CN102497637B - Security information protection secret-related equipment processing system and method based on WSN base station control - Google Patents
Security information protection secret-related equipment processing system and method based on WSN base station control Download PDFInfo
- Publication number
- CN102497637B CN102497637B CN201110418595.9A CN201110418595A CN102497637B CN 102497637 B CN102497637 B CN 102497637B CN 201110418595 A CN201110418595 A CN 201110418595A CN 102497637 B CN102497637 B CN 102497637B
- Authority
- CN
- China
- Prior art keywords
- concerning security
- security matters
- wsn
- base station
- equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a processing system and a processing method for controlling security information protection secret-related equipment based on a WSN base station. The system comprises a WSN base station and a secret-related device, wherein the WSN base station comprises a checking module, a secret-related device and a secret-related device, wherein the checking module is used for reading user information and user operation permission in a user data storage database, checking an operation user and permission thereof, generating a checking result and sending the checking result to the secret-related device; the secret-related equipment comprises an active WSN processing module which is used for reading the information of the operation user and the operation authority data for inspection when the secret-related equipment is started; receiving a detection result replied by the WSN base station, and controlling the secret-related equipment according to the detection result; the system can be monitored and authorized for use, has a self-destruction function and has high safety and credibility.
Description
Technical field
The present invention relates to secure processing techniques field, particularly relate to a kind of concerning security matters with security information safeguard function controlled based on WSN base station and equip treatment system and method.
Background technology
The domestic supervision to concerning security matters equipment at present, nothing more than being manage by system, employee cannot be stopped concerning security matters are equipped (including but not limited to hard disk, portable hard drive, USB flash disk, notebook computer etc.) take out of at all, allow to carry the problem also existing and use or use in non-designated region on non-concerning security matters equipment even go on business, once lose or stolen by the people had ulterior motives, consequence is abnormally dangerous.
In order to ensure the confidentiality that concerning security matters are equipped, prior art takes so-called encryption technology, relies on the intercommunication mutually of computer and concerning security matters equipment to carry out secrecy processing.Such as, send out password equip to concerning security matters by computer, concerning security matters equipment receives and checks password; If password is correct, computer just can read the information etc. of concerning security matters equipment.
One large shortcoming of this secret keeping processing method is that concerning security matters system is fixed against computer itself, if computer is stolen (such as, stolen by interior employee), thief then likely reads the information of concerning security matters equipment by computer, if cryptocompromise also can cause concerning security matters to equip leakage of data in addition; Its another large shortcoming is, for the notebook computer be easy to carry about with one, portable hard drive, flash disk etc., if likely carry out using on a public occasion divulging a secret unintentionally when going on business and taking out of, the concerning security matters equipment of common encryption, even after stolen password cracking as long as concerning security matters equipment is not damaged can be cracked by the method for byte-by-byte reading source code yet.Therefore, for the equipment relating to enterprise, government, state secret, be badly in need of a kind of safer concerning security matters equipment trusty.
Summary of the invention
The object of the present invention is to provide a kind of concerning security matters equipment treatment system and method with security information safeguard function controlled based on WSN base station, it can be monitored and license, have self-destroying function, has very high secure and trusted wilful.
For realizing a kind of security information protection concerning security matters equipment treatment system controlled based on WSN base station that the object of the invention provides, comprise and to be interconnected the WSN wireless sensor network formed by multiple WSN base station radio intercommunication, and the concerning security matters equipment of at least one node as described WSN wireless sensor network;
Described WSN base station, comprises WSN reader, storage of subscriber data database, inspection module, wherein:
Described WSN reader, carry out WSN communicate for equipping with described concerning security matters, after receiving the next operation user profile of concerning security matters equipment transmission and operating right data, described inspection module operation user profile and operating right data is sent to check and send to concerning security matters to equip assay;
Described storage of subscriber data database, for storing the label of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used to equip and user;
Described inspection module, for reading user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generates assay and sends to WSN reader;
Described concerning security matters equipment comprises memory, active WSN processing module, energy supply control module;
Wherein:
Described memory, for storing the private data of need to be keep secret;
Described active WSN processing module, for being linked into memory, and when starting this memory, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data; And receive the assay of replying described WSN base station, control energy supply control module according to assay;
Described energy supply control module, for the control information according to active WSN processing module, determines startup and the disconnection of this energy supply control module, thus controls the power supply of concerning security matters equipment.
More preferably, described concerning security matters equipment also comprises the data-interface being connected external equipment by data wire, is connected the power interface of external power source, shell, and install battery in the enclosure by power line;
Described memory, active WSN processing module, energy supply control module are arranged in the enclosure.
More preferably, described active WSN processing module, comprises active WSN label, WSN communicator module, WSN controls submodule, wherein:
Described active WSN label, for operation user profile and the operating right data of memory, and when being linked into memory and start memory, read operation user profile and operating right data, be transferred to WSN communicator module;
Described WSN communicator module, communicate for carrying out WSN with described WSN base station, after receiving the next operation user profile of WSN label transmission and operating right data, described WSN base station checks operation user profile and operating right data is sent to operate user and authority thereof, and acceptance inspection result, and assay is transferred to WSN control submodule;
Described WSN controls submodule, for receiving the assay that described WSN base station is replied, or within the time of presetting, do not receive the assay that WSN base station is replied, or inspection to concerning security matters equipment not predetermined registration operation scope inside time, according to assay, control information is set, control information is sent to energy supply control module, thus controls energy supply control module.
More preferably, in described WSN base station, described storage of subscriber data database, also for storing the record data of user;
Active WSN processing module in described concerning security matters equipment, also for passing through inspection user, after operating, sends to WSN base station by the operation note of user to concerning security matters equipment;
The WSN reader of described WSN base station, also for receiving described user operation records and being transferred to storage of subscriber data database purchase.
More preferably, described WSN base station also comprises wireless control module and the first alarm module, wherein:
Described wireless control module, equips to control concerning security matters device obliterated data or to destroy concerning security matters for being sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroy Request Control instruction;
Described first alarm module, for when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label of concerning security matters equipment is issued inspection module test, and when checking out described concerning security matters equipment user to exceed the scope of authority, give the alarm;
Described concerning security matters equipment also comprises erasing control module, destroys control module, tamper device, wireless receiving module and the second alarm module, wherein:
Described erasing control module, after triggering or receive the next data erase Request Control information of wireless transport module transmission at the signal that is triggered, the total data in erasing memory;
Destroy control module, during for receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device;
Tamper device, for when memory is opened, transmission triggering signal to erasing control module, thus controls the data in erasing control module erasing memory;
Wireless receiving module, for passing through cordless communication network, reception data erase Request Control information or destruction Request Control information, and carry out erase operation to the data in memory or carry out destruction operation to storage device data erase Request Control information or destruction Request Control information transmission to erasing control module or destruction control module;
Second alarm module, during for being built in when active WSN processing module in concerning security matters equipment, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when active WSN processing module checks the communication range of user in WSN base station to use concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module.
A kind of security information protection concerning security matters equipment processing method controlled based on WSN base station is also provided for realizing the object of the invention, operate in and equip wireless intercommunication by the concerning security matters of multiple WSN base station and at least one node as described WSN wireless sensor network and interconnect in the WSN wireless sensor network that forms, comprise the steps:
Step S100, when starting these concerning security matters equipment, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data;
Step S200, WSN base station and described concerning security matters are equipped and are carried out WSN and communicate, after receiving the next operation user profile of concerning security matters equipment transmission and operating right data, read the user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generate assay and send to concerning security matters to equip assay;
Step S300, receives the assay that described WSN base station is replied, and controls the power supply of concerning security matters equipment according to assay.
More preferably, described step S300 comprises the steps:
Step S310, described concerning security matters equipment receives the assay of replying described WSN base station, or within the time of presetting, do not receive the assay of replying WSN base station, or inspection is not to concerning security matters equipment in predetermined registration operation scope inside;
Step S320, if assay is true, namely operating user profile is true and this user has corresponding operating right, then control information is true, starts energy supply control module, and these concerning security matters of described power turn-on are equipped, for the power supply of these concerning security matters equipment, start these concerning security matters equipment;
Step S330, if assay is false, namely it is false for operating user profile, or this operation requests is not in the opereating specification preset inside, or this user does not have corresponding operating right, or within the time of presetting, do not receive the assay that WSN base station is replied, then control information is false, deenergization control module, the circuit of these concerning security matters of described power supply not conducting equipment, be not the power supply of these concerning security matters equipment, do not start these concerning security matters equipment.
More preferably, before described step S100, also comprise the steps:
Step S100 ', stores the label of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used equip and user in WSN base station, and stores the subscriber authorisation scope of application that described concerning security matters equip, the record data of described user; Storage operation user profile and operating right data in concerning security matters equipment.
More preferably, also comprise the steps: after described step S300
Step S400, concerning security matters are equipped in user by inspection, after operating, the operation note of user are sent to WSN base station to concerning security matters equipment;
Step S500, receives described user operation records and is transferred to storage of subscriber data database purchase;
Step S600, WSN base station is sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroys Request Control instruction and equips to control concerning security matters device obliterated data or to destroy concerning security matters;
Step S700, after concerning security matters are equipped in and receive the next data erase Request Control information of wireless transport module transmission, the total data in erasing memory; Or when receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device.
Step S800, when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label that concerning security matters are equipped is issued inspection module tests, and when checking out described concerning security matters equipment user to exceed the scope of authority, gives the alarm;
Step S900, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when the communication range checking user in WSN base station uses concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module.
The invention has the beneficial effects as follows: the concerning security matters with security information safeguard function controlled based on WSN base station of the present invention equip treatment system and method, effectively can control the data security of concerning security matters equipment, use region is limited, it can be monitored and license, have self-destroying function, has very high secure and trusted wilful.
Accompanying drawing explanation
Fig. 1 is the security information protection concerning security matters equipment treatment system schematic diagram that the embodiment of the present invention controls based on WSN base station;
Fig. 2 is concerning security matters equipment configuration schematic diagram in Fig. 1;
Fig. 3 is active WSN processing module structural representation in Fig. 2.
Embodiment
Clearly understand to make object of the present invention, technical scheme and advantage, below in conjunction with drawings and Examples, a kind of concerning security matters equipment treatment system with security information safeguard function based on the control of WSN base station of the present invention and method are further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
As shown in Figure 1, a kind of security information protection concerning security matters equipment treatment system controlled based on WSN base station of the embodiment of the present invention, comprise and to be interconnected the WSN wireless sensor network formed by the wireless intercommunication in multiple WSN base station 1, and the concerning security matters equipment 2 of at least one node as described WSN wireless sensor network.
Described WSN base station, comprises WSN reader 11, storage of subscriber data database 12, inspection module 13, wherein:
Described WSN reader 11, carry out WSN communicate for equipping 2 with described concerning security matters, after receiving the next operation user profile of concerning security matters equipment 2 transmission and operating right data, described inspection module 13 is sent to check and send to concerning security matters to equip assay operation user profile and operating right data.
Described storage of subscriber data database 12, for storing the label (ID) of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used to equip and user, and store the subscriber authorisation scope of application of described concerning security matters equipment, the record data of described user;
Described inspection module 13, for reading user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generates assay and sends to WSN reader 11;
As shown in Figure 2, described concerning security matters equipment comprises memory 25, active WSN processing module 26, energy supply control module 27;
Wherein:
Described memory 25, for storing the private data of need to be keep secret;
Described active WSN processing module 26, for being linked into memory 25, and when starting this memory 25, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data; And receive the assay of replying described WSN base station, control energy supply control module 27 according to assay;
Described energy supply control module 27, for the control information according to active WSN processing module 26, determines startup and the disconnection of this energy supply control module 27, thus controls the power supply of concerning security matters equipment.
Preferably, described concerning security matters equipment also comprises the data-interface 21 being connected external equipment by data wire, is connected the power interface 22 of external power source, shell 23, and be arranged on the battery 24 in shell 23 by power line;
Described memory 25, active RFID processing module 26, energy supply control module 27 are arranged in the enclosure.
As a kind of embodiment, described active WSN processing module 26 can be integrated in described concerning security matters equipment, becomes one with memory 25 and energy supply control module 27 etc.
As another kind of embodiment, described active WSN processing module 26 is independent of described memory 25 and energy supply control module 27; Described concerning security matters equipment also comprises a control interface 28, is linked in described concerning security matters equipment for described active WSN processing module 26.Like this, same concerning security matters are equipped, different operators can be had, and different operators can have different operating rights, thus ensure the safety of concerning security matters equipment better.
Preferably, as shown in Figure 3, described active WSN processing module 26, comprises active WSN label 261, WSN communicator module 262, WSN controls submodule 263, wherein:
Described active WSN label 261, for operation user profile and the operating right data of memory, and when being linked into memory and start memory, read operation user profile and operating right data, be transferred to WSN communicator module 262.
Described WSN communicator module 262, communicate for carrying out WSN with described WSN base station, after receiving the next operation user profile of WSN label transmission and operating right data, described WSN base station checks operation user profile and operating right data is sent to operate user and authority thereof, and acceptance inspection result, and assay is transferred to WSN control submodule 263.
Described WSN controls submodule 263, for receiving the assay that described WSN base station is replied, or within the time of presetting, do not receive the assay that WSN base station is replied, or inspection to concerning security matters equipment not predetermined registration operation scope inside time, according to assay, control information is set, control information is sent to energy supply control module, thus controls energy supply control module 27.
Energy supply control module 27 is according to the control information of active WSN processing module 26, if assay is true (YES), namely operating user profile is true and this user has corresponding operating right, then control information is true (YES), this energy supply control module starts, these concerning security matters of described power supply (not shown) conducting are equipped, and are the power supply of these concerning security matters equipment, start these concerning security matters equipment.
If assay is false (NO), namely it is false for operating user profile, or this operation requests is not in the opereating specification preset inside (if concerning security matters equipment is not within the scope of the WSN basic point of specifying), or this user does not have corresponding operating right, or within the time of presetting, do not receive the assay that WSN base station is replied, then control information is false (NO), this energy supply control module disconnects (not starting), the circuit of these concerning security matters of described power supply (not shown) not conducting equipment, be not the power supply of these concerning security matters equipment, do not start these concerning security matters equipment.
These concerning security matters equipment can be accessed by as wireless sensor network (Wireless Sensor Networks, WSN) base station, as a WSN node, by utilizing the RFID technique of (WSN) of wireless sensing, completed the safety certification of these concerning security matters equipment by WSN base station, thus ensure its safety.
When this concerning security matters armament-related work, first when user starts, built-in or external active WSN processing module is equipped by concerning security matters, the WSN label of read operation person and described base station communication, the information of checked operation person and operating right, if operator message is false or it haves no right to operate, or it is not in opereating specification inside, or not within the scope of network control time (as in WSN network communication range), energy supply control module does not go power supply to memory, concerning security matters equipment cannot work;
Test and backtrack test result in described WSN base station, after being received by active WSN processing module, active WSN processing module arranges control information according to assay, namely after operator's authentication is passed through, communicated with WSN base station by active WSN label, whether these concerning security matters of location inspection equipment is in the working range allowed, whether there is corresponding operating right, allow working range in and there is corresponding operating right, if arranging control information is true (YES), controls energy supply control module and switch on power for concerning security matters equipment memory is powered; If operator's authentication not by or when concerning security matters equip not in working range or when operator does not have corresponding operating right or do not receive assay in Preset Time, then arranging control information is false (NO), control energy supply control module not for concerning security matters equipment memory block powers, concerning security matters equipment cannot work.
As another kind of embodiment, described operator's authentication, operating right are verified and the checking order of service position both can be sequencing, also can carry out simultaneously.
For realizing object of the present invention, the concerning security matters equipment treatment system with security information safeguard function controlled based on WSN base station of the embodiment of the present invention, in described WSN base station, described storage of subscriber data database 12, also for storing the record data of user;
Active WSN processing module 26 in described concerning security matters equipment, also for passing through inspection user, after operating, sends to WSN base station by the operation note of user to concerning security matters equipment;
The WSN reader 11 of described WSN base station, also for receiving described user operation records and being transferred to storage of subscriber data database purchase.
More preferably, the present invention is based on the concerning security matters equipment treatment system with security information safeguard function that WSN base station controls, described WSN base station also comprises wireless control module 14 and the first alarm module 15, wherein:
Described wireless control module 14, equips to control concerning security matters device obliterated data or to destroy concerning security matters for being sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroy Request Control instruction.
Described first alarm module 15, for when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label of concerning security matters equipment is issued inspection module test, and when checking out described concerning security matters equipment user to exceed the scope of authority, give the alarm.
Described concerning security matters equipment also comprises erasing control module 29, destroys control module 213, tamper device 210, wireless receiving module 211 and the second alarm module 212.
Wherein:
Described erasing control module 29, after triggering or receive the next data erase Request Control information of wireless transport module transmission at the signal that is triggered, the total data in erasing memory;
Destroy control module 213, during for receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device;
Tamper device 210, for when memory is opened, transmission triggering signal is to erasing control module 29, thus control erasing control module 29 wipes the data in memory;
As a kind of embodiment, described tamper device 210 can be light-sensitive device, also can be the one in magnetosensitive device, pressure-sensitive device, force-sensing parts or sensitive switch, as long as triggering signal can be provided all right when opening hard disk shell.
Wireless receiving module 211, for passing through cordless communication network, reception data erase Request Control information or destruction Request Control information, and carry out erase operation to the data in memory or carry out destruction operation to storage device data erase Request Control information or destruction Request Control information transmission to erasing control module or destruction control module;
Concerning security matters equipment inside is provided with tamper device 210, when concerning security matters be equipped in non-authorized state take apart by force time, tamper device 210 sends information to erasing control module 29, and erasing control module 29 can equip data erase concerning security matters moment, guarantees that data are not divulged a secret.
Described cordless communication network can be GPRS network, 3G network, also can be the one in WSN network.
After concerning security matters equipment is lost or be stolen, because concerning security matters are equipped with the bilayer mandate protection of WSN processing module 26 and wireless receiving module 211, data can not illegally be read and write.
Concerning security matters equip built-in wireless receiving module 211 can accept the 27 pairs of concerning security matters equipment erasing breaking-up work of remote information control energy supply control module, guarantees that information is not revealed.
Second alarm module 212, during for being built in when active WSN processing module 26 in concerning security matters equipment, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when active WSN processing module checks the communication range of user in WSN base station to use concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module and carry out erase operation or destroy operation.
When active WSN processing module 26 is built in concerning security matters equipment, when concerning security matters equipment is taken out of doorway or is taken to scope that customs etc. pre-sets, be arranged on doorway, the WSN base station equipment of customs receives the signal that the WSN label in active WSN processing module 26 sends, and after inspection, if determine that these concerning security matters equipment is uncommitted to take away, then send alarm signal to memory device, avoid concerning security matters to equip and privately taken away.
Wherein said concerning security matters equipment can be the one in solid-state storage device, Fixed disk, portable hard drive or USB flash disk (flash disk); As a kind of embodiment, if these concerning security matters equipment is hard disk, then data-interface, power interface are connected with described connection device (as computer) respectively by the breach of shell; As another kind of embodiment, if these concerning security matters are equipped for portable hard drive, flash disk, then data-interface and power interface are same interface, and its structure is common USB interface or special purpose interface, data communication interface when data-interface is work, be also install or maintenance time interface.
Described battery 24 is rechargeable battery; When concerning security matters armament-related work, external power supply is the charging of described battery; When concerning security matters equipment does not work, described battery provides power supply for active WSN processing module; When destroying memory, described battery provides power supply to carry out data destroy.
Based on same technical scheme, the embodiment of the present invention also provides a kind of security information protection concerning security matters equipment processing method controlled based on WSN base station, it operates in equips wireless intercommunication by the concerning security matters of multiple WSN base station and at least one node as described WSN wireless sensor network and interconnects in the WSN wireless sensor network that forms, comprises the steps:
Step S100, when starting this and relating to equipment, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data;
Step S200, WSN base station and described concerning security matters are equipped and are carried out WSN and communicate, after receiving the next operation user profile of concerning security matters equipment transmission and operating right data, read the user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generate assay and send to concerning security matters to equip assay;
Step S300, receives the assay that described WSN base station is replied, and controls the power supply of concerning security matters equipment according to assay.
Described step S300 comprises the steps:
Step S310, described concerning security matters equipment receives the assay of replying described WSN base station, or within the time of presetting, do not receive the assay of replying WSN base station, or inspection is not to concerning security matters equipment in predetermined registration operation scope inside;
Step S320, if assay is true (YES), namely operating user profile is true and this user has corresponding operating right, then control information is true (YES), start energy supply control module, these concerning security matters of described power supply (not shown) conducting are equipped, and are the power supply of these concerning security matters equipment, start these concerning security matters equipment;
Step S330, if assay is false (NO), namely it is false for operating user profile, or this operation requests is not in the opereating specification preset inside (if concerning security matters equipment is not within the scope of the WSN basic point of specifying), or this user does not have corresponding operating right, or within the time of presetting, do not receive the assay that WSN base station is replied, then control information is false (NO), deenergization control module (not starting), the circuit of these concerning security matters of described power supply (not shown) not conducting equipment, it is not the power supply of these concerning security matters equipment, do not start these concerning security matters equipment.
Preferably, the concerning security matters equipment processing method with security information safeguard function controlled based on WSN base station of the embodiment of the present invention, before described step S100, also comprises the steps:
Step S100 ', stores the label (ID) of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used equip and user in WSN base station, and stores the subscriber authorisation scope of application that described concerning security matters equip, the record data of described user; Storage operation user profile and operating right data in concerning security matters equipment.
Preferably, the security information protection concerning security matters equipment processing method controlled based on WSN base station of the embodiment of the present invention, also comprises the steps: after described step S300
Step S400, concerning security matters are equipped in user by inspection, after operating, the operation note of user are sent to WSN base station to concerning security matters equipment;
Step S500, receives described user operation records and is transferred to storage of subscriber data database purchase.
Preferably, the concerning security matters equipment processing method with security information safeguard function controlled based on WSN base station of the embodiment of the present invention, also comprises the steps:
Step S600, WSN base station is sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroys Request Control instruction and equips to control concerning security matters device obliterated data or to destroy concerning security matters;
Step S700, after concerning security matters are equipped in and receive the next data erase Request Control information of wireless transport module transmission, the total data in erasing memory; Or when receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device.
Described step S700 also comprises the following steps:
When concerning security matters equipment is opened, transmission triggering signal triggers the data in erasing concerning security matters equipment.
More preferably, the concerning security matters equipment processing method with security information safeguard function controlled based on WSN base station of the embodiment of the present invention, also comprises the steps:
Step S800, when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label that concerning security matters are equipped is issued inspection module tests, and when checking out described concerning security matters equipment user to exceed the scope of authority, gives the alarm;
Step S900, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when the communication range checking user in WSN base station uses concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module.
The concerning security matters equipment treatment system with security information safeguard function based on the control of WSN base station of the embodiment of the present invention and method, by authorizing described in WSN base station and location, not by inner impact, make the use of the concerning security matters equipment storing data and service position is controlled, special circumstances can self-destruction, effectively can play antitheft anti-effect of divulging a secret, thoroughly solve common concerning security matters hard disk near degree of controlling management, and the actual state that cannot control, thoroughly solve storage medium and to divulge a secret problem.
Finally it should be noted that obviously, those skilled in the art can carry out various change and modification to the present invention and not depart from the spirit and scope of the present invention.Like this, if these amendments of the present invention and modification belong within the scope of the claims in the present invention and equivalent technologies thereof, then the present invention is also intended to comprise these change and modification.
Claims (12)
1. the security information protection concerning security matters equipment treatment system controlled based on WSN base station, it is characterized in that, comprise and to be interconnected the WSN wireless sensor network formed by multiple WSN base station radio intercommunication, and the concerning security matters equipment of at least one node as described WSN wireless sensor network;
Described WSN base station, comprises WSN reader, storage of subscriber data database, inspection module, wherein:
Described WSN reader, carry out WSN communicate for equipping with described concerning security matters, after receiving the next operation user profile of concerning security matters equipment transmission and operating right data, described inspection module operation user profile and operating right data is sent to check and send to concerning security matters to equip assay;
Described storage of subscriber data database, for storing the label of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used to equip and user;
Described inspection module, for reading user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generates assay and sends to WSN reader;
Described concerning security matters equipment comprises memory, active WSN processing module, energy supply control module;
Wherein:
Described memory, for storing the private data of need to be keep secret;
Described active WSN processing module, for being linked into memory, and when starting this memory, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data; And receive the assay of replying described WSN base station, control energy supply control module according to assay;
Described energy supply control module, for the control information according to active WSN processing module, determines startup and the disconnection of this energy supply control module, thus controls the power supply of concerning security matters equipment.
2. concerning security matters equipment treatment system according to claim 1, it is characterized in that, described concerning security matters equipment also comprises the data-interface being connected external equipment by data wire, is connected the power interface of external power source by power line, shell, and battery is in the enclosure installed;
Described memory, active WSN processing module, energy supply control module are arranged in the enclosure.
3. concerning security matters according to claim 1 equipment treatment system, is characterized in that, described active WSN processing module, comprises active WSN label, WSN communicator module, WSN control submodule, wherein:
Described active WSN label, for operation user profile and the operating right data of memory, and when being linked into memory and start memory, read operation user profile and operating right data, be transferred to WSN communicator module;
Described WSN communicator module, communicate for carrying out WSN with described WSN base station, after receiving the next operation user profile of active WSN label transmission and operating right data, described WSN base station checks operation user profile and operating right data is sent to operate user and authority thereof, and acceptance inspection result, and assay is transferred to WSN control submodule;
Described WSN controls submodule, for receiving the assay that described WSN base station is replied, or within the time of presetting, do not receive the assay that WSN base station is replied, or inspection to concerning security matters equipment not predetermined registration operation scope inside time, according to assay, control information is set, control information is sent to energy supply control module, thus controls energy supply control module.
4. concerning security matters equipment treatment system according to claim 1, it is characterized in that, in described WSN base station, described storage of subscriber data database, also for storing the record data of user;
Active WSN processing module in described concerning security matters equipment, also for passing through inspection user, after operating, sends to WSN base station by the operation note of user to concerning security matters equipment;
The WSN reader of described WSN base station, also for receiving described user operation records and being transferred to storage of subscriber data database purchase.
5. concerning security matters equipment treatment system according to claim 4, it is characterized in that, described WSN base station also comprises wireless control module and the first alarm module, wherein:
Described wireless control module, equips to control concerning security matters device obliterated data or to destroy concerning security matters for being sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroy Request Control instruction;
Described first alarm module, for when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label of concerning security matters equipment is issued inspection module test, and when checking out described concerning security matters equipment user to exceed the scope of authority, give the alarm;
Described concerning security matters equipment also comprises erasing control module, destroys control module, tamper device, wireless receiving module and the second alarm module, wherein:
Described erasing control module, after triggering or receive the next data erase Request Control information of wireless transport module transmission at the signal that is triggered, the total data in erasing memory;
Destroy control module, during for receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device;
Tamper device, for when memory is opened, transmission triggering signal to erasing control module, thus controls the data in erasing control module erasing memory;
Wireless receiving module, for passing through cordless communication network, reception data erase Request Control information or destruction Request Control information, and carry out erase operation to the data in memory or carry out destruction operation to storage device data erase Request Control information or destruction Request Control information transmission to erasing control module or destruction control module;
Second alarm module, during for being built in when active WSN processing module in concerning security matters equipment, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when active WSN processing module checks the communication range of user in WSN base station to use concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module.
6. concerning security matters equipment treatment system according to claim 1, it is characterized in that, described concerning security matters are equipped for the one in Fixed disk, portable hard drive or USB flash disk.
7. equip the concerning security matters equipment processing method for the treatment of system based on the security information protection concerning security matters controlled based on WSN base station according to claim 1 for one kind, it is characterized in that, operate in and equip wireless intercommunication by the concerning security matters of multiple WSN base station and at least one node as WSN wireless sensor network and interconnect in the WSN wireless sensor network that forms, comprise the steps:
Step S100, when starting these concerning security matters equipment, read operation user profile and operating right data, and carry out WSN with described WSN base station and communicate, send to described WSN base station to test operation user profile and operating right data;
Step S200, WSN base station and described concerning security matters are equipped and are carried out WSN and communicate, after receiving the next operation user profile of concerning security matters equipment transmission and operating right data, read the user profile in storage of subscriber data database and user operation authority, checked operation user and authority thereof, and generate assay and send to concerning security matters to equip assay;
Step S300, receives the assay that described WSN base station is replied, and controls the power supply of concerning security matters equipment according to assay.
8. concerning security matters equipment processing method according to claim 7, it is characterized in that, described step S300 comprises the steps:
Step S310, described concerning security matters equipment receives the assay of replying described WSN base station, or within the time of presetting, do not receive the assay of replying WSN base station, or inspection is not to concerning security matters equipment in predetermined registration operation scope inside;
Step S320, if assay is true, namely operating user profile is true and this user has corresponding operating right, then control information is true, starts energy supply control module, and these concerning security matters of power turn-on are equipped, and is the power supply of these concerning security matters equipment, starts these concerning security matters equipment;
Step S330, if assay is false, namely it is false for operating user profile, or this operation requests is not in the opereating specification preset inside, or this user does not have corresponding operating right, or within the time of presetting, do not receive the assay that WSN base station is replied, then control information is false, deenergization control module, the circuit of these concerning security matters of power supply not conducting equipment, be not the power supply of these concerning security matters equipment, do not start these concerning security matters equipment.
9. concerning security matters equipment processing method according to claim 7, is characterized in that, before described step S100, also comprise the steps:
Step S100 ', stores the label of concerning security matters equipment, the operating right of the user profile that concerning security matters can be used equip and user in WSN base station, and stores the subscriber authorisation scope of application that described concerning security matters equip, the record data of described user; Storage operation user profile and operating right data in concerning security matters equipment.
10. concerning security matters equipment processing method according to claim 7, is characterized in that, also comprise the steps: after described step S300
Step S400, concerning security matters are equipped in user by inspection, after operating, the operation note of user are sent to WSN base station to concerning security matters equipment;
Step S500, receives described user operation records and is transferred to storage of subscriber data database purchase;
Step S600, WSN base station is sent erasing Request Control instruction by cordless communication network to described concerning security matters equipment or destroys Request Control instruction and equips to control concerning security matters device obliterated data or to destroy concerning security matters;
Step S700, after concerning security matters are equipped in and receive the next data erase Request Control information of wireless transport module transmission, the total data in erasing memory; Or when receiving the destruction Request Control information of wireless control module, automatically by starting heavy current or starting the circuit that mechanical system destroys storage device.
11. concerning security matters equipment processing methods according to claim 10, it is characterized in that, described step S700 also comprises the following steps:
When concerning security matters equipment is opened, transmission triggering signal triggers the data in erasing concerning security matters equipment.
12. concerning security matters equipment processing methods according to claim 10, is characterized in that, also comprise the steps:
Step S800, when described concerning security matters equipment is by preset range, receives described concerning security matters and equip the signal sent, and the label that concerning security matters are equipped is issued inspection module tests, and when checking out described concerning security matters equipment user to exceed the scope of authority, gives the alarm;
Step S900, be in default WSN base station range at concerning security matters equipment, acceptance inspection result also sends alarm signal and alarm when determining its unauthorized; Or when the communication range checking user in WSN base station uses concerning security matters device outward, send alarm signal and alarm, or start erasing control module or destroy control module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110418595.9A CN102497637B (en) | 2011-12-14 | 2011-12-14 | Security information protection secret-related equipment processing system and method based on WSN base station control |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110418595.9A CN102497637B (en) | 2011-12-14 | 2011-12-14 | Security information protection secret-related equipment processing system and method based on WSN base station control |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102497637A CN102497637A (en) | 2012-06-13 |
| CN102497637B true CN102497637B (en) | 2015-09-02 |
Family
ID=46189417
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110418595.9A Active CN102497637B (en) | 2011-12-14 | 2011-12-14 | Security information protection secret-related equipment processing system and method based on WSN base station control |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102497637B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105743640A (en) * | 2016-01-22 | 2016-07-06 | 广州御银科技股份有限公司 | Key protection module |
| CN107958281A (en) * | 2017-12-13 | 2018-04-24 | 深圳道尔法科技有限公司 | Fingerprint U disk and its data transmission method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1549614A (en) * | 2003-05-07 | 2004-11-24 | ��Ϊ��������˾ | Mobile communication system and method for controlling mobile terminal external equipment |
| CN101854581A (en) * | 2009-03-31 | 2010-10-06 | 联想(北京)有限公司 | Method for setting security level of mobile terminal on basis of position information and mobile terminal |
-
2011
- 2011-12-14 CN CN201110418595.9A patent/CN102497637B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1549614A (en) * | 2003-05-07 | 2004-11-24 | ��Ϊ��������˾ | Mobile communication system and method for controlling mobile terminal external equipment |
| CN101854581A (en) * | 2009-03-31 | 2010-10-06 | 联想(北京)有限公司 | Method for setting security level of mobile terminal on basis of position information and mobile terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102497637A (en) | 2012-06-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102597960B (en) | Data protecting device | |
| CN103370717B (en) | Always-available embedded theft reaction subsystem | |
| US20030065934A1 (en) | After the fact protection of data in remote personal and wireless devices | |
| TWI464617B (en) | Always-available embedded theft reaction subsystem | |
| CN104657671A (en) | Access authority management method and system for mobile storage device | |
| CN101237353B (en) | A method and system for monitoring mobile storage device based on USBKEY | |
| CN103227776A (en) | Configuration method, configuration device, computer program product and control system | |
| US8307055B2 (en) | Secure platform management device | |
| TW201602825A (en) | Centralized security for a computing device | |
| CN104364793A (en) | Security mode for mobile communications devices | |
| CN111327422A (en) | Cipher machine with key destruction function and key destruction method | |
| CN103440462A (en) | Embedded control method for improving security and secrecy performance of security microprocessor | |
| CN102316449A (en) | Security terminal system and authentication and interruption method thereof | |
| TW201028883A (en) | Secure platform management device | |
| CN102541766B (en) | Classified memory with security information protecting function based on WSN (wireless sensor network) base station control | |
| CN103488920A (en) | Implementation method and system of wireless information safety device | |
| CN105006045A (en) | NFC cell phone dynamic password entrance guard system and control method thereof | |
| CN102497637B (en) | Security information protection secret-related equipment processing system and method based on WSN base station control | |
| JP5260908B2 (en) | Control device, communication device, control system, control method, and control program | |
| CN111236105A (en) | Management method, device and system of parking spot lock and parking spot lock | |
| JPH08314805A (en) | System for preventing portable radio terminal from being illegally used and method for executing the same | |
| CN116339839A (en) | Method and device for wirelessly reading BMS system information, electronic equipment and memory | |
| JP2009081487A (en) | Security terminal unit, computer program, and information communication system | |
| US9177161B2 (en) | Systems and methods for secure access modules | |
| JP4240962B2 (en) | Information terminal management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220525 Address after: 401120 room 6-2, building 1, Dadi garden, No. 20, Yanghe North Road, Longxi street, Yubei District, Chongqing Patentee after: Chongqing Ruikun Technology Development Co.,Ltd. Address before: 100176 3rd floor, building 56, BDA international enterprise Avenue, 2 Jingyuan North Street, Beijing Economic and Technological Development Zone, Daxing District, Beijing Patentee before: GTI INTERNATIONAL SEMICONDUCTOR TECHNOLOGY Co.,Ltd. |
|
| TR01 | Transfer of patent right |