CN101944051A - Multi-copy high-reliability embedded system firmware on chip and working method thereof - Google Patents
Multi-copy high-reliability embedded system firmware on chip and working method thereof Download PDFInfo
- Publication number
- CN101944051A CN101944051A CN 201010295940 CN201010295940A CN101944051A CN 101944051 A CN101944051 A CN 101944051A CN 201010295940 CN201010295940 CN 201010295940 CN 201010295940 A CN201010295940 A CN 201010295940A CN 101944051 A CN101944051 A CN 101944051A
- Authority
- CN
- China
- Prior art keywords
- reflection
- embedded system
- boot loader
- algorithm
- procedure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to a multi-copy high-reliability embedded system firmware on a chip and a working method thereof, which is used for enhancing the reliability and the safety of a firmware. The multi-copy high-reliability embedded system firmware on the chip comprises embedded system memory equipment. A pre-start program is arranged at an electrified loading address of the memory equipment, a plurality of start loading programs are sequentially stored on a subsequent memory address, and a plurality of operating system kernal images are sequentially stored on a memory address after a last start loading program.
Description
Technical field
The present invention relates to a kind of highly reliable embedded system firmware and method of work thereof that goes up many backups, belong to the embedded system technology field.
Background technology
At present in embedded system:
1, the characteristics of NAND FLASH
NAND FLASH chip is that base unit is erasable with piece (BLOCK).Dissimilar FLASH chips, the capacity difference of block size does not wait to 128K BYTE from 8K BYTE, and wherein first piece has the status of particular importance.In adding in the electric process of FLASH chip, can detect the situation of first piece, from first BOB(beginning of block) power-up initializing.If first piece damages, the hardware detection of FLASH chip is just thought that the chip that can not repair damages, and makes whole FLASH chip all unavailable.
2, CRC and MD5 checking algorithm
In field of data storage,, just have to adopt the error detection means in order to guarantee the correct of data.Aspect many error detection means and assurance data integrity, CRC and MD5 are more famous.
CRC (Cyclical Redundancy Check) is a cyclic redundancy check, during practical application, dispensing device calculates crc value and together sends to receiving trap with data, and receiving trap recomputates CRC to the data of receiving and compares with the CRC that receives, according to similarities and differences error detection; MD5 (Message Digest Algorithm MD5) is the 5th edition of eap-message digest, it is the widely used a kind of hash function of computer safety field, by a segment information (Message) is produced informative abstract (Message-Digest), contrast the mode of summary then, guarantee the integrality of data.
3, DES enciphering and deciphering algorithm
DES (Data Encryption Algorithm) data encryption algorithm is utilized repeatedly combined iteration algorithm and transposition algorithm, expressly being compiled into the higher ciphertext of encryption strength.
4, the start-up course of embedded system boot loader (Bootloader)
As shown in Figure 1, the startup of boot loader generally is divided into two stages (being abbreviated as stage1 and stage 2 respectively), and stage 1 is the part that relies on hardware architecture, mainly is hardware detection and initialization; Stage 2 realizes the more sophisticated functions of detection and initialization peripheral hardware etc., reading system parameter, pilot operationp system kernel.
Now, above-mentioned every technology is full-fledged, and has obtained certain practical application in industry member, but they is not applied to built-in field.
Summary of the invention
Purpose of the present invention is exactly at above-mentioned the deficiencies in the prior art, for reliability and the security that improves firmware, provides a kind of highly reliable embedded system firmware and method of work thereof that goes up many backups.
For achieving the above object, the present invention adopts following technical scheme:
A kind of highly reliable embedded system firmware of going up many backups, it comprises the embedded system memory device, the load address place that powers on of described memory device is provided with pre-start-up procedure; On memory address subsequently, store a plurality of boot loader successively, in the end then deposit a plurality of operating system nucleus maps on the memory address after the boot loader successively.
A kind of method of work that goes up the highly reliable embedded system firmware of many backups, its step is:
1) electrifying startup system, pre-start-up procedure brings into operation;
2) pre-start-up procedure is finished the detection and the initialization of basic hardware, successively the boot loader of storage is carried out verification according to predefined order according to checking algorithm then; If run into and do not have wrong verification and this program of load operating of then stopping; If there is not correct then start-up system not;
3) boot loader is ready to the environment of system's operation, successively the operating system nucleus reflection of storage is carried out verification according to predefined order according to checking algorithm, do not have wrong reflection then to stop verification if run into, enter the next stage, to this reflection deciphering; If there is not correct then start-up system not.
Described step 2) and the checking algorithm in the step 3) all adopt CRC or MD5 checking algorithm.
In the described step 3), the process of reflection deciphering is: at first with selected cryptographic algorithm the operating system nucleus reflection is encrypted, the reflection after will encrypting then stores in the respective stored address of embedded device; During startup, use earlier with the corresponding decipherment algorithm of cryptographic algorithm to be decrypted, after differentiating, start this operating system nucleus reflection.
The of the present invention highly reliable embedded system firmware of going up many backups wherein has pre-start-up procedure (Pre-Boot) and check code, all is stored in first piece of FLASH.Deposit a pre-start-up procedure (Pre-Boot), a plurality of boot loader (Bootloader), a plurality of operating system nucleus (OS Kernel) reflection successively at the load address place that powers on of embedded system memory device.Finish the detection and the initialization of basic hardware by pre-start-up procedure (Pre-Boot), and verification is carried out in back a plurality of boot loader (Bootloader), select a correct load operating; (Bootloader) is ready to system running environment by boot loader, finishes the verification to a plurality of operating system nucleus reflections, and selects a correct reflection to be decrypted and to move.
Based on pre-start-up procedure (Pre-Boot), the start-up loading process of embedded system is as follows:
(1) starts pre-start-up procedure (Pre-Boot), verification and selection boot loader (Bootloader)
Because pre-start-up procedure has been put into the load address place part that powers on of memory device, after the electrifying startup system, pre-start-up procedure can at first obtain operation: at first realize the function of the stage 1 of boot loader, finish the detection and the initialization of basic hardware; To the verification and the selection of a plurality of boot loader, successively the boot loader (Bootloader) of storage is carried out verification then, select a boot loader (Bootloader) load operating by verification according to checking algorithm (CRC or MD5).
Owing to need to guarantee reliable, the safety in position that check code and pre-start-up procedure (Pre-Boot) are deposited, and according to the characteristics of NAND FLASH, so it all is stored in first piece of FLASH.
(2) verification and the selection of a plurality of operating system nucleus reflections
Boot loader (Bootloader) is carried out verification to the operating system nucleus reflection of storage according to predefined order successively according to checking algorithm (CRC or MD5), selects an operating system nucleus reflection start-up system by verification.
(3) deciphering of operating system nucleus reflection loads
At first use certain cryptographic algorithm (as DES) that the operating system nucleus reflection is encrypted, the reflection after will encrypting then stores in the embedded device.During startup, be decrypted with decipherment algorithm earlier, after differentiating, start this operating system nucleus reflection.
The invention has the beneficial effects as follows: above-mentioned every function is combined, be incorporated in the embedded product, obtain the highly reliable embedded system firmware of many backups on the sheet: pre-start-up procedure (Pre-Boot) is stored in first piece of FLASH, can guarantee the reliability of pre-start-up procedure based on the high stability of first piece of FLASH; The backup of boot loader (Bootloader) can guarantee that when boot loader being arranged because the damage of bad piece occurs, pre-start-up procedure still can find a correct boot loader to carry out; The backup of operating system nucleus reflection can guarantee that equally boot loader can find a correct reflection start-up system when having the kernel reflection to damage; To the encryption of operating system nucleus, make and only knowing ability start-up system under the prerequisite of decipherment algorithm, the further like this security that guarantees system.
Description of drawings
Fig. 1 is the reflection storage node composition of existing main flow embedded device;
Fig. 2 is a reflection storage node composition of the present invention;
Fig. 3 is a process flow diagram of the present invention.
Wherein, 1 load address that powers on, 2 memory addresss.
Embodiment
The present invention will be further described below in conjunction with drawings and Examples.
Embodiment:
Among Fig. 2, the highly reliable embedded system firmware of many backups on the sheet, the one section pre-start-up procedure Pre-Boot of load address 1 place storage that powers at the embedded system memory device, store a plurality of boot loader (Bootloader1 and Bootloader2) in the memory address 2 of back successively, memory address 2 is then deposited a plurality of operating system nucleus reflections (OS Kernel_1 and OS Kernel_2).
Among Fig. 3, a kind of method of work that goes up the highly reliable embedded system firmwares that back up as follows more:
1) electrifying startup system, the pre-start-up procedure that brings into operation Pre-Boot.
2) pre-start-up procedure is finished the detection and the initialization of basic hardware, first boot loader of verification (Bootloader1) then, judge whether its CRC check sign indicating number (perhaps MD5 value) is identical with the CRC check sign indicating number of before having deposited (perhaps MD5 value), if this boot loader of identical proof is correct, enter next procedure; If different, this boot loader mistake is described, second boot loader of verification (Bootloader2) in the same way then, if verification correctly then enters next procedure, otherwise system start-up failure (not start-up system).
3) boot loader is ready to the environment of system's operation, first operating system nucleus reflection (OS Kernel 1) of beginning verification, judge whether its CRC check sign indicating number (perhaps MD5 value) is identical with the value of before having deposited, then be decrypted as if identical, successful decryption then moves first operating system nucleus reflection, and start-up system is up to shutdown; Verification makes mistakes or deciphers to make mistakes and all enters the checking procedure of second operating system nucleus reflection (OSKernel 2), same mode is taked in verification, and verification correctly then is decrypted, and successful decryption is start-up system then, no matter be that verification mistake or deciphering are unsuccessful, start-up systems not.
Claims (4)
1. highly reliable embedded system firmwares of many backups on the sheet, it comprises the embedded system memory device, it is characterized in that, the load address place that powers on of described memory device is provided with pre-start-up procedure; On memory address subsequently, store a plurality of boot loader successively, in the end then deposit a plurality of operating system nucleus maps on the memory address after the boot loader successively.
2. the method for work of the highly reliable embedded system firmwares of backup more than described an of claim 1 goes up is characterized in that its step is:
1) electrifying startup system, pre-start-up procedure brings into operation;
2) pre-start-up procedure is finished the detection and the initialization of basic hardware, successively the boot loader of storage is carried out verification according to predefined order according to checking algorithm then; If run into and do not have wrong verification and this program of load operating of then stopping; If there is not correct then start-up system not;
3) boot loader is ready to the environment of system's operation, successively the operating system nucleus reflection of storage is carried out verification according to predefined order according to checking algorithm, do not have wrong reflection then to stop verification if run into, enter the next stage, to this reflection deciphering; If there is not correct then start-up system not.
3. as claimed in claim 2 method of work that goes up the highly reliable embedded system firmwares of many backups is characterized in that described step 2) and step 3) in checking algorithm all adopt CRC or MD5 checking algorithm.
4. as claimed in claim 2 method of work that goes up the highly reliable embedded system firmware of many backups, it is characterized in that, in the described step 3), the process of reflection deciphering is: at first with selected cryptographic algorithm the operating system nucleus reflection is encrypted, the reflection after will encrypting then stores in the respective stored address of embedded device; During startup, use earlier with the corresponding decipherment algorithm of cryptographic algorithm to be decrypted, after differentiating, start this operating system nucleus reflection.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010295940 CN101944051A (en) | 2010-09-29 | 2010-09-29 | Multi-copy high-reliability embedded system firmware on chip and working method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010295940 CN101944051A (en) | 2010-09-29 | 2010-09-29 | Multi-copy high-reliability embedded system firmware on chip and working method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101944051A true CN101944051A (en) | 2011-01-12 |
Family
ID=43436050
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201010295940 Pending CN101944051A (en) | 2010-09-29 | 2010-09-29 | Multi-copy high-reliability embedded system firmware on chip and working method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101944051A (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102270162A (en) * | 2011-07-29 | 2011-12-07 | 中国航天科技集团公司第五研究院第五一三研究所 | Fault-tolerant guide method applied to SPARCV8 structure computer |
| CN103617095A (en) * | 2013-11-15 | 2014-03-05 | 中国航空无线电电子研究所 | VxWorks mapping file accuracy checking method |
| CN104035806A (en) * | 2014-06-30 | 2014-09-10 | 普联技术有限公司 | System start-up method and device based on multiple mirror images |
| CN104077167A (en) * | 2014-07-11 | 2014-10-01 | 杭州华三通信技术有限公司 | Boot loading method and device based on NAND FLASH |
| CN104714857A (en) * | 2013-12-13 | 2015-06-17 | 上海华虹集成电路有限责任公司 | Method for preventing smart card start sequence from being modified |
| WO2016206514A1 (en) * | 2015-06-25 | 2016-12-29 | 中兴通讯股份有限公司 | Startup processing method and device |
| CN106789054A (en) * | 2016-12-23 | 2017-05-31 | 携程旅游网络技术(上海)有限公司 | The update method and system of dynamic encryption and decryption algorithm |
| CN107003863A (en) * | 2015-01-29 | 2017-08-01 | 惠普发展公司,有限责任合伙企业 | Guide on-chip system device |
| CN109376550A (en) * | 2018-11-01 | 2019-02-22 | 郑州云海信息技术有限公司 | A kind of starting control method, device and the equipment of target component |
| CN109471642A (en) * | 2018-11-15 | 2019-03-15 | 北京行易道科技有限公司 | Firmware generates storage method and device, firmware start method and device |
| CN110096909A (en) * | 2019-04-19 | 2019-08-06 | 深圳忆联信息系统有限公司 | A kind of method and its system guaranteeing EFUSE code key stability |
| CN110297604A (en) * | 2019-06-26 | 2019-10-01 | 深圳忆联信息系统有限公司 | A kind of method and its system effectively improving NAND starting service life |
| CN110347444A (en) * | 2019-07-12 | 2019-10-18 | 深圳忆联信息系统有限公司 | A kind of the starting method and its system of the switching of SSD multimode |
| CN111124436A (en) * | 2019-11-05 | 2020-05-08 | 上海航天控制技术研究所 | Method for improving software loading reliability of star sensor |
| CN111190648A (en) * | 2019-12-26 | 2020-05-22 | 湖南工程学院 | NAND FLASH-based real-time embedded system and starting method thereof |
| CN111459716A (en) * | 2020-03-02 | 2020-07-28 | 天津众达智腾科技有限公司 | Kernel backup loading mode based on domestic processor |
| CN112667435A (en) * | 2020-12-07 | 2021-04-16 | 沈阳飞机设计研究所扬州协同创新研究院有限公司 | Software image backup method based on Tianmai operating system |
| CN115658183A (en) * | 2022-12-26 | 2023-01-31 | 北京紫光芯能科技有限公司 | Method and device for controlling MCU, electronic equipment and storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101086701A (en) * | 2006-06-07 | 2007-12-12 | 普天信息技术研究院 | Method for upgrading operation system for memory card |
| CN101571807A (en) * | 2008-04-28 | 2009-11-04 | 鸿富锦精密工业(深圳)有限公司 | System with firmware and starting method thereof |
-
2010
- 2010-09-29 CN CN 201010295940 patent/CN101944051A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101086701A (en) * | 2006-06-07 | 2007-12-12 | 普天信息技术研究院 | Method for upgrading operation system for memory card |
| CN101571807A (en) * | 2008-04-28 | 2009-11-04 | 鸿富锦精密工业(深圳)有限公司 | System with firmware and starting method thereof |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102270162A (en) * | 2011-07-29 | 2011-12-07 | 中国航天科技集团公司第五研究院第五一三研究所 | Fault-tolerant guide method applied to SPARCV8 structure computer |
| CN103617095A (en) * | 2013-11-15 | 2014-03-05 | 中国航空无线电电子研究所 | VxWorks mapping file accuracy checking method |
| CN104714857A (en) * | 2013-12-13 | 2015-06-17 | 上海华虹集成电路有限责任公司 | Method for preventing smart card start sequence from being modified |
| CN104035806A (en) * | 2014-06-30 | 2014-09-10 | 普联技术有限公司 | System start-up method and device based on multiple mirror images |
| CN104077167A (en) * | 2014-07-11 | 2014-10-01 | 杭州华三通信技术有限公司 | Boot loading method and device based on NAND FLASH |
| CN107003863A (en) * | 2015-01-29 | 2017-08-01 | 惠普发展公司,有限责任合伙企业 | Guide on-chip system device |
| WO2016206514A1 (en) * | 2015-06-25 | 2016-12-29 | 中兴通讯股份有限公司 | Startup processing method and device |
| CN106325903A (en) * | 2015-06-25 | 2017-01-11 | 中兴通讯股份有限公司 | A start processing method and device |
| CN106789054A (en) * | 2016-12-23 | 2017-05-31 | 携程旅游网络技术(上海)有限公司 | The update method and system of dynamic encryption and decryption algorithm |
| CN109376550A (en) * | 2018-11-01 | 2019-02-22 | 郑州云海信息技术有限公司 | A kind of starting control method, device and the equipment of target component |
| CN109471642A (en) * | 2018-11-15 | 2019-03-15 | 北京行易道科技有限公司 | Firmware generates storage method and device, firmware start method and device |
| CN110096909A (en) * | 2019-04-19 | 2019-08-06 | 深圳忆联信息系统有限公司 | A kind of method and its system guaranteeing EFUSE code key stability |
| CN110297604A (en) * | 2019-06-26 | 2019-10-01 | 深圳忆联信息系统有限公司 | A kind of method and its system effectively improving NAND starting service life |
| CN110347444A (en) * | 2019-07-12 | 2019-10-18 | 深圳忆联信息系统有限公司 | A kind of the starting method and its system of the switching of SSD multimode |
| CN110347444B (en) * | 2019-07-12 | 2022-06-07 | 深圳忆联信息系统有限公司 | Starting method and system for SSD multi-state switching |
| CN111124436A (en) * | 2019-11-05 | 2020-05-08 | 上海航天控制技术研究所 | Method for improving software loading reliability of star sensor |
| CN111124436B (en) * | 2019-11-05 | 2023-12-29 | 上海航天控制技术研究所 | Method for improving loading reliability of star sensor software |
| CN111190648A (en) * | 2019-12-26 | 2020-05-22 | 湖南工程学院 | NAND FLASH-based real-time embedded system and starting method thereof |
| CN111459716A (en) * | 2020-03-02 | 2020-07-28 | 天津众达智腾科技有限公司 | Kernel backup loading mode based on domestic processor |
| CN112667435A (en) * | 2020-12-07 | 2021-04-16 | 沈阳飞机设计研究所扬州协同创新研究院有限公司 | Software image backup method based on Tianmai operating system |
| CN112667435B (en) * | 2020-12-07 | 2022-09-09 | 沈阳飞机设计研究所扬州协同创新研究院有限公司 | Software image backup method based on Tianmai operating system |
| CN115658183A (en) * | 2022-12-26 | 2023-01-31 | 北京紫光芯能科技有限公司 | Method and device for controlling MCU, electronic equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101944051A (en) | Multi-copy high-reliability embedded system firmware on chip and working method thereof | |
| CN106020865B (en) | System upgrading method and device | |
| US20100146231A1 (en) | Authenticating a backup image with bifurcated storage | |
| CN100447736C (en) | Firmware interface runtime environment protection field | |
| US20190332776A1 (en) | Firmware map data | |
| CN112783537B (en) | Embedded linux operating system upgrading method and system based on MTD storage device | |
| CN100562859C (en) | The method and apparatus of the operational scheme of test procedure | |
| CN105022678A (en) | Data backup method and apparatus for virtual machine | |
| CN106776122A (en) | A kind of method of main-apparatus protection in start-up course based on Flash | |
| WO2015176433A1 (en) | Hard disk repairing method and device based on partition table | |
| US8826080B2 (en) | Methods and systems for preboot data verification | |
| JP2012198876A (en) | Device and method for curing read inability state in memory device | |
| CN105550071B (en) | System file upgrades and detection method, communication equipment | |
| CN105701410A (en) | Information, device and system for obtaining information in source codes | |
| CN113468535A (en) | Credibility measuring method and related device | |
| CN104866768A (en) | Startup control method and device for ATM (Automatic Teller Machine) operating system | |
| US20120226464A1 (en) | System and method for testing power supplies of server | |
| CN110096882B (en) | Safety measurement method in equipment operation process | |
| CN108255644B (en) | File system recovery method and device | |
| CN102122258A (en) | Method for repairing damaged embedded equipment file system | |
| CN108959915B (en) | Rootkit detection method, rootkit detection device and server | |
| CN106445737A (en) | Multi-backup starting method | |
| CN104750617A (en) | Electronic device and data maintenance method thereof | |
| KR101052735B1 (en) | Method for detecting presence of memory operation and device using same | |
| CN111143887B (en) | Safety control method, processor, integrated device and computer equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Open date: 20110112 |