CN102737197A - Data equipment shielding method and device - Google Patents
Data equipment shielding method and device Download PDFInfo
- Publication number
- CN102737197A CN102737197A CN2011102869785A CN201110286978A CN102737197A CN 102737197 A CN102737197 A CN 102737197A CN 2011102869785 A CN2011102869785 A CN 2011102869785A CN 201110286978 A CN201110286978 A CN 201110286978A CN 102737197 A CN102737197 A CN 102737197A
- Authority
- CN
- China
- Prior art keywords
- data equipment
- interface
- access request
- api
- ssdt
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a data equipment shielding method which is characterized by comprising the steps of: looking up an interface for accessing data equipment; after the interface for accessing data equipment is looked up, receiving an access request of the interface of accessible equipment by the interface for accessing the data equipment; recording the access request in an SSDT (System Service Descriptor Table); judging whether the data equipment meets the shielding conditions, if so, prohibiting the access request in the SSDT from transferring to an API (Application Program Interface), if not, transferring the access request in the SSDT to the API. The method and the device can really achieve the purpose of protecting the safety of the data equipment.
Description
Technical field
The present invention relates to fields such as mobile storage, data security, particularly a kind of screen method and device that is used for data equipment.
Background technology
Movable storage device more and more widely be applied in various fields, the type of movable storage device is very abundant also, brings the while greatly easily in the work of giving and life, also brought great potential safety hazard.
When movable storage device need be inserted in the terminal; The driving and the relevant configuration that only need possess movable storage device; Some mobile device even need not drive or such driving has been integrated in the terminal operating system, just can carry out read/write operation to movable storage device.This has just increased movable storage device greatly by the chance of virus or wooden horse infection.
In the prior art; Each computation machine security service provider and movable storage device supplier have taked some means to come movable storage device and data file thereof are carried out safe prevention and control; Generally all be employed in BIOS (the Basic Input Output System of bottom for the prevention and control of movable storage device; Basic Input or Output System (BIOS)), make unwanted equipment can not be linked into the local terminal directly with device mask.Generally be employed in for the data file of movable storage device and just utilize existing antivirus software that the data file is scanned virus killing in the data security prevention and control, and find out virus document, to prevent the viral attack system.
Summary of the invention
The present invention provides a kind of screen method and device that is used for data equipment, to prevent any reading of data equipment.
For achieving the above object, the present invention provides a kind of screen method that is used for data equipment, comprising:
Search the interface that is used to insert data equipment;
Find be used to insert the interface of data equipment after, but receive the access request of access device interface through the said interface that is used to insert data equipment;
Said access request is documented among the system service descriptor table SSDT;
Judge whether said data equipment satisfies the shielding condition;
When satisfying the shielding condition, forbid that the access request among the said SSDT is transmitted to API API; When not satisfying shielding strip spare, if the access request among the said SSDT is transmitted to said API API.
The present invention also provides a kind of shield assembly that is used for data equipment, comprising:
Search the unit, be used to search the interface that is used to insert data equipment;
Receiving element, but be used for receiving the access request of access device interface through the said interface that is used to insert data equipment;
The record unit is used for said access request is documented in system service descriptor table SSDT;
Judging unit is used to judge whether said data equipment satisfies the shielding condition;
Retransmission unit is used for when satisfying the shielding condition, forbids that the access request among the said SSDT is transmitted to API API; When not satisfying shielding strip spare, if the access request among the said SSDT is transmitted to said API API
Compared with prior art, embodiments of the invention have the following advantages:
Through application invention, through movable storage device, judge whether to satisfy the shielding condition to connecting system, data equipment is read arbitrarily preventing.
Description of drawings
In order to be illustrated more clearly in the technical scheme of the embodiment of the invention; The accompanying drawing that will use in will describing embodiment is below done to introduce simply; Obviously, the accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills; Under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is a kind of screen method process flow diagram that is used for data equipment in the embodiment of the invention;
Fig. 2 is a kind of shield assembly structural drawing that is used for data equipment in the embodiment of the invention two;
Embodiment
To combine the accompanying drawing in the embodiment of the invention below, the technical scheme in the embodiment of the invention will be carried out clear, intactly description, it is pointed out that described embodiment only is a part of embodiment of the present invention, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills are not making the every other embodiment that is obtained under the creative work prerequisite, all belong to the scope of the present invention's protection.
Relate generally to Drive Layer in the safe prevention and control of movable storage device access windows system; SSDT (System Service Dispatch Table; The system service descriptor table) and three levels of API (Application Programming Interface, API), in the equipment access system through can directly information being transmitted to API after the Drive Layer identification; API shows facility information the user then can carry out associative operation.
A kind of screen method that is used for data equipment is provided in the embodiment of the invention one, as shown in Figure 1, comprising:
Step S101: search the interface that is used to insert data equipment.
Step S102, find be used to insert the interface of data equipment after, but receive the access request of access device interface through the said interface that is used to insert data equipment.
Step S103, said access request is documented among the system service descriptor table SSDT.
Step S104, judge whether said data equipment satisfies the shielding condition.
Judge whether said data equipment satisfies the shielding condition and be specially:
Method one, insert sign, then do not meet the shielding condition when access device carries; Do not insert expression if access device carries, then meet the shielding condition.
Method two, when the ID of said access device in said masked list, then judge the shielding condition that meets; When the ID of said access device not in said masked list, then judge the shielding condition that do not meet.
Step S105, when satisfying the shielding condition, forbid that the access request among the said SSDT is transmitted to API API; When not satisfying shielding strip spare, if the access request among the said SSDT is transmitted to said API API.
In the embodiment of the invention; Through movable storage device, in SSDT, carry out the judgement of further secure access authority, to the equipment notice API of access rights is arranged to connecting system; Do not have the direct shielding of equipment of access rights not notify the method for API, ensured the safety of data equipment.
A kind of shield assembly that is used for data equipment is provided in the embodiment of the invention two, as shown in Figure 2, comprising:
Receiving element 202, but be used for receiving the access request of access device interface through the said interface that is used to insert data equipment;
Through the description of above embodiment, those skilled in the art can be well understood to the present invention and can realize through software, also can realize by the mode that software adds necessary general hardware platform.Based on such understanding; Technical scheme of the present invention can be come out with the embodied of software product, this software product can be stored in a non-volatile memory medium (can be CD-ROM, USB flash disk; Portable hard drive etc.) in; Comprise some instructions with so that computer equipment (can be personal computer, server, the perhaps network equipment etc.) carry out the described method of each embodiment of the present invention.
The above; Be merely a best specific embodiment of the present invention, but characteristic of the present invention is not limited thereto, any people who is familiar with this technology is in field of the present invention; The variation that can expect easily or modification all should be encompassed in the following claim of the present invention.
Claims (4)
1. a screen method that is used for data equipment is characterized in that, this method comprises:
Search the interface that is used to insert data equipment;
Find be used to insert the interface of data equipment after, but receive the access request of access device interface through the said interface that is used to insert data equipment;
Said access request is documented among the system service descriptor table SSDT;
Judge whether said data equipment satisfies the shielding condition;
When satisfying the shielding condition, forbid that the access request among the said SSDT is transmitted to API API; When not satisfying shielding strip spare, if the access request among the said SSDT is transmitted to said API API.
2. the method for claim 1 is characterized in that, whether said judgment data equipment satisfies the shielding condition comprises:
Insert sign when access device carries, then do not meet the shielding condition
Do not insert expression if access device carries, then meet the shielding condition.
3. the method for claim 1 is characterized in that, also comprises:
On the said SSDT masked list is set, whether said judgment data equipment satisfies the shielding condition comprises:
When the ID of said access device in said masked list, then judge the shielding condition that meets;
When the ID of said access device not in said masked list, then judge the shielding condition that do not meet.
4. a screen method device that is used for data equipment is characterized in that, comprising:
Search the unit, be used to search the interface that is used to insert data equipment;
Receiving element, but be used for receiving the access request of access device interface through the said interface that is used to insert data equipment;
The record unit is used for said access request is documented in system service descriptor table SSDT;
Judging unit is used to judge whether said data equipment satisfies the shielding condition;
Retransmission unit is used for when satisfying the shielding condition, forbids that the access request among the said SSDT is transmitted to API API; When not satisfying shielding strip spare, if the access request among the said SSDT is transmitted to said API API.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102869785A CN102737197A (en) | 2011-09-23 | 2011-09-23 | Data equipment shielding method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102869785A CN102737197A (en) | 2011-09-23 | 2011-09-23 | Data equipment shielding method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102737197A true CN102737197A (en) | 2012-10-17 |
Family
ID=46992684
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011102869785A Pending CN102737197A (en) | 2011-09-23 | 2011-09-23 | Data equipment shielding method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102737197A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1731310A (en) * | 2005-08-04 | 2006-02-08 | 西安交通大学 | Intrusion detection method for host under Windows environment |
| CN101183418A (en) * | 2007-12-25 | 2008-05-21 | 北京大学 | Windows concealed malevolence software detection method |
| CN101533452A (en) * | 2009-04-17 | 2009-09-16 | 上海北大方正科技电脑系统有限公司 | Method for protecting cipher of USB interface |
| US20090327688A1 (en) * | 2008-06-28 | 2009-12-31 | Chengdu Huawei Symantec Technologies Co., Ltd. | Method and system for detecting a malicious code |
-
2011
- 2011-09-23 CN CN2011102869785A patent/CN102737197A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1731310A (en) * | 2005-08-04 | 2006-02-08 | 西安交通大学 | Intrusion detection method for host under Windows environment |
| CN101183418A (en) * | 2007-12-25 | 2008-05-21 | 北京大学 | Windows concealed malevolence software detection method |
| US20090327688A1 (en) * | 2008-06-28 | 2009-12-31 | Chengdu Huawei Symantec Technologies Co., Ltd. | Method and system for detecting a malicious code |
| CN101533452A (en) * | 2009-04-17 | 2009-09-16 | 上海北大方正科技电脑系统有限公司 | Method for protecting cipher of USB interface |
Non-Patent Citations (1)
| Title |
|---|
| 陈宇: "北京电视台高清新闻网P2卡安全防护管理系统设计与实践", 《现代电视技术》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8782793B2 (en) | System and method for detection and treatment of malware on data storage devices | |
| CN105765597A (en) | Pre-identifying probable malicious rootkit behavior using behavioral contracts | |
| US20100100929A1 (en) | Apparatus and method for security managing of information terminal | |
| JP6139028B2 (en) | System and method for instructing application updates | |
| CN105930726B (en) | A kind of processing method and user terminal of malicious operation behavior | |
| CN107944292B (en) | Privacy data protection method and system | |
| CN103886270A (en) | Terminal and method for improving system safety | |
| CN105930739A (en) | Method and terminal for preventing file from being deleted | |
| CN107563192A (en) | A kind of means of defence for extorting software, device, electronic equipment and storage medium | |
| CN104680070A (en) | Method, device and system for managing files used by user | |
| CN104123495A (en) | Method for neutralizing malicious software blocking computer operation | |
| CN102194079A (en) | File access filtering method | |
| CN103020854A (en) | Service function authorization method and system | |
| US20100318501A1 (en) | Methods and systems for rule-based worm enforcement | |
| CN106682504B (en) | A kind of method, apparatus for preventing file from maliciously being edited and electronic equipment | |
| CN104992116A (en) | Monitoring method and system based on intent sniffer | |
| CN103914665A (en) | Method and device for protecting movable storage device data security | |
| CN104462898A (en) | Object file protecting method and device based on Android system | |
| CN102737193A (en) | Equipment shielding method and device for data security prevention and control | |
| CN107368738B (en) | Root prevention method and Root prevention device for intelligent equipment | |
| CN102737175A (en) | Equipment access method and user equipment and device in data security protection and control | |
| CN104573509B (en) | System time means of defence and device | |
| CN106203121A (en) | Method and device for preventing malicious modification of kernel address and terminal | |
| CN102737197A (en) | Data equipment shielding method and device | |
| CN111062061B (en) | Safety protection method and system for ios system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20121017 |
|
| RJ01 | Rejection of invention patent application after publication |