CN101848089B - Establishment management system based on USB hardware device - Google Patents
Establishment management system based on USB hardware device Download PDFInfo
- Publication number
- CN101848089B CN101848089B CN2010101163116A CN201010116311A CN101848089B CN 101848089 B CN101848089 B CN 101848089B CN 2010101163116 A CN2010101163116 A CN 2010101163116A CN 201010116311 A CN201010116311 A CN 201010116311A CN 101848089 B CN101848089 B CN 101848089B
- Authority
- CN
- China
- Prior art keywords
- establishment
- management system
- ukey
- data
- storage chip
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses an establishment management system based on a USB hardware device, which relates to an establishment management system based on the combination of Ukey and Flash memory chip and is a management system which is combined with software and hardware, is capable of implementing the online establishment, attrition, information modification and other operations of the organs and the institutions and comprehensively replaces the paper establishment certificate. The system adopts the USB device as a hardware carrier, conforms to the USB hardware interface specification, realizes identity authentication and information encryption through the UKey part, and stores the software system and the data through the Flash memory chip part so as to become an independent, safe and portable electronic establishment certificate management system; moreover, the organs and the institutions are connected with the establishment office through the Internet for carrying out online establishment and attrition to realize that the work is handled and finished once.
Description
Technical field:
The present invention relates to a kind ofly based on Ukey and the establishment management system that the Flash storage chip combines, be specifically related to the establishment management system based on the USB hardware device.
Background technology:
UKey is a kind of small memory device that directly links to each other, has cryptographic authorization functions, reliable high speed by USB (USB (universal serial bus)) with computer.The memory that the small and exquisite exquisiteness of the design of UKey, UKey easy to carry possess self can be used for storing some personal information or certificate, the inner cipher algorithm of UKey can provide safe pipeline for transfer of data, and UKey is the security protection product that is applicable to unit or network application.
The hardware of UKey is the chip-scale operating system that is realized by the CPU with EPROM, and all read-writes and cryptographic calculation are all finished at chip internal, have very high degree of safety.Compare with the generic diskette medium, built-in chip level operating system prevents by bootlegging, guarantees the uniqueness of data, and data are only retained in UKey in the UKey, are conducive to use in public places; Compare with floppy disk, durability improves greatly; Compare with IC-card, owing to not needing special-purpose card-reading apparatus, have the irreplaceable superiority of other products with ecommerce and various Secure Application take PC as the basis.
UKey provides the authentication of identification of network user mechanism of verifying safety more and being easier to use than conventional password.The mode of shared secret of using UKey realizes the authentication between network client and the server, need not expose the checking that any key message just can be realized user identity.And the built-in user access control of UKey can further strengthen the fail safe of proof procedure.The file security solution is along with computer popularizes, and computer uses of seat belts to the increasing problem of people, is accompanied by the safety product that covers the sky and the earth and come, and our selection is also more and more important.
The Flash storage chip is very widely storage medium of a kind of application, and numerous USB flash disks, MP3, SD storage card etc. all adopt the Flash storage chip as data medium in the market, and the below simply introduces the operation principle of Flash storage chip.
Computer transfers binary digital signal to compound binary digital signal (add to distribute, check, the instruction such as storehouse) read-write and arrives USB chip adaptable interface, distribute to the appropriate address stores binary data of EEPROM storage chip by the chip processing signals, realize data storage.The EEPROM data storage, its control principle is the high low value of the voltage of voltage control gate transistor, the junction capacitance of gate transistor can be preserved magnitude of voltage for a long time, and the reason of energy save data mainly is exactly to have added floating gate and selected grid at original transistor after the outage.The semiconductor of the unidirectional conduction of electric current forms the unsteady canopy of storing electronics between source electrode and drain electrode.Floating gate is wrapped in one deck silicon oxide layer insulator.It is the selection/control gate of control conduction current between source electrode and drain electrode above it.Data are 0 or 1 to depend on whether electronics is arranged in the floating gate that silicon base plate forms.It is 0 that electronics is arranged, and is 1 without electronics.Flash memory just as its name, writes front deletion data and carries out initialization.From all floating gates, derive electronics exactly specifically.Soon data are returned " 1 " to some extent.Write that fashionable to only have data be just to write at 0 o'clock, data are then to do nothing in 1 o'clock.Write at 0 o'clock, apply high voltage to gate electrode and drain electrode, be increased in the electron energy of conduction between source electrode and the drain electrode.So, electronics will be broken through the anodized insulation body, enters floating gate.During reading out data, apply certain voltage to gate electrode, electric current greatly 1, electric current is little then to be decided to be 0.Floating gate does not have to apply voltage to drain electrode under the state (data are 1) of electronics when gate electrode is executed alive state, between source electrode and the drain electrode because the movement of a large amount of electronics, will generation current.And have at floating gate under the state (data are 0) of electronics, the electronics that conducts in the raceway groove will reduce.Because the voltage that is applied to gate electrode by the floating gate Electron absorption after, be difficult to raceway groove is exerted an influence.
Establishment management system is to have the fall software systems of the management such as volume, the personnel reduction, information modification of authorized personnel for the whole nation each office, public institution.In recent years, along with the continuous lifting of country to the mechanism of organizations management expectancy, whole nation volumes at different levels are done informationalized understanding are deepened continuously, the a lot of volume done the way that has changed manual management mechanism of organizations in the past, adopt software to assist routine work, thereby reach the effect that promotes operating efficiency, increases job specification.
The whole nation is compiled to do and is mainly used software systems in inside at present, each office, public institution are by downloading form, filling in data according to form reports, volume is done and is received the operation of carrying out import system behind the file, just each office, public institution's personnel's change conditions can be entered platform, thereby manage.This kind mode is relatively backward, derive owing to relating to data importing, at first reduced the ageing of data, always life period was poor between the unit of reporting and volume were done, can't understand data the very first time and report situation and accept the situation of examining, therefore for also there being room for promotion on the operating efficiency; Because form does not have the preciseness of software systems, therefore when the data typing, often can not meet the reasons such as standard because of data formatting error, data typing, cause data when import system, to produce mistake, perhaps obliterated data brings unnecessary trouble to work; Form generally all provides download in the website that volume is done, and announce and accept mailbox, this also brings no small hidden danger to secure data area, some can download form, at will fill in data and then be submitted to mailbox, the volume personnel of doing need to conscientiously distinguish legitimacy and the validity of these data, on the safety belt of data impact to a certain degree.
Above-mentioned situation mainly is to do for the lower volume of the level of informatization, do for the volume that some levels of informatization are higher, what it provided the Internet-based pattern falls to compiling personnel reduction reporting system, offices at different levels, public institution can sign in to system when handling the establishment management, realize the operation that volume, the personnel reduction and information are revised by system.Because the confidentiality requirement of mechanism of organizations, can not there be the possibility that is connected in some significant datas with the Internet, because the simplest user cipher authentication mode of the nearly use of online reporting system, bring great hidden danger to safety, therefore this simple security protection mode can not adapt to managerial demand far away.In addition, because establishment such as turns at the requirement, need each office, public institution to do or other relevant departments show the establishment information of our unit when handling in volume, and by the mechanism of organizations management system of the Internet model data all are kept at background server, the data of original papery establishment card can't be provided, and this has produced some unnecessary troubles in real work.
Just as aforementioned, although some mechanism of organizations management organizations are the Preliminary Applications Informatic Management Soft Ware, but use department as its office that directly manages, public institution, but still use traditionally on paper establishment card, complete a, solution smoothly is not provided.
Summary of the invention:
The purpose of this invention is to provide a kind of establishment management system that combines with the Flash storage chip based on Ukey, it can realize office, public institution fall on the net the operations such as volume, the personnel reduction, information modification, replace the management system that the soft and hardware of papery establishment card combines comprehensively.Adopt USB device as hardware carrier, follow USB hardware interface standard, partly realize authentication and information encryption by UKey, partly preserve software systems and data by the Flash storage chip, make its become one independently, safety, portable electronics establishment card management system, by Internet, can realize that each office, public institution do with volume to be connected, handle on line volume and cut personnel, realize once finishing of work.
In order to solve the existing problem of background technology, the present invention is by the following technical solutions: the mode that adopts hardware and software to combine, USB device is integrated UKey and Flash storage chip, the UKey part can realize the functions such as digital identification authentication, data ciphering and deciphering, the Flash storage chip can be used to preserve any computer formatted data, and can be used as the use of separate, stored district.
Storage version control program, establishment management system and database in the described Flash storage chip, version controller is connected with establishment management system, and establishment management system is connected with database.
The storage version control program can be connected to compile by Internet and do automatic update server in the described Flash storage chip, can check whether the version of establishment management system and database is up-to-date, downloads simultaneously and installs.
Store establishment management system in the described Flash storage chip, can realize that volume, the personnel reduction, information modification etc. are declared examines function on the net, can realize also that simultaneously mechanism information, establishment information, the duty of practical unit count query analysis and the statistics of information, personal information, can do application server with volume is connected, realize handling of online establishment, realize once finishing, can automatic acquisition compile the fileinfos such as the notice of doing issue, bulletin, the personnel that can obtain handle state information, colleague's feedback that can submit a question is done real-time interactive with volume.
Stored data base in the described Flash storage chip, this database is the mechanism of organizations information database of practical unit, can be the data file of arbitrary format, can record the information data that applying unit mechanism, establishment, duty number, personnel etc. all relate to mechanism of organizations.
The present invention is because the Ukey major function is digital identification authentication and information encryption, itself with memory space very little, the digital certificate file that only can hold tens K, therefore increase on the basis of Ukey and expanded the Flash storage chip, preserve the mechanism of organizations data of software systems and constituent parts, thereby form an integral body.Adopt the Ukey mode to realize the digital identification authentication function, only have by server and Ukey double verification just to allow access system, guaranteed user's legal identity; Realize software systems and data storage function by the Flash storage chip, when handling the relevant matters of establishment, can by being based upon the software systems on the hardware foundation, realize the real-time and digital management of mechanism of organizations.
The present invention has following beneficial effect: can realize office, public institution fall on the net the operations such as volume, the personnel reduction, information modification, replace the management system that the soft and hardware of papery establishment card combines comprehensively.Adopt USB device as hardware carrier, follow USB hardware interface standard, partly realize authentication and information encryption by UKey, partly preserve software systems and data by the Flash storage chip, make its become one independently, safety, portable electronics establishment card management system, by Internet, can realize that each office, public institution do with volume to be connected, handle on line volume and cut personnel, realize once finishing of work.
Description of drawings:
Fig. 1 is internal structure schematic diagram of the present invention;
Fig. 2 is workflow schematic diagram of the present invention.
Embodiment:
Referring to Fig. 1-2, this embodiment is by the following technical solutions: the mode that adopts hardware and software to combine, USB device is integrated UKey and Flash storage chip, the UKey part can realize the functions such as digital identification authentication, data ciphering and deciphering, the Flash storage chip can be used to preserve any computer formatted data, and can be used as the use of separate, stored district.
Storage version control program, establishment management system and database in the described Flash storage chip, version controller is connected with establishment management system, and establishment management system is connected with database.
The storage version control program can be connected to compile by Internet and do automatic update server in the described Flash storage chip, can check whether the version of establishment management system and database is up-to-date, downloads simultaneously and installs.
Store establishment management system in the described Flash storage chip, can realize that volume, the personnel reduction, information modification etc. are declared examines function on the net, can realize also that simultaneously mechanism information, establishment information, the duty of practical unit count query analysis and the statistics of information, personal information, can do application server with volume is connected, realize handling of online establishment, realize once finishing, can automatic acquisition compile the fileinfos such as the notice of doing issue, bulletin, the personnel that can obtain handle state information, colleague's feedback that can submit a question is done real-time interactive with volume.
Stored data base in the described Flash storage chip, this database is the mechanism of organizations information database of practical unit, can be the data file of arbitrary format, can record the information data that applying unit mechanism, establishment, duty number, personnel etc. all relate to mechanism of organizations.
The present invention is because the Ukey major function is digital identification authentication and information encryption, itself with memory space very little, the digital certificate file that only can hold tens K, therefore increase on the basis of Ukey and expanded the Flash storage chip, preserve the mechanism of organizations data of software systems and constituent parts, thereby form an integral body.Adopt the Ukey mode to realize the digital identification authentication function, only have by server and Ukey double verification just to allow access system, guaranteed user's legal identity; Realize software systems and data storage function by the Flash storage chip, when handling the relevant matters of establishment, can by being based upon the software systems on the hardware foundation, realize the real-time and digital management of mechanism of organizations.
After USB device is inserted into subscriber computer, computer will utilize user's identity, password by Internet and send to remote server behind the public key encryption and verify by UKey, after server is decrypted by private key for user the enciphered message of accepting, after the user identity that obtains being complementary with the database record, password authentification can be passed through.
After user's legal identity is confirmed, UKey will start the version controller in the Flash storage chip, this program start will be connected to remote server later on automatically, check and obtain the latest edition of establishment management system, by the MD5 value verification of file being guaranteed the integrality of file, then start establishment management system.
Establishment management system is after operation, and the user can handle by system the matters such as volume, the personnel reduction and information modification, and each communication all is encrypted data through the encrypting module of UKey, then sends to remote application server.Application server is after the process decryption processing of data, send into background data base, the mechanism of organizations management platform can in time be seen the data that report and accept this data, the user can follow the tracks of accepting state simultaneously, understand the progress of handling, handling complete rear automatically synchronizing data, the analytic function that can make things convenient for the user can pass through system after off-line is realized the query statistic to our unit's personal information.
This embodiment can realize office, public institution fall on the net the operations such as volume, the personnel reduction, information modification, replace the management system that the soft and hardware of papery establishment card combines comprehensively.Adopt USB device as hardware carrier, follow USB hardware interface standard, partly realize authentication and information encryption by UKey, partly preserve software systems and data by the Flash storage chip, make its become one independently, safety, portable electronics establishment card management system, by Internet, can realize that each office, public institution do with volume to be connected, handle on line volume and cut personnel, realize once finishing of work.
Claims (4)
1. establishment management system that combines with the Flash storage chip based on Ukey, it is characterized in that the mode that adopts hardware and software to combine, USB device is integrated UKey and Flash storage chip, storage version control program, establishment management system and database in the Flash storage chip, version controller is connected with establishment management system, and establishment management system is connected with database; The UKey part can realize digital identification authentication, data ciphering and deciphering function, and the Flash storage chip is used for preserving any computer formatted data, and can use as the separate, stored district; Store establishment management system in the described Flash storage chip, volume, the personnel reduction and the information of realizing is revised to declare on the net and is examined function, can realize also that simultaneously mechanism information, establishment information, the duty of practical unit count query analysis and the statistics of information, personal information, can do application server with volume is connected, realize handling of online establishment, realize once finishing, can compile notice and the bulletin fileinfo of doing issue by automatic acquisition, the personnel that can obtain handle state information, the feedback that can submit a question is simultaneously done real-time interactive with volume; The database of storing in the Flash storage chip, this database are the mechanism of organizations information database of applying unit, can be the data file of arbitrary format, can record the information data that applying unit mechanism, establishment, duty number and personnel all relate to mechanism of organizations; After USB device is inserted into subscriber computer, computer will utilize user's identity, password by Internet and send to remote server behind the public key encryption and verify by UKey, after server is decrypted by private key for user the enciphered message of accepting, after the user identity that obtains being complementary with the database record, password authentification can be passed through; After user's legal identity is confirmed, UKey will start the version controller in the Flash storage chip, this program start will be connected to remote server later on automatically, check and obtain the latest edition of establishment management system, by the MD5 value verification of file being guaranteed the integrality of file, then start establishment management system; Establishment management system is after operation, and the user handles volume, the personnel reduction and information by system and revises matters, and each communication all is encrypted data through the encrypting module of UKey, then sends to remote application server; Application server is after the process decryption processing of data, send into background data base, the mechanism of organizations management platform can in time be seen the data that report and accept this data, the user can follow the tracks of accepting state simultaneously, understand the progress of handling, handling complete rear automatically synchronizing data, the analytic function that can make things convenient for the user can pass through system after off-line is realized the query statistic to our unit's personal information.
2. a kind of establishment management system that combines with the Flash storage chip based on Ukey according to claim 1, it is characterized in that in the described Flash storage chip that the storage version control program can be connected to compile by Internet does automatic update server, whether the version that can check establishment management system and database is up-to-date, downloads simultaneously and installs.
3. a kind of establishment management system that combines with the Flash storage chip based on Ukey according to claim 2, it is characterized in that having expanded the Flash storage chip in the increase of the basis of Ukey, preserve the mechanism of organizations data of software systems and constituent parts, thereby form an integral body; Adopt the Ukey mode to realize the digital identification authentication function, only have by server and Ukey double verification just to allow access system, guaranteed user's legal identity; Realize software systems and data storage function by the Flash storage chip, when handling the relevant matters of establishment, can by being based upon the software systems on the hardware foundation, realize the real-time and digital management of mechanism of organizations.
4. according to claim 1 a kind of based on Ukey and the establishment management system that the Flash storage chip combines, it is characterized in that it can realize office, public institution fall on the net volume, the personnel reduction and information retouching operation, replace the management system that the soft and hardware of papery establishment card combines comprehensively; Adopt USB device as hardware carrier, follow USB hardware interface standard, partly realize authentication and information encryption by UKey, partly preserve software systems and data by the Flash storage chip, make its become one independently, safety, the electronics that can carry establishment card management system, by Internet, can realize that each office, public institution do with volume to be connected, handle on line volume and cut personnel, realize once finishing of work.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010101163116A CN101848089B (en) | 2010-03-03 | 2010-03-03 | Establishment management system based on USB hardware device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010101163116A CN101848089B (en) | 2010-03-03 | 2010-03-03 | Establishment management system based on USB hardware device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101848089A CN101848089A (en) | 2010-09-29 |
| CN101848089B true CN101848089B (en) | 2013-01-23 |
Family
ID=42772556
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010101163116A Expired - Fee Related CN101848089B (en) | 2010-03-03 | 2010-03-03 | Establishment management system based on USB hardware device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101848089B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103473657B (en) * | 2013-09-30 | 2017-09-01 | 四川航天金穗高技术有限公司 | Hotel information acquisition system and its information collecting method |
| CN103716794A (en) * | 2013-12-25 | 2014-04-09 | 北京握奇数据系统有限公司 | Two-way safety verification method and system based on portable device |
| CN104700043A (en) * | 2015-03-20 | 2015-06-10 | 南通国芯微电子有限公司 | Encrypted programming method |
| CN109687970B (en) * | 2018-12-07 | 2022-02-01 | 南京理工大学 | Mobile block chain full node and implementation method thereof |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20030032112A (en) * | 2001-10-10 | 2003-04-26 | 주식회사 핌스텍 | System for electronic settled using USB authentication key based on PKI |
| CN101312453A (en) * | 2007-05-21 | 2008-11-26 | 联想(北京)有限公司 | User terminal, method for login network service system, method for binding and debinding |
| CN101330428A (en) * | 2008-04-08 | 2008-12-24 | 北京交通大学 | Apparatus for safe mobile client terminal of virtual special network and use method thereof |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7853788B2 (en) * | 2002-10-08 | 2010-12-14 | Koolspan, Inc. | Localized network authentication and security using tamper-resistant keys |
-
2010
- 2010-03-03 CN CN2010101163116A patent/CN101848089B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20030032112A (en) * | 2001-10-10 | 2003-04-26 | 주식회사 핌스텍 | System for electronic settled using USB authentication key based on PKI |
| CN101312453A (en) * | 2007-05-21 | 2008-11-26 | 联想(北京)有限公司 | User terminal, method for login network service system, method for binding and debinding |
| CN101330428A (en) * | 2008-04-08 | 2008-12-24 | 北京交通大学 | Apparatus for safe mobile client terminal of virtual special network and use method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101848089A (en) | 2010-09-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103065102B (en) | Data encryption mobile storage management method based on virtual disk | |
| US9716594B2 (en) | Attestation of data sanitization | |
| US9448949B2 (en) | Mobile data vault | |
| CN102236766B (en) | Security data item level database encryption system | |
| US11368299B2 (en) | Self-encryption drive (SED) | |
| US11790106B1 (en) | Methods for protecting data | |
| CN101587524B (en) | Method for encrypting data memory apparatus based on virtual system | |
| CN107408135A (en) | For carrying out the database server and client of query processing to encryption data | |
| CA3043707A1 (en) | Differential client-side encryption of information originating from a client | |
| CN107908574A (en) | The method for security protection of solid-state disk data storage | |
| RU2013149120A (en) | METHOD AND SYSTEM FOR PROTECTING INFORMATION FROM UNAUTHORIZED USE (OPTIONS) | |
| KR20160121360A (en) | Mutual authentication and key exchange method for key renewal of payment system, and key sharing method with third-party servers | |
| CN101951315A (en) | Key processing method and device | |
| CN101848089B (en) | Establishment management system based on USB hardware device | |
| Xu et al. | A blockchain based micro payment system for smart devices | |
| CN101239543A (en) | Seal and signing and sealing system | |
| US20110107109A1 (en) | Storage system and method for managing data security thereof | |
| US8745375B2 (en) | Handling of the usage of software in a disconnected computing environment | |
| CN106682521A (en) | File transparent encryption and decryption system and method based on driver layer | |
| US10341110B2 (en) | Securing user credentials | |
| CN104463510A (en) | Finance management system | |
| CN105426705A (en) | Encryption control system for accounting software | |
| CN105205405A (en) | Novel electronic file safe management system | |
| WO2018236351A1 (en) | Symmetrically encrypt a master passphrase key | |
| CN101794260A (en) | Automatically imported method of encryption key for mobile storage device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130123 Termination date: 20140303 |