set;
Described first generation module specifically is used for when the user selects to enable the Intranet system, and generating interior barrier is set is that hard disk attribute readable and that can write is provided with order;
Described sending module specifically is used to send described hard disk attribute order is set, make described in the barrier be set to readable and can write; And
Described first generation module specifically is used for when the user selects to enable the outer net system, and it is not readable generating described interior barrier is set and hard disk attribute that can not write is provided with order;
Described sending module specifically is used to send described hard disk attribute order is set, make described in the barrier be set to not readable and can not write.
2. device according to claim 1 is characterized in that, described device also comprises:
Second generation module is used to generate the hard disk with unique command code and divides block command, and described hard disk divides block command to be used for described hard disk memory region is divided at least two storage blocks;
Second sending module is used to send described hard disk and divides block command.
3. device according to claim 1 is characterized in that, described device also comprises:
The 3rd generates module, is used to generate the hard disk attribute reading order with unique command code, and described hard disk attribute reading order is used to read the read-write properties of described hard disk memory region;
The 3rd sending module is used to send described hard disk attribute reading order.
4. device according to claim 3 is characterized in that, described device also comprises:
The 4th generation module is used to generate the disk read-write attribute with unique command code and recovers order, and described disk read-write attribute recovers order and is used for described read-write properties are reverted to default conditions;
The 4th sending module is used to send described disk read-write attribute and recovers order.
5. a hard disk is characterized in that, comprising:
First register, be used to receive and store hard disk attribute order is set with unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Wherein, described unique command code and read-write properties configuration information are to be used for the pairing hard disk memory region of described hard disk memory region information is carried out the information that read-write properties are provided with,
Described first register is used for when the user selects to enable the Intranet system, and the barrier was that hard disk attribute readable and that can write is provided with order in reception and storage were provided with; When the user selected to enable the outer net system, reception and storage were provided with described interior barrier and for not readable and hard disk attribute that can not write order are set.
6. hard disk according to claim 5 is characterized in that, described hard disk also comprises:
Second register is used to receive the hard disk with unique command code and divides block command;
Wherein, to divide block command be the order that is used for described hard disk memory region is divided at least two storage blocks to described hard disk.
7. hard disk according to claim 5 is characterized in that, described hard disk also comprises:
The 3rd register is used to receive the hard disk attribute reading order with unique command code;
Wherein, described hard disk attribute reading order is the order that is used to read the read-write properties of described hard disk memory region.
8. hard disk according to claim 7 is characterized in that:
The 4th register is used to receive the disk read-write attribute with unique command code and recovers order;
Wherein, described disk read-write attribute recovers order for being used for described read-write properties are reverted to the order of default conditions.
9. the data guard method of a hard disk, described method is applied to include in the data system of hard disk, it is characterized in that, may further comprise the steps:
Receive hard disk attribute order is set, described hard disk attribute is provided with order and has unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
According to described unique command code and read-write properties configuration information the pairing hard disk memory region of hard disk memory region information is carried out the read-write properties setting;
Wherein, described reception hard disk attribute is provided with order, according to described unique command code and read-write properties configuration information the pairing hard disk memory region of hard disk memory region information is carried out the read-write properties setting and comprises:
When the user selects to enable the Intranet system, receive be provided with in the barrier be that hard disk attribute readable and that can write is provided with order, and according to described hard disk attribute the described interior barrier of order is set and is set to readable and can writes;
When the user selects to enable the outer net system, receive be provided with described in the barrier for not readable and hard disk attribute that can not write order is set, and according to described hard disk attribute the described interior barrier of order is set and is set to not readable and can not writes.
10. method according to claim 9 is characterized in that, the described unique command code that is provided with according to hard disk attribute in the order was carried out the read-write properties setting to the hard disk memory region in the described hard disk before, described method also comprised:
The hard disk that reception has unique command code divides block command;
Divide the unique command code in the block command that described hard disk memory region is divided at least two storage blocks according to described hard disk.
11. method according to claim 9 is characterized in that, described method also comprises:
Reception has the hard disk attribute reading order of unique command code;
Read the read-write properties of described hard disk memory region according to the unique command code in the hard disk attribute reading order.
12. method according to claim 11 is characterized in that, described read the read-write properties of described hard disk memory region according to the unique command code in the hard disk attribute reading order after, described method also comprises:
The disk read-write attribute that reception has unique command code recovers order;
Unique command code of recovering in the order according to described disk read-write attribute reverts to default conditions with described read-write properties.
13. a computing machine comprises:
Processor;
Display is connected with described processor;
Hard disk links to each other with described processor, is used to store data;
It is characterized in that described hard disk comprises:
First register, be used to receive and store hard disk attribute order is set with unique command code, described hard disk attribute is provided with hard disk memory region information and the read-write properties configuration information that comprises at least in the order that unique command code, needs are provided with, and described read-write properties configuration information comprises following four types: described hard disk memory region is set is readable but can not write, be provided with described hard disk memory region for not readable but can write, be provided with described hard disk memory region for not readable and can not to write and be provided with described hard disk memory region be readable and can write;
Wherein, described unique command code and read-write properties configuration information are to be used for the pairing hard disk memory region of described hard disk memory region information is carried out the information that read-write properties are provided with,
Described first register is used for when the user selects to enable the Intranet system, and the barrier was that hard disk attribute readable and that can write is provided with order in reception and storage were provided with; When the user selected to enable the outer net system, reception and storage were provided with described interior barrier and for not readable and hard disk attribute that can not write order are set.
14. computing machine according to claim 13 is characterized in that, described hard disk also comprises:
Second register is used to receive the hard disk with unique command code and divides block command;
Wherein, to divide block command be the order that is used for described hard disk memory region is divided at least two storage blocks to described hard disk.
15. computing machine according to claim 13 is characterized in that, described hard disk also comprises:
The 3rd register is used to receive the hard disk attribute reading order with unique command code;
Wherein, described hard disk attribute reading order is the order that is used to read the read-write properties of described hard disk memory region.
16. computing machine according to claim 13 is characterized in that, it is characterized in that, described hard disk also comprises:
The 4th register is used to receive the disk read-write attribute with unique command code and recovers order;
Wherein, described disk read-write attribute recovers order for being used for described read-write properties are reverted to the order of default conditions.
CN2007101776626A 2007-11-19 2007-11-19 Hard disk data protection device, hard disk, computer and hard disk data protection method Active CN101441602B (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN2007101776626A CN101441602B (en) 2007-11-19 2007-11-19 Hard disk data protection device, hard disk, computer and hard disk data protection method
JP2008294801A JP2009129453A (en) 2007-11-19 2008-11-18 Hard disk data protection device, hard disk, computer, and hard disk data protection method
KR1020080114360A KR20090051705A (en) 2007-11-19 2008-11-18 Hard disk data protecting device, hard disk, computer and hard disk data protecting method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2007101776626A CN101441602B (en) 2007-11-19 2007-11-19 Hard disk data protection device, hard disk, computer and hard disk data protection method

Publications (2)

Publication Number Publication Date
CN101441602A CN101441602A (en) 2009-05-27
CN101441602B true CN101441602B (en) 2011-01-26

Family

ID=40726047

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2007101776626A Active CN101441602B (en) 2007-11-19 2007-11-19 Hard disk data protection device, hard disk, computer and hard disk data protection method

Country Status (3)

Country Link
JP (1) JP2009129453A (en)
KR (1) KR20090051705A (en)
CN (1) CN101441602B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112083879B (en) * 2020-08-13 2023-04-07 杭州电子科技大学 Physical partition isolation and hiding method for storage space of solid state disk
CN113076564B (en) * 2021-04-13 2022-10-14 山东北斗云信息技术有限公司 Hard disk protection method, device and equipment based on Beidou positioning and storage medium

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1564141A (en) * 2004-04-08 2005-01-12 王启祥 Attribute setup method for computer hard disk zoning, and its appliance
CN1952869A (en) * 2005-10-21 2007-04-25 国际商业机器公司 Apparatus, system, and method for writing data to protected partitions of storage media

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3085536B2 (en) * 1992-10-05 2000-09-11 三菱電機株式会社 Optical disk and optical disk drive
JP2001142654A (en) * 1999-11-17 2001-05-25 Melco Inc External storage device and access controlling method
JP2002132583A (en) * 2000-10-20 2002-05-10 Sony Corp Data processing apparatus, data storage device and data processing method, and program providing medium
US6868496B2 (en) * 2001-01-16 2005-03-15 Gateway, Inc. Host protected area (HPA) duplication process
JP2003085025A (en) * 2001-09-13 2003-03-20 Seiko Instruments Inc Attribute control system of storage device
JP2005157542A (en) * 2003-11-21 2005-06-16 Matsushita Electric Ind Co Ltd Recording medium, and method for restricting access to the medium
KR100532505B1 (en) * 2004-02-17 2005-11-30 삼성전자주식회사 Method for partitioning a hard disk drive and apparatus therefore
JP2006127106A (en) * 2004-10-28 2006-05-18 Hitachi Ltd Storage system and its control method
JP4667014B2 (en) * 2004-11-18 2011-04-06 キヤノン株式会社 Storage management device and control method thereof
US7694096B2 (en) * 2005-10-21 2010-04-06 International Business Machines Corporation Apparatus, system, and method for implementing protected partitions in storage media

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1564141A (en) * 2004-04-08 2005-01-12 王启祥 Attribute setup method for computer hard disk zoning, and its appliance
CN1952869A (en) * 2005-10-21 2007-04-25 国际商业机器公司 Apparatus, system, and method for writing data to protected partitions of storage media

Also Published As

Publication number Publication date
CN101441602A (en) 2009-05-27
KR20090051705A (en) 2009-05-22
JP2009129453A (en) 2009-06-11

Similar Documents

Publication Publication Date Title
JP6228347B2 (en) Storage apparatus and storage device
EP1674980B1 (en) Redundant SAS storage virtualization subsystem and system using the same, and controller and method therefor
US8892840B2 (en) Computer system and data migration method
US8145828B2 (en) Flash memory-mounted storage apparatus
CN103534688B (en) Data reconstruction method, memory device and storage system
US20110004708A1 (en) Computer apparatus and path management method
CN104202197A (en) Equipment management method and device
GB2299186A (en) Data storage system and storage managing method
CN1598755A (en) Jbod subsystem and external emulation controller thereof
JP2001337792A (en) Disk array device
US11119869B2 (en) Auxiliary storage device providing independent backup and recovery functions and apparatus employing same
CN102819480A (en) Computer and method for monitoring memory thereof
CN102207905A (en) System recovery method, storage media controller and storage system
CN101441602B (en) Hard disk data protection device, hard disk, computer and hard disk data protection method
CN102760109A (en) Data communication method, device and system
JP5340411B2 (en) Independent drive power control
CN102609223A (en) Redundant array of independent disk system and initializing method thereof
TWI427624B (en) Hard disk data protection devices, hard disk, computer and hard disk data protection methods
CN101770799A (en) Mobile hard disk powered by USB bus
JP2000284982A (en) Access controller and computer readable storage medium storing program
CN100359454C (en) Control system for storage device
JPH1124849A (en) Fault recovery method and device therefor
CN103164289A (en) Switching method and switching system for physical layer of storage device
JP2011076528A (en) Method and device for providing redundancy to raid card
CN101321030B (en) Write-enabling control method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant