CN103679068A - Method, device and system for safely handling USB flash disk - Google Patents
Method, device and system for safely handling USB flash disk Download PDFInfo
- Publication number
- CN103679068A CN103679068A CN201310728777.5A CN201310728777A CN103679068A CN 103679068 A CN103679068 A CN 103679068A CN 201310728777 A CN201310728777 A CN 201310728777A CN 103679068 A CN103679068 A CN 103679068A
- Authority
- CN
- China
- Prior art keywords
- usb flash
- flash disk
- disk
- storage area
- disc information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/78—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
- G06F21/80—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in storage media based on magnetic or optical technology, e.g. disks with sectors
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/53—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by executing in a restricted environment, e.g. sandbox or secure virtual machine
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The invention discloses a method, a device and a system for safely handling a USB flash disk. The method comprises: the client-side reads disk information of the USB flash disk; the client-side performs disk mapping treatment according to a USB flash disk identification in the disk information to obtain a disk storage area associated with the USB flash disk; the operation of the USB flash disk is automatically mapped to the disk storage area associated with the USB flash disk after the client-side is connected with the USB flash disk against. By adopting the technical scheme, the problem that data in the USB flash disk in correlation techniques are easily lost and low in safety is solved. Complete safety of the data in the USB flash disk is further achieved, and a phenomenon that the data in the USB flash disk are lost due to computer virus does not occur.
Description
Technical field
The present invention relates to communication field, in particular to a kind of security processing of USB flash disk and device, system.
Background technology
Along with social progress and scientific and technological development, USB flash disk is simple to operate with it, the advantage being convenient for carrying has become the important selection mode of people's data copy instantly, yet in using the process of USB flash disk, still can there are a lot of problems, for example: if USB flash disk is stolen, the words of a lot of important data have been stored again in the inside, consequence is hardly imaginable so, and in use owing to having suffered virus etc. other reasons, all can cause the loss of vital data of USB flash disk, no matter be any situation, all can give our work with the place of a lot of inconvenience
For the data in USB flash disk in correlation technique, easily lose and the not high problem of security at present, not yet propose at present effective solution.
Summary of the invention
For the data in the USB flash disk of correlation technique, easily lose and the not high problem of security, not yet propose at present effective solution, for this reason, fundamental purpose of the present invention is to provide a kind of security processing of USB flash disk and device, system, to address the above problem.
To achieve these goals, according to an aspect of the present invention, provide a kind of security processing of USB flash disk, the method comprises: client reads the disc information of USB flash disk; Described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, obtains a disk storage area associated with described USB flash disk; After client connects USB flash disk again, the operation automatic mapping of USB flash disk is arrived to the disk storage area associated with USB flash disk.
Further, when described client is provided with virtual machine, and when described virtual machine operates in remote server, wherein, described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, the step of obtaining a disk storage area associated with described USB flash disk comprises: the USB flash disk sign in described disc information is sent on the USB flexible bus of described remote server, make that described USB flash disk is long-range is mapped to described virtual machine; Described remote server has the USB flash disk of described USB flash disk sign by described USB flexible bus identification, and in described remote server, divide a disk storage area associated with described USB flash disk, wherein, corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes the disk storage area that described USB flash disk shines upon in described remote server.
Further, after client connects USB flash disk again, the step to the operation automatic mapping of USB flash disk to the disk storage area associated with USB flash disk comprises: after client connects USB flash disk again, the virtual machine of described client reads the disc information of this USB flash disk; Move the remote server of described virtual machine and identify described USB flash disk according to described disc information, obtain the disk storage area that described USB flash disk shines upon in described remote server; Wherein, when user operates described USB flash disk, service data is kept in the disk storage area that described USB flash disk shines upon in described remote server.
Further, described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, and the step of obtaining a disk storage area associated with described USB flash disk comprises: described client sends to local Disk Mapping to drive the USB flash disk sign in described disc information; Described Disk Mapping drives at described client terminal local and divides a disk storage area associated with described USB flash disk, wherein, corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes described USB flash disk in the disk storage area of described client terminal local mapping.
Further, after client reads the disc information of USB flash disk, described method also comprises: the disc information of described USB flash disk is sent to registrar; Described registrar is registered the disc information of described USB flash disk in database, obtains the authorization message of described USB flash disk; Described authorization message is returned to described client; Wherein, after described client connects described USB flash disk, if the authorization message that described USB flash disk is corresponding detected, enter the step to the disk storage area associated with described USB flash disk to the operation automatic mapping of described USB flash disk.
To achieve these goals, according to a further aspect of the invention, also provide a kind of secure processing device of USB flash disk, having comprised: read module, for reading the disc information of USB flash disk; Mapping block, carries out Disk Mapping processing for the USB flash disk sign according to described disc information, obtains a disk storage area associated with described USB flash disk; Access modules, after connecting described USB flash disk in client, arrives the disk storage area associated with described USB flash disk to the operation automatic mapping of described USB flash disk.
Further, when described client is provided with virtual machine, and when described virtual machine operates in remote server, wherein, described mapping block comprises: the first sending module, for the USB flash disk sign of described disc information being sent to the USB flexible bus of described remote server, make that described USB flash disk is long-range is mapped to described virtual machine; Acquisition module, for obtaining after described remote server identifies the USB flash disk of described USB flash disk sign by described USB flexible bus, divides the disk storage area associated with described USB flash disk obtaining; Wherein, the corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes the disk storage area that described USB flash disk shines upon in described remote server.
Further, described access modules comprises: read module, and for after described client connects described USB flash disk again, the virtual machine of described client reads the disc information of this USB flash disk; Operation module, identifies described USB flash disk for moving the remote server of described virtual machine according to described disc information, obtains the disk storage area that described USB flash disk shines upon in described remote server; Wherein, when user operates described USB flash disk, service data is kept in the disk storage area that described USB flash disk shines upon in described remote server.
Further, described mapping block comprises: the second sending module, for sending to the Disk Mapping of client terminal local to drive the USB flash disk sign of described disc information; Divide module, for described Disk Mapping, drive at described client terminal local and divide a disk storage area associated with described USB flash disk; Wherein, the corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes described USB flash disk in the disk storage area of described client terminal local mapping.
Further, described device also comprises: the 3rd sending module, for the disc information of described USB flash disk is sent to registrar; Sub-acquisition module, registers the disc information of described USB flash disk for obtaining described registrar at database, and the authorization message obtaining; Receiver module, for receiving described authorization message; Wherein, after described client connects described USB flash disk, if the authorization message that described USB flash disk is corresponding detected, enter the described step that the operation automatic mapping of described USB flash disk is arrived to the disk storage area associated with described USB flash disk.
To achieve these goals, according to a further aspect of the invention, also provide a kind of safe processing system of USB flash disk, having comprised: USB flash disk; Client, reads the disc information of described USB flash disk, and carries out Disk Mapping processing according to the USB flash disk sign in described disc information, obtains a disk storage area associated with described USB flash disk; Wherein, after described client connects described USB flash disk again, the operation automatic mapping of described USB flash disk is arrived to the disk storage area associated with described USB flash disk.
Further, when described client is provided with virtual machine, and when described virtual machine operates in remote server, described system also comprises: remote server, set up correspondence with described client, for receive the USB flash disk of described disc information by USB flexible bus, identify, and after thering is the USB flash disk of described USB flash disk sign by described USB flexible bus identification, in described remote server, divide a disk storage area associated with described USB flash disk, wherein, corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterize the disk storage area that described USB flash disk shines upon in described remote server.
Further, described system also comprises: registrar, and receive the disc information of described USB flash disk, and in database, register the disc information of described USB flash disk, obtain the authorization message of described USB flash disk, and described authorization message is returned to described client.
By the present invention, adopt client to be mapped to a disk storage area associated with described USB flash disk according to the USB flash disk sign in the disc information of the USB flash disk reading, then can automatic mapping after client connects USB flash disk again to the technical scheme of above-mentioned disk storage area, having solved the data in USB flash disk in correlation technique easily loses and the not high problem of security, and then realized the abundant safety that guarantees USB flash disk data, and can not cause because of problems such as viruses in computer the effect of USB flash disk loss of data.
Accompanying drawing explanation
Accompanying drawing described herein is used to provide a further understanding of the present invention, forms the application's a part, and schematic description and description of the present invention is used for explaining the present invention, does not form inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is according to the structural representation of the safe processing system of the USB flash disk of the embodiment of the present invention;
Fig. 2 is the structural representation again according to the safe processing system of the USB flash disk of the embodiment of the present invention;
Fig. 3 is according to the process flow diagram of the security processing of the USB flash disk of the embodiment of the present invention;
Fig. 4 is according to the structured flowchart of the secure processing device of the USB flash disk of the embodiment of the present invention;
Fig. 5 is the structured flowchart again according to the secure processing device of the USB flash disk of the embodiment of the present invention.
Embodiment
It should be noted that, in the situation that not conflicting, embodiment and the feature in embodiment in the application can combine mutually.Describe below with reference to the accompanying drawings and in conjunction with the embodiments the present invention in detail.
Before describing the further details of various embodiments of the present invention, a suitable counting system structure of the principle can be used in the present invention is described with reference to Fig. 1.In the following description, except as otherwise noted, otherwise represent to describe various embodiments of the present invention with reference to the symbol of the action of being carried out by one or more computing machines and operation.Thus, be appreciated that and be sometimes called as processing unit that this class action that computing machine carries out and operation comprise computing machine to represent the manipulation of the electric signal of data with structured form.This manipulation transforms on data or the position in the accumulator system of computing machine, safeguard it, the operation of computing machine is reshuffled or changed to this mode of all understanding with those skilled in the art.The data structure of service data is the physical location of storer with the defined particular community of form of data.Yet although describe the present invention in above-mentioned context, it does not also mean that restrictively, as understood by those skilled in the art, the each side of hereinafter described action and operation also available hardware realizes.
Turn to accompanying drawing, wherein identical reference number refers to identical element, and principle of the present invention is shown in a suitable computing environment and realizes.Below describe the embodiments of the invention based on described, and should not think the alternative embodiment about clearly not describing herein and limit the present invention.
Fig. 2 shows the schematic diagram of an example computer architecture that can be used for these equipment.For purposes of illustration, the architecture of painting is only an example of proper environment, not usable range of the present invention or function is proposed to any limitation.This computing system should be interpreted as to the arbitrary assembly shown in Fig. 2 or its combination are had to any dependence or demand yet.
Principle of the present invention can or configure with other universal or special calculating or communication environment and operate.The example that is applicable to well-known computing system of the present invention, environment and configuration includes but not limited to, personal computer, server, multicomputer system, the system based on micro-processing, minicomputer, mainframe computer and the distributed computing environment that comprises arbitrary said system or equipment.
Fig. 1 shows the schematic diagram of an example computer architecture that can be used for these equipment.For purposes of illustration, the architecture of painting is only an example of proper environment, not the application's usable range or function is proposed to any limitation.This computing system should be interpreted as to the arbitrary assembly shown in Fig. 1 or its combination are had to any dependence or demand yet.
The application's principle can or configure with other universal or special calculating or communication environment and operate.The example that is applicable to the application's well-known computing system, environment and configuration includes but not limited to, personal computer, server, multicomputer system, the system based on micro-processing, minicomputer, mainframe computer and the distributed computing environment that comprises arbitrary said system or equipment.
In its most basic configuration, Fig. 1 is according to the structural representation of the safe processing system of the USB flash disk of the embodiment of the present invention.As shown in Figure 1, this system comprises: USB flash disk 12; Client 14, is connected with USB flash disk 12, reads the disc information of above-mentioned USB flash disk, and carries out Disk Mapping processing according to the USB flash disk sign in above-mentioned disc information, obtains a disk storage area associated with above-mentioned USB flash disk; Wherein, after above-mentioned client connects above-mentioned USB flash disk again, user is arrived to the disk storage area associated with above-mentioned USB flash disk to the operation automatic mapping of USB flash disk.
In the present embodiment, the disc information of above-mentioned USB flash disk specifically can comprise: the information such as manufacturer's numbering (Vendor Identify, referred to as VID) and production code member (Product Identify, referred to as PID).
In existing desktop cloud system, all virtual machines operate on remote server, and thin client (client) is only for showing and mouse-keyboard interactive operation.Realize technique scheme, just must be by the long-range mapping of USB, the long-range mapping of USB, simple and easy understanding is exactly the hot plug USB device on thin client, and long-range being mapped in virtual machine, experiences user, just as use USB device in this locality.In long-range mapping process, need client first the information of USB flash disk to be read out to (VID, PID, USB flash disk capacity, USB flash disk are described etc.), then send on the USB flexible bus of remote virtual machine, now, virtual machine will detect a USB flash disk and exist, then the operating system of virtual machine will perceive this USB flash disk equipment, and installs and drive for it, then just can in virtual desktop, use.
Particularly, when client is provided with virtual machine, and when above-mentioned virtual machine operates in remote server, as shown in Figure 2, said system also comprises: remote server 16, set up correspondence with above-mentioned client, for receive the USB flash disk of above-mentioned disc information by USB flexible bus, identify, and after thering is the USB flash disk of above-mentioned USB flash disk sign by above-mentioned USB flexible bus identification, in above-mentioned remote server, divide a disk storage area associated with above-mentioned USB flash disk, wherein, corresponding relation by above-mentioned USB flash disk sign with the sign of above-mentioned disk storage area, characterize the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server.
It should be noted that, after relating to this step of disc information that reads USB flash disk in above-described embodiment, all need the disc information of USB flash disk to mail in database and register, therefore the embodiment of the present invention is the further improvement of technique scheme, and as shown in 2, said system also comprises: registrar 18, receive the disc information of above-mentioned USB flash disk, and in database, register the disc information of above-mentioned USB flash disk, obtain the authorization message of above-mentioned USB flash disk, and above-mentioned authorization message is returned to above-mentioned client.
A disk storage area in the remote server that USB flash disk in above-described embodiment shines upon, the all operations of user to USB flash disk, data writing for example, in fact all in this disk storage area, complete, and the data of USB flash disk this locality do not change in fact, this disk is only the position of file in real storage U disk.And this piece disk storage area is due in remote server, be therefore with to walk, and because it is present in the cluster storage of remote server always, and not inner at USB flash disk, only have authorized user just can use, therefore guaranteed the security of USB flash disk.
In sum, the safe handling process of above-mentioned USB flash disk can inductive generalization be: this driver reads the information such as the VID of USB flash disk, PID from USB flash disk, then mail to administrative center and go registration, after authorizing, can be in the memory disk of background server, open up one section of space (by USB flash disk capacity opening space, as the USB flash disk of 8G, opening up 8G space) to this USB flash disk.When each user uses this USB flash disk, can automatic mapping in the space of opening up, and with the form of a disk, be mounted in this virtual machine, think copied files in USB flash disk, be exactly to copies data in this 8G storage space in fact, in fact do not write USB flash disk.Data in this USB flash disk can be not destroyed yet.
The technique scheme of the embodiment of the present invention provides a kind of NoData data copy mode, an i.e. USB flash disk, after the driving of cloud nest science and technology has been installed, in cloud nest desktop cloud system, use this USB flash disk, USB flash disk can normally be used, but in physical machine, uses this USB flash disk, but the data that do not copied, so just defining USB flash disk can only use in desktop cloud system, at other local usage datas, is sightless, thereby assurance data are not lost.
Fig. 3 is that the method comprises the steps: as shown in Figure 3 according to the process flow diagram of the security processing of the USB flash disk of the embodiment of the present invention
Step S302, client reads the disc information of USB flash disk.
Wherein, the disc information of above-mentioned USB flash disk specifically can comprise: the information such as VID, PID, USB flash disk capacity, USB flash disk description.
Step S304, above-mentioned client is carried out Disk Mapping processing according to the USB flash disk sign in above-mentioned disc information, obtains a disk storage area associated with above-mentioned USB flash disk.
Wherein, above-mentioned client is carried out Disk Mapping processing according to the USB flash disk sign in above-mentioned disc information, and the step of obtaining a disk storage area associated with above-mentioned USB flash disk comprises: above-mentioned client sends to local Disk Mapping to drive the USB flash disk sign in above-mentioned disc information; Above-mentioned Disk Mapping drives at above-mentioned client terminal local and divides a disk storage area associated with above-mentioned USB flash disk, wherein, corresponding relation by above-mentioned USB flash disk sign with the sign of above-mentioned disk storage area, characterizes above-mentioned USB flash disk in the disk storage area of above-mentioned client terminal local mapping.
Especially, when above-mentioned client is provided with virtual machine, and when above-mentioned virtual machine operates on remote server, this step S104 can specifically comprise the steps: that above-mentioned client identifies and carries out Disk Mapping processing according to the USB flash disk in above-mentioned disc information, the step of obtaining a disk storage area associated with above-mentioned USB flash disk comprises: the USB flash disk sign in above-mentioned disc information is sent on the USB flexible bus of above-mentioned remote server, make that above-mentioned USB flash disk is long-range is mapped to above-mentioned virtual machine; Above-mentioned remote server has the USB flash disk of above-mentioned USB flash disk sign by above-mentioned USB flexible bus identification, and in above-mentioned remote server, divide a disk storage area associated with above-mentioned USB flash disk, wherein, corresponding relation by above-mentioned USB flash disk sign with the sign of above-mentioned disk storage area, characterizes the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server.
Step S306, after above-mentioned client connects above-mentioned USB flash disk, automatic mapping is to the disk storage area associated with above-mentioned USB flash disk.
When above-mentioned client is provided with virtual machine, and above-mentioned virtual machine is while operating on remote server, and step S306 comprises: after above-mentioned client connects above-mentioned USB flash disk, the virtual machine of above-mentioned client reads the disc information of this USB flash disk; Move the remote server of above-mentioned virtual machine and identify above-mentioned USB flash disk according to above-mentioned disc information, obtain the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server; Wherein, when user operates above-mentioned USB flash disk, service data is kept in the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server.
After this step S306:, after client reads the disc information of USB flash disk, said method also comprises: the disc information of above-mentioned USB flash disk is sent to registrar; Above-mentioned registrar is registered the disc information of above-mentioned USB flash disk in database, obtains the authorization message of above-mentioned USB flash disk; Above-mentioned authorization message is returned to above-mentioned client; Wherein, after above-mentioned client connects above-mentioned USB flash disk, if the authorization message that above-mentioned USB flash disk is corresponding detected, enter above-mentioned automatic mapping to the step of the disk storage area associated with above-mentioned USB flash disk.
By above-mentioned each step, adopt client to be mapped to a disk storage area associated with described USB flash disk according to the USB flash disk sign in the disc information of the USB flash disk reading, then after client connects USB flash disk again can by all operations data to USB flash disk all automatic mapping to the technical scheme of above-mentioned disk storage area, having solved the data in USB flash disk in correlation technique easily loses and the not high problem of security, and then realized the abundant safety that guarantees USB flash disk data, and can not cause because of problems such as viruses in computer the effect of USB flash disk loss of data.In concerning security matters unit, this technology has good development space.
In fact, the dual-purpose use-pattern of a dish that the USB flash disk in the embodiment of the present invention is realized, the content that the content that use shows in desktop cloud system shows in physical machine with USB flash disk is different, and both do not interfere with each other.
It should be noted that, in the step shown in the process flow diagram of accompanying drawing, can in the computer system such as one group of computer executable instructions, carry out, and, although there is shown logical order in flow process, but in some cases, can carry out shown or described step with the order being different from herein.
A kind of secure processing device of USB flash disk is also provided in the present embodiment, for realizing above-described embodiment and preferred implementation, had carried out repeating no more of explanation, below the module relating in this device has been described.As used below, the combination of software and/or the hardware of predetermined function can be realized in term " module ".Although the described device of following examples is preferably realized with software, hardware, or the realization of the combination of software and hardware also may and be conceived.Fig. 4 is according to the structured flowchart of the secure processing device of the USB flash disk of the embodiment of the present invention.As shown in Figure 4, this device comprises:
Read module 42, for reading the disc information of USB flash disk; Mapping block 44, is connected with read module 42, for the USB flash disk sign according to above-mentioned disc information, carries out Disk Mapping processing, obtains a disk storage area associated with above-mentioned USB flash disk; Access modules 46, is connected with mapping block 44, and after connecting above-mentioned USB flash disk in client, automatic mapping is to the disk storage area associated with above-mentioned USB flash disk.
Wherein, the disc information of above-mentioned USB flash disk specifically can comprise: the information such as VID, PID, USB flash disk capacity, USB flash disk description.
The embodiment of the present invention is the further improvement of technique scheme, when above-mentioned client is provided with virtual machine, and when above-mentioned virtual machine operates in remote server, wherein, as shown in Figure 5, above-mentioned mapping block comprises: the first sending module 442, for the USB flash disk sign of above-mentioned disc information being sent to the USB flexible bus of above-mentioned remote server, makes that above-mentioned USB flash disk is long-range is mapped to above-mentioned virtual machine; Acquisition module 444, is connected with the first sending module 442, for obtaining after above-mentioned remote server identifies the USB flash disk of above-mentioned USB flash disk sign by above-mentioned USB flexible bus, divides the disk storage area associated with above-mentioned USB flash disk obtaining; Wherein, the corresponding relation by above-mentioned USB flash disk sign with the sign of above-mentioned disk storage area, characterizes the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server.
In order to realize the correlation function of access modules 46, as shown in Figure 5, access modules 46 comprises: read module 462, and for after above-mentioned client connects above-mentioned USB flash disk, the virtual machine of above-mentioned client reads the disc information of this USB flash disk; Operation module 464, is connected with read module 462, for moving the remote server of above-mentioned virtual machine, according to above-mentioned disc information, identifies above-mentioned USB flash disk, obtains the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server; Wherein, when user operates above-mentioned USB flash disk, service data is kept in the disk storage area that above-mentioned USB flash disk shines upon in above-mentioned remote server.
In the present embodiment, as shown in Figure 5, mapping block 44 also comprises: the second sending module 446, for sending to the Disk Mapping of client terminal local to drive the USB flash disk sign of above-mentioned disc information; Divide module 448, be connected with the second sending module 446, for above-mentioned Disk Mapping, drive at above-mentioned client terminal local and divide a disk storage area associated with above-mentioned USB flash disk; Wherein, the corresponding relation by above-mentioned USB flash disk sign with the sign of above-mentioned disk storage area, characterizes above-mentioned USB flash disk in the disk storage area of above-mentioned client terminal local mapping.
In order better to realize the technique effect of technique scheme, as shown in Figure 5, said apparatus also comprises: the 3rd sending module 48, for the disc information of above-mentioned USB flash disk is sent to registrar; Sub-acquisition module 50, is connected with the 3rd sending module 48, for obtaining above-mentioned registrar, registers the disc information of above-mentioned USB flash disk at database, and the authorization message obtaining; Receiver module 52, is connected with sub-acquisition module 50, for receiving above-mentioned authorization message; Wherein, after above-mentioned client connects above-mentioned USB flash disk, if the authorization message that above-mentioned USB flash disk is corresponding detected, enter above-mentioned automatic mapping to the step of the disk storage area associated with above-mentioned USB flash disk.
From above description, can find out, the present invention has realized following technique effect: solved the data in USB flash disk in correlation technique and easily lost and the not high problem of security, and then realized the abundant safety that guarantees USB flash disk data, and can not cause because of problems such as viruses in computer the effect of USB flash disk loss of data.Especially in concerning security matters unit, the technique scheme that the embodiment of the present invention provides has good development space.
As seen through the above description of the embodiments, those skilled in the art can be well understood to the mode that the application can add essential general hardware platform by software and realizes.Understanding based on such, the part that the application's technical scheme contributes to prior art in essence in other words can embody with the form of software product, this computer software product can be stored in storage medium, as ROM/RAM, magnetic disc, CD etc., comprise that some instructions are with so that a computer equipment (can be personal computer, server, or the network equipment etc.) carry out the method described in some part of each embodiment of the application or embodiment.
Each embodiment in this instructions all adopts the mode of going forward one by one to describe, between each embodiment identical similar part mutually referring to, each embodiment stresses is the difference with other embodiment.Especially, for system embodiment, because it is substantially similar in appearance to embodiment of the method, so description is fairly simple, relevant part is referring to the part explanation of embodiment of the method.
The application can be used in numerous general or special purpose computingasystem environment or configuration.For example: personal computer, server computer, handheld device or portable set, plate equipment, multicomputer system, the system based on microprocessor, set top box, programmable consumer-elcetronics devices, network PC, small-size computer, mainframe computer, comprise distributed computing environment of above any system or equipment etc.
Obviously, those skilled in the art should be understood that, above-mentioned each module of the present invention or each step can realize with general calculation element, they can concentrate on single calculation element, or be distributed on the network that a plurality of calculation elements form, alternatively, they can be realized with the executable program code of calculation element, thereby, they can be stored in memory storage and be carried out by calculation element, or they are made into respectively to each integrated circuit modules, or a plurality of modules in them or step are made into single integrated circuit module to be realized.Like this, the present invention is not restricted to any specific hardware and software combination.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (13)
1. a security processing for USB flash disk, is characterized in that, comprising:
Client reads the disc information of USB flash disk;
Described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, obtains a disk storage area associated with described USB flash disk;
After described client connects described USB flash disk again, the operation automatic mapping of described USB flash disk is arrived to the disk storage area associated with described USB flash disk.
2. method according to claim 1, it is characterized in that, when described client is provided with virtual machine, and when described virtual machine operates in remote server, wherein, described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, and the step of obtaining a disk storage area associated with described USB flash disk comprises:
USB flash disk sign in described disc information is sent on the USB flexible bus of described remote server, make that described USB flash disk is long-range is mapped to described virtual machine;
Described remote server has the USB flash disk of described USB flash disk sign by described USB flexible bus identification, and in described remote server, divide a disk storage area associated with described USB flash disk, wherein, corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes the disk storage area that described USB flash disk shines upon in described remote server.
3. method according to claim 2, is characterized in that, after described client connects described USB flash disk again, the step to the operation automatic mapping of described USB flash disk to the disk storage area associated with described USB flash disk comprises:
After described client connects described USB flash disk again, the virtual machine of described client reads the disc information of this USB flash disk;
Move the remote server of described virtual machine and identify described USB flash disk according to described disc information, obtain the disk storage area that described USB flash disk shines upon in described remote server;
Wherein, when user operates described USB flash disk, service data is kept in the disk storage area that described USB flash disk shines upon in described remote server.
4. method according to claim 1, is characterized in that, described client is carried out Disk Mapping processing according to the USB flash disk sign in described disc information, and the step of obtaining a disk storage area associated with described USB flash disk comprises:
Described client sends to local Disk Mapping to drive the USB flash disk sign in described disc information;
Described Disk Mapping drives at described client terminal local and divides a disk storage area associated with described USB flash disk, wherein, corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes described USB flash disk in the disk storage area of described client terminal local mapping.
5. according to the method described in any one in claim 1 to 4, it is characterized in that, after client reads the disc information of USB flash disk, described method also comprises:
The disc information of described USB flash disk is sent to registrar;
Described registrar is registered the disc information of described USB flash disk in database, obtains the authorization message of described USB flash disk;
Described authorization message is returned to described client;
Wherein, after described client connects described USB flash disk, if the authorization message that described USB flash disk is corresponding detected, enter the step to the disk storage area associated with described USB flash disk to the operation automatic mapping of described USB flash disk.
6. a secure processing device for USB flash disk, is characterized in that, comprising:
Read module, for reading the disc information of USB flash disk;
Mapping block, carries out Disk Mapping processing for the USB flash disk sign according to described disc information, obtains a disk storage area associated with described USB flash disk;
Access modules, for after client connects described USB flash disk again, arrives the disk storage area associated with described USB flash disk to the operation automatic mapping of described USB flash disk.
7. device according to claim 6, is characterized in that, when described client is provided with virtual machine, and described virtual machine is while operating in remote server, and wherein, described mapping block comprises:
The first sending module, for the USB flash disk sign of described disc information being sent to the USB flexible bus of described remote server, makes that described USB flash disk is long-range is mapped to described virtual machine;
Acquisition module, for obtaining after described remote server identifies the USB flash disk of described USB flash disk sign by described USB flexible bus, divides the disk storage area associated with described USB flash disk obtaining;
Wherein, the corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes the disk storage area that described USB flash disk shines upon in described remote server.
8. device according to claim 7, is characterized in that, described access modules comprises:
Read module, for after described client connects described USB flash disk again, the virtual machine of described client reads the disc information of this USB flash disk;
Operation module, identifies described USB flash disk for moving the remote server of described virtual machine according to described disc information, obtains the disk storage area that described USB flash disk shines upon in described remote server;
Wherein, when user operates described USB flash disk, service data is kept in the disk storage area that described USB flash disk shines upon in described remote server.
9. device according to claim 6, is characterized in that, described mapping block comprises:
The second sending module, for sending to the Disk Mapping of client terminal local to drive the USB flash disk sign of described disc information;
Divide module, for described Disk Mapping, drive at described client terminal local and divide a disk storage area associated with described USB flash disk;
Wherein, the corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes described USB flash disk in the disk storage area of described client terminal local mapping.
10. according to the device described in any one in claim 6 to 9, it is characterized in that, described device also comprises:
The 3rd sending module, for being sent to registrar by the disc information of described USB flash disk;
Sub-acquisition module, registers the disc information of described USB flash disk for obtaining described registrar at database, and the authorization message obtaining;
Receiver module, for receiving described authorization message;
Wherein, after described client connects described USB flash disk, if the authorization message that described USB flash disk is corresponding detected, enter the step to the disk storage area associated with described USB flash disk to the operation automatic mapping of described USB flash disk.
The safe processing system of 11. 1 kinds of USB flash disks, is characterized in that, comprising:
USB flash disk;
Client, reads the disc information of described USB flash disk, and carries out Disk Mapping processing according to the USB flash disk sign in described disc information, obtains a disk storage area associated with described USB flash disk;
Wherein, after described client connects described USB flash disk again, the operation automatic mapping of described USB flash disk is arrived to the disk storage area associated with described USB flash disk.
12. systems according to claim 11, is characterized in that, when described client is provided with virtual machine, and described virtual machine is while operating in remote server, and described system also comprises:
Remote server, set up correspondence with described client, for receive the USB flash disk of described disc information by USB flexible bus, identify, and after thering is the USB flash disk of described USB flash disk sign by described USB flexible bus identification, in described remote server, divide a disk storage area associated with described USB flash disk, wherein, the corresponding relation by described USB flash disk sign with the sign of described disk storage area, characterizes the disk storage area that described USB flash disk shines upon in described remote server.
13. systems according to claim 11, is characterized in that, described system also comprises:
Registrar, receives the disc information of described USB flash disk, and in database, registers the disc information of described USB flash disk, obtains the authorization message of described USB flash disk, and described authorization message is returned to described client.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310728777.5A CN103679068B (en) | 2013-12-25 | 2013-12-25 | Method, device and system for safely handling USB flash disk |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310728777.5A CN103679068B (en) | 2013-12-25 | 2013-12-25 | Method, device and system for safely handling USB flash disk |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103679068A true CN103679068A (en) | 2014-03-26 |
| CN103679068B CN103679068B (en) | 2017-02-01 |
Family
ID=50316573
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310728777.5A Expired - Fee Related CN103679068B (en) | 2013-12-25 | 2013-12-25 | Method, device and system for safely handling USB flash disk |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103679068B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104571950A (en) * | 2014-12-24 | 2015-04-29 | 中国科学院信息工程研究所 | Command identifying method for external storage medium |
| CN104881315A (en) * | 2014-10-27 | 2015-09-02 | 深圳市京华科讯科技有限公司 | Desktop virtualization technology based storage device mapping method and system |
| CN105100157A (en) * | 2014-05-15 | 2015-11-25 | 中兴通讯股份有限公司 | USB equipment mapping and interaction methods, apparatuses, cloud terminal, and cloud server |
| CN105159749A (en) * | 2015-09-11 | 2015-12-16 | 东莞市微云系统科技有限公司 | Method and system for redirecting local disk to a virtual machine by cloud terminal |
| CN109359488A (en) * | 2018-09-28 | 2019-02-19 | 山东超越数控电子股份有限公司 | A kind of software implementation method of safe U disc |
| CN110795156A (en) * | 2019-10-24 | 2020-02-14 | 深信服科技股份有限公司 | Mobile memory loading method, thin client, storage medium and device |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1677355A (en) * | 2004-03-31 | 2005-10-05 | 深圳市朗科科技有限公司 | Method system and apparatus for synchronous update of files |
| US20070239944A1 (en) * | 2006-02-17 | 2007-10-11 | Emulex Design & Manufacturing Corporation | Apparatus for performing storage virtualization |
| CN101272242A (en) * | 2008-02-29 | 2008-09-24 | 中兴通讯股份有限公司 | Mobile memory system and method based on network |
| CN101673230A (en) * | 2009-10-16 | 2010-03-17 | 国电南京自动化股份有限公司 | Method for automatically backing up and recovering configuration data of embedded system by using a U-disk |
| CN102325179A (en) * | 2011-09-07 | 2012-01-18 | 深圳市硅格半导体有限公司 | Mobile storage equipment and cloud content sharing method thereof |
| CN102497424A (en) * | 2011-12-12 | 2012-06-13 | 创新科存储技术(深圳)有限公司 | Method for achieving cloud storage through mobile storage device |
| CN103106159A (en) * | 2013-01-31 | 2013-05-15 | 武汉天喻信息产业股份有限公司 | Method for establishing channel to access intelligent storage device |
| CN103281361A (en) * | 2013-05-06 | 2013-09-04 | 北京启创卓越有限公司 | Personal cloud cooperation system and data management method |
-
2013
- 2013-12-25 CN CN201310728777.5A patent/CN103679068B/en not_active Expired - Fee Related
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1677355A (en) * | 2004-03-31 | 2005-10-05 | 深圳市朗科科技有限公司 | Method system and apparatus for synchronous update of files |
| US20070239944A1 (en) * | 2006-02-17 | 2007-10-11 | Emulex Design & Manufacturing Corporation | Apparatus for performing storage virtualization |
| CN101272242A (en) * | 2008-02-29 | 2008-09-24 | 中兴通讯股份有限公司 | Mobile memory system and method based on network |
| CN101673230A (en) * | 2009-10-16 | 2010-03-17 | 国电南京自动化股份有限公司 | Method for automatically backing up and recovering configuration data of embedded system by using a U-disk |
| CN102325179A (en) * | 2011-09-07 | 2012-01-18 | 深圳市硅格半导体有限公司 | Mobile storage equipment and cloud content sharing method thereof |
| CN102497424A (en) * | 2011-12-12 | 2012-06-13 | 创新科存储技术(深圳)有限公司 | Method for achieving cloud storage through mobile storage device |
| CN103106159A (en) * | 2013-01-31 | 2013-05-15 | 武汉天喻信息产业股份有限公司 | Method for establishing channel to access intelligent storage device |
| CN103281361A (en) * | 2013-05-06 | 2013-09-04 | 北京启创卓越有限公司 | Personal cloud cooperation system and data management method |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105100157A (en) * | 2014-05-15 | 2015-11-25 | 中兴通讯股份有限公司 | USB equipment mapping and interaction methods, apparatuses, cloud terminal, and cloud server |
| CN105100157B (en) * | 2014-05-15 | 2019-08-27 | 中兴通讯股份有限公司 | A kind of USB device mapping, exchange method, device, cloud terminal and Cloud Server |
| CN104881315A (en) * | 2014-10-27 | 2015-09-02 | 深圳市京华科讯科技有限公司 | Desktop virtualization technology based storage device mapping method and system |
| CN104571950A (en) * | 2014-12-24 | 2015-04-29 | 中国科学院信息工程研究所 | Command identifying method for external storage medium |
| CN104571950B (en) * | 2014-12-24 | 2018-03-23 | 中国科学院信息工程研究所 | A kind of password authentication method of peripheral hardware storage medium |
| CN105159749A (en) * | 2015-09-11 | 2015-12-16 | 东莞市微云系统科技有限公司 | Method and system for redirecting local disk to a virtual machine by cloud terminal |
| CN109359488A (en) * | 2018-09-28 | 2019-02-19 | 山东超越数控电子股份有限公司 | A kind of software implementation method of safe U disc |
| CN110795156A (en) * | 2019-10-24 | 2020-02-14 | 深信服科技股份有限公司 | Mobile memory loading method, thin client, storage medium and device |
| CN110795156B (en) * | 2019-10-24 | 2023-09-05 | 深信服科技股份有限公司 | Mobile memory loading method, thin client, storage medium and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103679068B (en) | 2017-02-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103679068A (en) | Method, device and system for safely handling USB flash disk | |
| CN106133743B (en) | System and method for optimizing the scanning of pre-installation application program | |
| CN104520869B (en) | Credible performing environment virtual machine clone | |
| CN105874464B (en) | System and method for introducing variation in subsystem output signal to prevent device-fingerprint from analyzing | |
| CN105493054B (en) | It is protected using the rapid data of double file system | |
| CN101542452B (en) | The authentication method of External memory equipment, equipment and system | |
| CN101681257B (en) | Virtual machine control | |
| CN100470440C (en) | Computing device with multiple progress structure for operating inserter program code module | |
| CN108701188A (en) | In response to detecting the potential system and method for extorting software for modification file backup | |
| WO2022134760A1 (en) | Data processing method and apparatus, and electronic device and medium | |
| CN107077546A (en) | Hold the system and method for factor authority for updating | |
| CN112104627B (en) | Block chain-based data transmission method and device, electronic equipment and storage medium | |
| CN103077345B (en) | Based on software authorization method and the system of virtual machine | |
| CN108205623A (en) | For the method and apparatus of share directory | |
| CN108197309A (en) | A kind of method, system and the readable storage medium storing program for executing of the storage of server assets information | |
| KR100891093B1 (en) | Apparatus and method for providing safe movement of secure data | |
| US9223739B2 (en) | Detection method and apparatus for hot-swapping of SD card | |
| CN101833496B (en) | Detection device based on host anti-object reusability of hard disk and detection method thereof | |
| Wang | Computer Architecture and Organization: Fundamentals and Architecture Security | |
| US9621551B2 (en) | Systems and methods for providing secure pre-boot and root authentication to an information handling system | |
| CN202217282U (en) | Safety data memory system based on finger print universal serial bus (USB) flash disk and virtual machine | |
| CN104504308B (en) | A kind of license validation method for forbidding virtual machine to use software | |
| CN104166686B (en) | Database Systems, main frame and application method based on PCI or PCIE boards | |
| CN109725856B (en) | Shared node management method and device, electronic equipment and storage medium | |
| CN103297414B (en) | License server is confirmed in virtualized environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170201 Termination date: 20171225 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |