CN102004705B - USB storage device based on hardware encryption - Google Patents
USB storage device based on hardware encryption Download PDFInfo
- Publication number
- CN102004705B CN102004705B CN2010105565471A CN201010556547A CN102004705B CN 102004705 B CN102004705 B CN 102004705B CN 2010105565471 A CN2010105565471 A CN 2010105565471A CN 201010556547 A CN201010556547 A CN 201010556547A CN 102004705 B CN102004705 B CN 102004705B
- Authority
- CN
- China
- Prior art keywords
- module
- usb
- interface
- links
- storage device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
A USB storage device based on hardware encryption belongs to the computer technical field and mainly solves the problem that the encryption performance of the existing USB storage device is low. The USB storage device comprises a USB interface module, a USB switch, a CPU module, a storage control module and a Flash memory, wherein the CPU module is used to control the USB switch to switch the USB interface module and the CPU module and the data transmission of the storage control module; and the connection control of the USB storage device hardware and the control of read-write limit can be realized through user authentication. In the USB storage device of the invention, the USB switch and the CPU module are added on the basis of the traditional USB storage device and a Z8HM2 memory main-control chip is adopted, thus the user identity can be verified and the login information of the user can be stored; and the hardware can be used to encrypt a file written in the storage device, thus preventing that the right file can be obtained from the memory through the mode of low-level disk access.
Description
Technical field
The present invention relates to a kind of memory device, particularly a kind of USB memory device based on hardware encipher.
Background technology
At present, USB interface-based memory device not only can provide bigger storage space and have that speed is fast, the characteristics of plug and play for the user, obtains users' favor, has become the common equipment of user's exchange, storage data.But; The hardware circuit of existing USB memory device mainly is made up of memory controller and storer two parts; Can directly carry out the read/write operation of file through computing machine, but memory device user's identity not verified, also files stored not compared encryption effectively memory device; If memory device is lost or be stolen, classified document wherein will be revealed.
Equally; Existing files stored is carried out the encryption technology also only be to use software in storer, to mark off a plurality of storage areas (like general area; Encrypted area etc.); Application software technology is hidden encrypted area, the user through password authentification after encrypted area become visiblely, reach the purpose of protection classified document in this way.Yet there are a lot of leaks in this technology, such as, without the user of authentication method, just can obtain by All Files in the encrypted area of hiding through rudimentary disk access (to the memory sectors read/write).
Summary of the invention
In order to overcome the defective that above-mentioned prior art exists, the object of the present invention is to provide a kind of USB memory device based on hardware encipher, not only to user's authentication, and use hardware that the file of write storage device is encrypted.
For addressing the above problem, the present invention adopts following technical scheme: this USB memory device, comprise usb interface module, storage control module and Flash storer, and it is characterized in that, also comprise USB switch, CPU module; Said usb interface module comprises data-interface and the power interface that is electrically connected with USB switch, CPU module and storage control module respectively; Said CPU module comprises the I of USB interface, IO interface and the CPU module of microprocessor unit and peripheral chip module thereof, CPU module
2C EBI, said microprocessor unit and peripheral chip module thereof respectively with the I of USB interface, IO interface and the CPU module of CPU module
2The C EBI links to each other; Said storage control module comprises storage main control chip and peripheral circuit module, the USB interface of storage control module, the I of storage control module
2C EBI and Flash interface, said storage main control chip and peripheral circuit module respectively with the USB interface of storage control module, the I of storage control module
2The C EBI links to each other with the Flash interface;
Wherein, The DIN input end of said USB switch links to each other with the data-interface of usb interface module; The DOUT1 output terminal links to each other with the USB interface of storage control module, and the DOUT2 output terminal links to each other with the USB interface of CPU module, and the CONTROL control end links to each other with the IO interface of CPU module; The I of said CPU module
2The I of C EBI and storage control module
2The C EBI links to each other; The Flash interface of said storage control module links to each other with the Flash storer.
Further,
Said storage main control chip and peripheral circuit module adopt Z8HM2 storage main control chip; This chip is through national Password Management office's test and be named as the SSX0905-A algorithm chip; It links to each other with the Flash storer through interface; File to write store carries out encryption, can prevent directly to read file from the Flash storer through the mode of rudimentary disk access.。
Advantages such as said Flash storer is a NAND Flash storer, and it is inner to adopt non-linear macroelement pattern, and it is bigger to have a capacity, and rewriting speed is fast are applicable to the storage of mass data.
During work, the IO interface of CUP module links to each other with the CONTROL control end of USB switch, and the microprocessor unit of CUP module is used to control the USB switch through IO interface output high-low level; The USB switch is in order to switch the connected state of usb interface module and CPU module, storage control module, and when the OE of CONTROL control end pin was high level, the DIN input end all was not communicated with DOUT1 output terminal, DOUT2 output terminal; When the OE pin is low level; If the S pin of CONTROL control end is a low level; Then the DIN input end is communicated with the DOUT1 output terminal, and promptly usb interface module is communicated with storage control module, if the S pin is a high level; Then the DIN input end is communicated with the DOUT2 output terminal, and promptly usb interface module is communicated with the CUP module.
The invention has the beneficial effects as follows: on the basis of traditional USB memory device, increased USB switch and CPU module; Adopted Z8HM2 storage main control chip; The log-on message that can not only verify and preserve the user user's identity; And can use hardware that the file of write storage device is encrypted, prevent from storer, to obtain correct file through the mode of rudimentary disk access.The present invention has that capacity is bigger, and read or write speed is fast, characteristics such as level security height, and the security that has improved file storage greatly can effectively prevent to lose or the divulging a secret of the stolen classified document that causes because of memory device.
Description of drawings
Below in conjunction with accompanying drawing and embodiment the present invention is described further:
Fig. 1 is a theory structure synoptic diagram of the present invention;
Fig. 2 is the theory structure synoptic diagram of USB switch shown in Figure 1;
Fig. 3 is the theory structure synoptic diagram of CPU module shown in Figure 1;
Fig. 4 is the theory structure synoptic diagram of storage control module shown in Figure 1;
Among the figure: the I of the USB interface of 1USB interface module, 2USB switch, 3CPU module, 4 storage control module, 5Flash storer, 201DIN input end, 202DOUT1 output terminal, 203DOUT2 output terminal, 204CONTROL control end, 301 microprocessor units and peripheral chip module thereof, 302CPU module, 303IO interface, 304CPU module
2C EBI, 401 storage main control chips and peripheral circuit module, the USB interface of 402 storage control module, the I of 403 storage control module
2C EBI, 404Flash interface.
Embodiment
For the ease of explanation, accompanying drawing only illustrates the relevant part of the embodiment of the invention.As shown in Figure 1, this USB memory device comprises usb interface module 1, USB switch 2, CPU module, storage control module 4 and Flash storer 5.The DIN input end of USB switch is made up of D+ and two pins of D-, and the DOUT1 output terminal is made up of 1D+ and two pins of 1D-, and the DOUT2 output terminal is made up of 2D+ and two pins of 2D-, and the CONTROL control end is made up of S and two pins of OE, and is as shown in Figure 2.CPU module 3 comprises the I of USB interface 302, IO interface 303 and the CPU module of microprocessor unit and peripheral chip module 301 thereof, CPU module
2C EBI 304, microprocessor unit and peripheral chip module 301 thereof respectively with the I of USB interface 302, IO interface 303 and the CPU module of CPU module
2C EBI 304 links to each other, and is as shown in Figure 3.Storage control module 4 comprises storage main control chip and peripheral circuit module 401, the USB interface 402 of storage control module, the I of storage control module
2C EBI 403 and Flash interface 404, storage main control chip and peripheral circuit module 401 respectively with the USB interface 402 of storage control module, the I of storage control module
2C EBI 403 links to each other with Flash interface 404, and is as shown in Figure 4.Wherein, The DIN input end 201 of USB switch 2 links to each other with the data-interface of usb interface module 1; DOUT1 output terminal 202 links to each other with the USB interface 402 of storage control module; DOUT2 output terminal 203 links to each other with the USB interface 302 of CPU module, and CONTROL control end 204 links to each other with the IO interface 303 of CPU module; The I of CPU module
2The I of C EBI 304 and storage control module
2C EBI 403 links to each other; The Flash interface 404 of storage control module 4 links to each other with Flash storer 5.
Concrete principle of work is: ordinary password and super code are set in CUP module 3 in advance; Super code is just set when the encryption USB device dispatches from the factory; Each encrypts the corresponding super code of USB device, is provided with arbitrarily when ordinary password can be used by the user for the first time and can changes in the follow-up again use; After encrypting USB device and being connected to USB interface of computer through usb interface module 1, its power interface obtains the working power of 5 volts of direct currents from computing machine, and USB switch, CPU module and storage control module all power on, and memory device is started working.
After CPU module 3 powers on; Its IO interface 303 default conditions are the output high level down; The OE pin that is the CONTROL control end 204 of USB switch is a high level; At this moment be off-state between the 2D+ pin of the 1D+ pin of the D+ pin of DIN input end 201 and DOUT1 output terminal 202, DOUT2 output terminal 203 and between the 2D-pin of the 1D-pin of the D-pin of DIN input end 201 and DOUT1 output terminal 202, DOUT2 output terminal 203, promptly usb interface module 1 all is not communicated with storage control module 4 and CPU module 3.The microprocessor unit of CPU module 3 begins initialization; It is changed to low level through IO interface 303 with the OE pin of the CONTROL control end 204 of USB switch 2; The S pin is changed to high level; At this moment the D+ of DIN input end 201, D-pin are connected with 2D+, the 2D-pin of DOUT2 output terminal 203 respectively, and promptly CPU module 3 is communicated with usb interface module 1, and CPU module 3 can be carried out communication through usb interface module 1 and computing machine.The user imports username and password on computers and logins; Microprocessor unit checking username and password whether be provided with in advance identical, microprocessor unit is preserved user's operation informations such as computing machine MAC Address, user name and login time simultaneously.
After microprocessor unit is verified successfully to user's username and password; Through IO interface 303 the OE pin of the CONTROL control end 204 of USB switch 2 is changed to low level; The S pin is changed to low level; At this moment the D+ of DIN input end, D-pin are connected with 1D+, the 1D-pin of DOUT1 output terminal respectively, and promptly storage control module 4 is communicated with usb interface module 1, and storage control module 4 can be through usb interface module 1 and computing machine communication; At this moment this USB device is a mass-memory unit by computer Recognition, and the user can carry out read/write operation to file through storage control module on storer.
Said storage main control chip and peripheral circuit module 401 adopt Z8HM2 storage main control chip; This chip is through national Password Management office's test and be named as the SSX0905-A algorithm chip; It links to each other with the Flash storer through interface; File to write store carries out encryption, can prevent directly to read file from the Flash storer through the mode of rudimentary disk access.
Advantages such as said Flash storer 5 is a NAND Flash storer, and it is inner to adopt non-linear macroelement pattern, and it is bigger to have a capacity, and rewriting speed is fast are applicable to the storage of mass data.
Except that technical characterictic of the present invention, all the other are technology known to those skilled in the art.
Claims (3)
1. based on the USB memory device of hardware encipher, comprise usb interface module (1), storage control module (4) and Flash storer (5), it is characterized in that, also comprise USB switch (2), CPU module (3); Said usb interface module (1) comprises data-interface and the power interface that is electrically connected with USB switch, CPU module and storage control module respectively; Said CPU module (3) comprises the I of USB interface (302), IO interface (303) and the CPU module of microprocessor unit and peripheral chip module (301) thereof, CPU module
2C EBI (304), said microprocessor unit and peripheral chip module (301) thereof respectively with the I of USB interface (302), IO interface (303) and the CPU module of CPU module
2C EBI (304) links to each other; Said storage control module (4) comprises storage main control chip and peripheral circuit module (401), the USB interface (402) of storage control module, the I of storage control module
2C EBI (403) and Flash interface (404), said storage main control chip and peripheral circuit module (401) respectively with the USB interface (402) of storage control module, the I of storage control module
2C EBI (403) links to each other with Flash interface (404);
Wherein, The DIN input end (201) of said USB switch (2) links to each other with the data-interface of usb interface module (1); DOUT1 output terminal (202) links to each other with the USB interface (402) of storage control module; DOUT2 output terminal (203) links to each other with the USB interface (302) of CPU module, and CONTROL control end (204) links to each other with the IO interface (303) of CPU module; The I of said CPU module
2The I of C EBI (304) and storage control module
2C EBI (403) links to each other; The Flash interface (404) of said storage control module (4) links to each other with Flash storer (5).
2. the USB memory device based on hardware encipher according to claim 1 is characterized in that, said storage main control chip and peripheral circuit module (401) adopt Z8HM2 storage main control chip.
3. the USB memory device based on hardware encipher according to claim 1 and 2 is characterized in that, said Flash storer (5) is a NAND Flash storer.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105565471A CN102004705B (en) | 2010-11-24 | 2010-11-24 | USB storage device based on hardware encryption |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010105565471A CN102004705B (en) | 2010-11-24 | 2010-11-24 | USB storage device based on hardware encryption |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102004705A CN102004705A (en) | 2011-04-06 |
| CN102004705B true CN102004705B (en) | 2012-04-18 |
Family
ID=43812079
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010105565471A Active CN102004705B (en) | 2010-11-24 | 2010-11-24 | USB storage device based on hardware encryption |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102004705B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103235730A (en) * | 2013-04-27 | 2013-08-07 | 天津长瑞华通科技发展有限公司 | Portable management device based on C/S (client/server) client software and implementation method of device |
| CN103824581A (en) * | 2014-03-05 | 2014-05-28 | 苏州智信通电子科技有限公司 | Safe and confidential USB flash disk |
| CN106295415A (en) * | 2016-08-19 | 2017-01-04 | 芜湖市振华戎科智能科技有限公司 | A kind of USB flash disk data security control method |
| CN106934306A (en) * | 2016-10-10 | 2017-07-07 | 常州市善松信息科技有限公司 | USB storage devices based on hardware encryption |
| CN111352588A (en) * | 2020-02-24 | 2020-06-30 | 江苏集萃智能集成电路设计技术研究所有限公司 | Portable storage device, storage system based on portable storage device and communication method |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN2609061Y (en) * | 2003-03-17 | 2004-03-31 | 万国电脑股份有限公司 | Double interface MS silicon disk card |
| CN100535878C (en) * | 2004-06-15 | 2009-09-02 | 特里克2000国际有限公司 | Solid-state memory storage device for storing data wireless transmitted from host computer and transmitting data wirelessly to host computer |
| CN100465981C (en) * | 2007-04-29 | 2009-03-04 | 西南石油大学 | U-disc virus prevention interface |
| CN101321065B (en) * | 2008-06-30 | 2012-03-28 | 中国船舶重工集团公司第七〇九研究所 | USB data safety transmission technique with double-factor identity validation function |
| CN101494072B (en) * | 2009-03-06 | 2010-12-29 | 惠州市数码特信息电子有限公司 | Hard disk player and video file encryption method |
| CN201886463U (en) * | 2010-11-24 | 2011-06-29 | 国核信息科技有限公司 | USB (universal serial bus) memory device based on hardware encryption |
-
2010
- 2010-11-24 CN CN2010105565471A patent/CN102004705B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN102004705A (en) | 2011-04-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106462509B (en) | Apparatus and method for securing access protection schemes | |
| US7657754B2 (en) | Methods and apparatus for the secure handling of data in a microcontroller | |
| CN101881997B (en) | Trusted safe mobile storage device | |
| TWI447583B (en) | Data protecting method, memory controller and memory storage device | |
| CN100437618C (en) | Portable information safety device | |
| CN102004705B (en) | USB storage device based on hardware encryption | |
| CN112560058B (en) | SSD partition encryption storage system based on intelligent password key and implementation method thereof | |
| TW201942784A (en) | Data encryption, decryption method and device | |
| US20170093823A1 (en) | Encrypting Observable Address Information | |
| US20220350894A1 (en) | Endpoint Authentication based on Boot-Time Binding of Multiple Components | |
| CN201886463U (en) | USB (universal serial bus) memory device based on hardware encryption | |
| WO2020131362A1 (en) | Memory device and managed memory system with wireless debug communication port and methods for operating the same | |
| US11775652B2 (en) | Platform security mechanism | |
| CN103617127A (en) | Memory device with subareas and memorizer area dividing method | |
| CN201150069Y (en) | Information safety equipment supporting multiple identification authentication | |
| CN103020551B (en) | A kind of memory architecture | |
| CN103984901A (en) | Trusted computer system and application method thereof | |
| CN201549223U (en) | Trusted secure portable storage device | |
| CN204669402U (en) | A kind of cloud data message encrypting and decrypting system based on USB flash disk | |
| CN106934306A (en) | USB storage devices based on hardware encryption | |
| CN201917912U (en) | Monitoring and management system of USB (Universal Serial Bus) storage device | |
| CN102982290B (en) | Memory storage and terminal device | |
| CN201780792U (en) | Self-starting multi-functional safety universal serial bus (USB) flash drive based on Linux kernel | |
| US11870918B2 (en) | Security descriptor generation | |
| CN111699467A (en) | Secure element, data processing apparatus, and data processing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C53 | Correction of patent for invention or patent application | ||
| CB02 | Change of applicant information |
Address after: 250101, Ji'nan District, Shandong City, Hualong Province West Road head Applicant after: State Nuclear Power Information Technology Company Ltd. Address before: 250101 No. 1665, Hualong Road, Licheng District, Shandong, Ji'nan Applicant before: Shandong Luneng Huitong Technology Co., Ltd. |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: APPLICANT; FROM: SHANDONG LUNENG HUITONG SCIENCE AND TECHNOLOGY CO., LTD. TO: NATIONAL NUCLEAR INFORMATION TECHNOLOGY CO., LTD. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |