CN101588371A - Method based on internet for protecting memory device - Google Patents
Method based on internet for protecting memory device Download PDFInfo
- Publication number
- CN101588371A CN101588371A CN 200910107860 CN200910107860A CN101588371A CN 101588371 A CN101588371 A CN 101588371A CN 200910107860 CN200910107860 CN 200910107860 CN 200910107860 A CN200910107860 A CN 200910107860A CN 101588371 A CN101588371 A CN 101588371A
- Authority
- CN
- China
- Prior art keywords
- protection
- internet
- identity
- memory device
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Databases & Information Systems (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a method based on internet for protecting memory devcie, the protected object is memory device, includes that proceeding read-write protection of data security to the protected object, encrypting the data, proceeding identify certified to users with legal identity, and refuse illegal users, which is characterized in that, internet is applied to proceed global online identification. Password protection is used to identify legal users identity in data of device program control area of the protected object, counting, real-time displaying and monitoring all the illegal users through a server management platform of manufacturer. The invention protects all data of storage device, and protects rights and interests of users with legal identity, and provides identity registration information management service to users with legal identity for life. The invention provides protection to users data security and to operative mode of the protected object.When the protected object is lost or used by users with illegal identity, the invention can provide related information of recourse or rights protection to users with legal identity.
Description
Technical field
The present invention relates to the memory device protection, particularly relate to a kind of protection method of memory device based on the Internet.
Background technology
The resist technology of existing memory device is varied, and as the data protection system DPS of Quantum Corporation, step and open up the data protection system Maxsafe of company, and the protection system Data Lifeguard of West Digital (Data SafeGuide).The representative of the trend of following memory device development is solid state hard disc (Solid State Disk, initialism is SSD), its interface specification and definition, function and using method and generic storage equipment are identical, also basic consistent on product design and size, comprise 3.5 ", 2.5 " and 1.8 with generic storage equipment " etc. type.The resist technology of relevant solid state hard disc; the at present rarely seen CN101403996A of having of Chinese patent disclosed " a kind of data security protection method and device ", CN101398749A disclosed " a kind of methods, devices and systems of static state attrition balancing ", CN101149664A disclosed " solid state hard disc and handle its method of managing data ", and CN101030167A disclosed " block management method of flash memory ".The guard method of these SSD is not carried out registration management to validated user, but and just the validated user identity in the data of SSD subscriber's local operating space is differentiated the protection that accesses to your password, the problem that have transreplication, easily cracks.Method is not seen as yet that report is arranged as for the online protection of the network that relates to SSD (storage network safeguard, initialism are SNS).
Summary of the invention
Technical problem to be solved by this invention is to remedy above-mentioned the deficiencies in the prior art, proposes a kind of protection method of memory device based on the Internet of innovation.Help the memory device of online its use of protection of validated user network,, for example judge basic geographical position according to disabled user's IP address for validated user is provided at line technology support and equipment loss information; Also be the data that validated user recovery file system and reduction are protected, the firmware of online upgrading managing memory apparatus, and effectively refuse the memory device that the disabled user uses validated user.This protection method of memory device based on the Internet is particularly useful for SSD is implemented protection.
Technical problem of the present invention is solved by the following technical solutions:
This protection method of memory device based on the Internet, object of protection is a memory device, comprise object of protection is carried out the data security read-write protection, data are encrypted, legal identity characteristic holder is carried out the identity discriminating, and the refusal disabled user uses.
The characteristics of this protection method of memory device based on the Internet are:
Adopt the Internet to carry out global online evaluation.
Technical problem of the present invention adopts following further technical scheme to be solved:
This protection method of memory device based on the Internet also comprises the validated user identity in the data in object of protection facility control program district is differentiated the protection that accesses to your password.Existing partitioning tool and operating system can't be operated the data in facility control program district at all, promptly enable to read the accurate byte location that machine code also can't be known its secret key.
Global online evaluation is carried out in described employing the Internet, comprise and issue user's Accreditation System on the internet, and after user applies SNS success, by server end the object of protection of client is enabled the real-time network on-line monitoring immediately, promptly enable real-time the Internet remote supervisory program, in case object of protection is lost or is stolen, the disabled user occupies, can activate SNS safeguard protection lock, refusal continues to use, perhaps to just detinuing object of protection in user mode with telecommunication network control mode self-destruction data, to guarantee the data security of validated user, prevent illegal leakage of data and use; And have only validated user to handle to object of protection manufacturer and recover rights of using and other all authorities, recover the right to use of interior data with the telecommunication network control mode.
Described legal identity feature holder identity is differentiated, comprises providing lifelong identity registration information management service to the legal user who holds object of protection, guarantees the legal identity feature holder's of object of protection the fail safe and the legitimacy of validated user identity.
Described legal identity feature holder identity is differentiated; also comprise the online security code that carries out the network identity safety certification of filling in of user of holding object of protection by legal; through being kept at the server database of object of protection manufacturer after the dynamic encryption that adopts the conversion of MD5 irreversible encryption algorithm; carry out dual comparison from the client and server end and identify and upgrade, guarantee object of protection owner the validated user identity information extremely difficulty crack.
Further again technical scheme below technical problem of the present invention adopts is solved:
Describedly providing lifelong identity registration information management service to the legal user who holds object of protection, is that log-on message is registered by network electronic, as the validated user lifelong voucher of upgrade service after sale.
Described log-on message comprises legal identity feature holder identity, mail, liaison method, the product coding of object of protection, product serial number, product software, user key, and user profile.
Described object of protection is a memory device, and general reference is used to computer or system to satisfy permanent file layout to preserve and to recover the equipment of employed software program and data file.
Described memory device is a kind of in hard disk, floppy disk, flash memory cells store equipment and the erasable tape.
Described hard disk is a kind of among magnetic disc type hard disk and the SSD.
Preferably, described hard disk is the SSD that comprises control unit, flash memory cell.
The beneficial effect that the present invention is compared with the prior art is:
The inventive method adopts the Internet to carry out global online evaluation; validated user identity in the data of object of protection device program controlled area is differentiated the protection that accesses to your password, and add up, show in real time and supervise all disabled user colonies at manufacturer's server admin platform.Existing partitioning tool and operating system can't be operated the data of device program controlled area at all, promptly enable to read the accurate byte location that machine code also can't be known its key.The inventive method is not only protected the total data of memory device, also protect legal identity feature holder's rights and interests, provide lifelong identity registration information management service to legal identity characteristic holder, guarantee the fail safe and the legitimacy of the legal identity feature holder identity of object of protection; By the legal online security code that carries out the network identity safety certification of filling in of user of holding object of protection; after the dynamic encryption that adopts the conversion of MD5 irreversible encryption algorithm; be kept at the server database of object of protection manufacturer; carry out dual comparison from user side and server end and identify and upgrade, the legal identity feature holder identity information of guaranteeing object of protection extremely difficulty cracks.Not only provide protection, and the operating state of object of protection is protected secure user data.Lose or disabled user when using at object of protection, also can be the information that legal identity feature holder provides relevant recourse, right-safeguarding.
Embodiment
The invention will be further described below in conjunction with embodiment.
A kind of SSD guard method based on the Internet:
Client has following steps successively:
1) automatic operational network registering unit;
2) read SN, the PN sign indicating number of SSD automatically, the machine master fills in the log-on message upload server;
3) fill in machine main protection password and other information uploading server, protect to server end application SNS;
4) affirmation that passes down of the reception server end information that succeeds in registration, the machine master who is confirmed to be validated user opens SNS, uploads the machine master information of SSD in real time to server;
5) behind the security code comparison qualification result that under real-time reception server end, passes, in case find that SSD loses or stolen, occupied by the disabled user, be illegal user's prompting upload server end immediately with the machine master;
6) the SNS homepage management system of validated user login manufacturer is reported to the police, or the telephone call by manufacturer's appointment, enables the real-time online protection, activates SNS safeguard protection lock;
7) SSD receives server instruction and activates locking; enter automatic defence program immediately; system restarts; the present user of start prompting next time is illegal user; and the contact method of Displaying legal user; restarting system later on can't enter, though with this SSD be installed in other PC do from the dish still be considered as blank panel, can not read any data.
Manufacturer's server end has following steps successively:
1) issue user's Accreditation System Http on the internet: //trus.cc/register
2) with client step 2) log-on message of uploading and the product export information of manufacturer compares checking, and will verify that correct log-on message records the SNS database;
Machine main protection password and other information of the application SNS protection of 3) the client step 3) being uploaded compare checking, and will be indicated by the user of checking application SNS success, object of protection to client is enabled the real-time network on-line monitoring immediately, promptly enable real-time the Internet remote supervisory program, the instruction client is uploaded manufacturer's server with the SSD running status in real time, by manufacturer's server SSD is carried out technology comparison and updating and management firmware;
4) the SSD machine master information that client step 4) unlatching SNS is uploaded is in real time carried out the validated user authentication in real time, with on the security code of dynamic encryption of the employing MD5 irreversible encryption algorithm conversion transmitted, carry out the dual comparison authentication of network online in real time with client, be about to pass client under the security code comparison authentication result, if the comparison authentication result is correct, repeat once to compare authentication again, if the comparison authentication result is incorrect, enter step 5), the comparison authentication result is kept at manufacturer's server database, guarantees user profile uniqueness and confidentiality;
5) the machine master that the client step 5) is uploaded is that illegal user's prompting and the log-on message that deposits the SNS database in compare checking, and secondary is confirmed machine master's identity, if confirm that machine master's identity is illegal user, enters step 6);
6) reply machine master's identity validation is illegal user, and the requirement of uploading of client step 6) activates the warning of SNS safeguard protection lock, indicates the disabled user, waits the standby mandate to activate remote lock SSD;
7) receive that legal identity feature holder authorizes, and after passing through by the audit of manufacturer server, long-range immediately issue activates locking SSD instruction, activate the illegal target terminal of locking, comprise and set up server end notice of warning broadcast mechanism, initiatively go on patrol real time scan disabled user device, start the SSD that SNS effectively protects validated user, to surf the Net the disabled user and use the very first time, the normal operation of commands client SSD refusal, and the whole memory device that comprises SSD carried out data security protecting and encrypted backup: use data and file system key bytes to sample to the user earlier, backup, be compressed into a file, after encrypting, write on specific manufacturer facility control program district, or SSD primary control program district protection, other operating system all can't the described file of identification, after backup is finished to the partition information table of SSD, the original key bytes position of client user's data is carried out OXFFFF and is filled, even to guarantee that this SSD is installed in other PC to be done from dish and still be considered as blank panel; Manufacturer's master control work order among the SSD is changed to start again and fail, make it be in malfunction or blank panel factory state, all are with using per family.If violence is forced to separate open shop, the SSD master cpu enters the self-destruction program, and the interface communication element failure can't normally use the disabled user, only by validated user SSD is returned that original manufacturer is repaired or data are recovered.
Above content be in conjunction with concrete preferred implementation to further describing that the present invention did, can not assert that concrete enforcement of the present invention is confined to these explanations.For the general technical staff of the technical field of the invention, make some being equal to without departing from the inventive concept of the premise to substitute or obvious modification, and performance or purposes are identical, all should be considered as belonging to protection scope of the present invention.
Claims (10)
1, a kind of protection method of memory device based on the Internet; object of protection is a memory device; comprise object of protection is carried out the data security read-write protection, data are encrypted, legal identity characteristic holder is carried out the identity discriminating, and refusal disabled user use, it is characterized in that:
Adopt the Internet to carry out global online evaluation.
2, the protection method of memory device based on the Internet as claimed in claim 1 is characterized in that:
Also comprise the user identity in object of protection facility control program district is differentiated the protection that accesses to your password.
3, the protection method of memory device based on the Internet as claimed in claim 2 is characterized in that:
Global online evaluation is carried out in described employing the Internet; comprise and issue user's Accreditation System on the internet; and after user applies SNS success; by server end the object of protection of client is enabled the real-time network on-line monitoring immediately; promptly enable real-time the Internet remote supervisory program; in case object of protection is lost or stolen, disabled user occupies; can activate SNS safeguard protection lock; refusal continue to use, perhaps to just detinuing object of protection in user mode with telecommunication network control mode self-destruction data.
4, the protection method of memory device based on the Internet as claimed in claim 3 is characterized in that:
Described legal identity feature holder identity is differentiated, is comprised providing lifelong identity registration information management service to the legal user who holds object of protection.
5, the protection method of memory device based on the Internet as claimed in claim 4 is characterized in that:
Described legal identity feature holder identity is differentiated; also comprise the online security code that carries out the network identity safety certification of filling in of user of holding object of protection by legal; through being kept at the server database of object of protection manufacturer after the dynamic encryption that adopts the conversion of MD5 irreversible encryption algorithm, carry out dual comparison evaluation and renewal from the client and server end.
6, the protection method of memory device based on the Internet as claimed in claim 5 is characterized in that:
Describedly providing lifelong identity registration information management service to the legal user who holds object of protection, is that log-on message is registered by network electronic, as the validated user lifelong voucher of upgrade service after sale.
7, the protection method of memory device based on the Internet as claimed in claim 6 is characterized in that:
Described log-on message comprises legal identity feature holder identity, mail, liaison method, the product coding of object of protection, product serial number, product software, user key, and user profile.
8, the protection method of memory device based on the Internet as claimed in claim 7 is characterized in that:
Described memory device is a kind of in hard disk, floppy disk, flash memory cells store equipment and the erasable tape.
9, the protection method of memory device based on the Internet as claimed in claim 8 is characterized in that:
Described hard disk is a kind of among magnetic disc type hard disk and the SSD.
10, the protection method of memory device based on the Internet as claimed in claim 9 is characterized in that:
Described hard disk is the SSD that comprises control unit, flash memory cell.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910107860 CN101588371A (en) | 2009-06-11 | 2009-06-11 | Method based on internet for protecting memory device |
| PCT/CN2009/075958 WO2010142123A1 (en) | 2009-06-11 | 2009-12-24 | Method for protecting a storage device based on internet |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910107860 CN101588371A (en) | 2009-06-11 | 2009-06-11 | Method based on internet for protecting memory device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101588371A true CN101588371A (en) | 2009-11-25 |
Family
ID=41372434
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910107860 Pending CN101588371A (en) | 2009-06-11 | 2009-06-11 | Method based on internet for protecting memory device |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101588371A (en) |
| WO (1) | WO2010142123A1 (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010142123A1 (en) * | 2009-06-11 | 2010-12-16 | Wang Degao | Method for protecting a storage device based on internet |
| WO2011011952A1 (en) * | 2009-07-31 | 2011-02-03 | Wang Degao | Method for protecting storage devices based on mobile communication network |
| CN102404313A (en) * | 2010-09-28 | 2012-04-04 | 微软公司 | Object security over network |
| CN104468112A (en) * | 2014-08-13 | 2015-03-25 | 中经云数据存储科技(北京)有限公司 | Authorized access control method based on optical disc juke-box system and safety system |
| CN105183671A (en) * | 2015-09-15 | 2015-12-23 | 深圳市图美电子技术有限公司 | Method for preventing hard disk data from being modified and covered |
| CN106355112A (en) * | 2016-08-30 | 2017-01-25 | 深圳泰首智能技术有限公司 | Method of destructing data in encrypted mobile storage device and server |
| CN107679607A (en) * | 2017-08-25 | 2018-02-09 | 芜湖市振华戎科智能科技有限公司 | Exclusive personal encrypted u disk |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| BRPI0621719A2 (en) * | 2006-05-08 | 2012-06-26 | Hui Lin | method for protecting digital content using memory card encryption and decryption |
| CN101252433A (en) * | 2008-04-03 | 2008-08-27 | 张晶 | Method for combining mobile memory apparatus with network verification |
| CN101403996A (en) * | 2008-10-28 | 2009-04-08 | 成都市华为赛门铁克科技有限公司 | Data security protection method and device |
| CN101441604A (en) * | 2008-12-12 | 2009-05-27 | 成都市华为赛门铁克科技有限公司 | Solid hard disk and access protection method of the same |
| CN101588371A (en) * | 2009-06-11 | 2009-11-25 | 王德高 | Method based on internet for protecting memory device |
-
2009
- 2009-06-11 CN CN 200910107860 patent/CN101588371A/en active Pending
- 2009-12-24 WO PCT/CN2009/075958 patent/WO2010142123A1/en active Application Filing
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010142123A1 (en) * | 2009-06-11 | 2010-12-16 | Wang Degao | Method for protecting a storage device based on internet |
| WO2011011952A1 (en) * | 2009-07-31 | 2011-02-03 | Wang Degao | Method for protecting storage devices based on mobile communication network |
| CN102404313A (en) * | 2010-09-28 | 2012-04-04 | 微软公司 | Object security over network |
| CN104468112A (en) * | 2014-08-13 | 2015-03-25 | 中经云数据存储科技(北京)有限公司 | Authorized access control method based on optical disc juke-box system and safety system |
| CN105183671A (en) * | 2015-09-15 | 2015-12-23 | 深圳市图美电子技术有限公司 | Method for preventing hard disk data from being modified and covered |
| CN106355112A (en) * | 2016-08-30 | 2017-01-25 | 深圳泰首智能技术有限公司 | Method of destructing data in encrypted mobile storage device and server |
| CN107679607A (en) * | 2017-08-25 | 2018-02-09 | 芜湖市振华戎科智能科技有限公司 | Exclusive personal encrypted u disk |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2010142123A1 (en) | 2010-12-16 |
| WO2010142123A8 (en) | 2011-03-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101661441B (en) | Protecting method for USB movable storage device based on internet | |
| CN101588371A (en) | Method based on internet for protecting memory device | |
| CN100464315C (en) | Mobile memory divulgence protection method and system | |
| CN103473844B (en) | Public affairs are rented a house intelligent control method and system | |
| CN108632276B (en) | Computer network information safety system | |
| US8707444B2 (en) | Systems and methods for implementing application control security | |
| CN101635921B (en) | Protection method of memory device based on mobile communication network | |
| JP2008072613A (en) | Management system, management device, and management method | |
| CN100452908C (en) | System and method for preventing software and hardware with communication condition / function from being embezzled | |
| CN108965294A (en) | A kind of user name and cipher protection system | |
| CN101582176A (en) | Fire fighting apparatus safety-check management method | |
| CN102316449A (en) | Security terminal system and authentication and interruption method thereof | |
| CN102571823A (en) | Remote security protection method for data of flash disk | |
| CN109460675A (en) | A kind of enterprise information security management method | |
| CN112417391A (en) | Information data security processing method, device, equipment and storage medium | |
| CN104486364A (en) | Access control method based on electronic certificate | |
| CN108388779A (en) | A kind of Portable Automatic stamper machine and management system and its management control method | |
| CN101350722A (en) | Apparatus and method for controlling data security of information system | |
| CN107273725B (en) | Data backup method and system for confidential information | |
| CN103888439A (en) | Secure active network | |
| CN111236105B (en) | Parking space lock management method, device and system and parking space lock | |
| CN114036480B (en) | Security access control method and system for private application and readable storage medium | |
| CN1983291A (en) | Method and system for centrally managing code to enterprise hard disk | |
| CN113411319A (en) | Industrial internet distributed system safety access control device | |
| CN113110354A (en) | Ferry-based industrial data security system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1133502 Country of ref document: HK |
|
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20091125 |
|
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: WD Ref document number: 1133502 Country of ref document: HK |