CN103838998A - Code configuring and using method and device - Google Patents

Code configuring and using method and device Download PDF

Info

Publication number
CN103838998A
CN103838998A CN201410095083.7A CN201410095083A CN103838998A CN 103838998 A CN103838998 A CN 103838998A CN 201410095083 A CN201410095083 A CN 201410095083A CN 103838998 A CN103838998 A CN 103838998A
Authority
CN
China
Prior art keywords
time
cryptographic validity
password
state
validity
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201410095083.7A
Other languages
Chinese (zh)
Inventor
赵哲
蒋小安
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201410095083.7A priority Critical patent/CN103838998A/en
Publication of CN103838998A publication Critical patent/CN103838998A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/572Secure firmware programming, e.g. of basic input output system [BIOS]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2125Just-in-time application of countermeasures, e.g., on-the-fly decryption, just-in-time obfuscation or de-obfuscation

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Accessory Devices And Overall Control Thereof (AREA)
  • Ink Jet (AREA)

Abstract

The embodiment of the invention discloses a code configuring and using method and device, and relates to the field of information safety. Reconfiguration for codes can be simplified. According to the concrete scheme, the code configuring and using method includes the steps that the state of a code validity period setting function is obtained through the code configuring device and includes opening and closing; when the state of the code validity period setting function is open, an input code validity period and starting time of the code validity period are obtained through the code configuring device, the starting time of the code validity period includes network starting time and local computer starting time, and the code configuring device stores the state of the code validity period setting function, the code validity period and the starting time of the code validity period. The code configuring and using method and device are suitable for code operation.

Description

A kind of configuration, using method and device of password
Technical field
The present invention relates to information security field, relate in particular to a kind of configuration, using method and device of password.
Background technology
In prior art, BIOS(Basic Input Output System, Basic Input or Output System (BIOS)) be one group and be cured in computing machine a ROM(Read-Only Memory on mainboard, ROM (read-only memory)) program on chip, self-check program and system self-triggered program, editmenu after the program of the most important basic input and output of its in store computing machine, start.Its major function provides the bottom, the most direct hardware setting, control and access for computing machine.System configuration generally leaves CMOS(Complementary Metal Oxide Semiconductor in, complementary metal oxide semiconductor (CMOS)) Ram(random access memory, random access memory) or flash(Flash Memory, involatile internal memory) in, can arrange by the startup menu of BIOS, this menu generally can enter by next shortcut in the time of start, and it provides simple interface for users to check, revise.
BIOS password uses in both cases, and the one, when checking or changing BIOS and arrange, need to input password, the 2nd, in system starting process, input password.Password can arrange, revise and delete in the startup menu of BIOS, rear password is set and is generally kept in CMOS or Flash.
Existing BIOS Password Management mechanism is a general specification; password arranges rear continuously effective; and people do not wish that under some scene BIOS password comes into force in reality always; for example: supplier often will do some special being configured to and realize to the startup configuration of BIOS the function of differentiation; for the consideration of the aspect such as competitive power and system reliability, the startup configuration of BIOS cryptoguard BIOS need to be set.Within the maintenance phase, the startup of being safeguarded BIOS by supplier configures, exceed and safeguard after date, must carry out maintain configuration by user oneself, and now password is still effective, supplier just need to be to each user's open code, and each user's password may be different, more loaded down with trivial details to reshuffling of password.
Summary of the invention
Configuration, using method and the device of the password that embodiments of the invention provide, can simplify reshuffling password.
For achieving the above object, embodiments of the invention adopt following technical scheme:
First aspect, provides a kind of collocation method of password, comprising:
Password inking device obtains the state that function is set of cryptographic validity, and the state that function is set of described cryptographic validity comprises opening and closing;
In the time that the state that function is set of described cryptographic validity is unlatching, described password inking device obtains the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password;
Described password inking device is stored the initial time of the state that function is set of described cryptographic validity, described cryptographic validity and described cryptographic validity.
In conjunction with first aspect, in the possible implementation of the first, described password inking device comprises before obtaining the state that function is set of cryptographic validity:
Described password inking device arranges function control message according to the cryptographic validity of input, changes the state that function is set of described cryptographic validity.
In conjunction with first aspect, in the possible implementation of the second, described method also comprises:
Described password inking device is according to the control message that exceeds the time limit to remind of cryptographic validity of input, changes the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing;
The state of reminding exceeds the time limit described in described password inking device obtains;
In the time that the described state that exceeds the time limit to remind is unlatching, described password inking device obtains the prompting rule of the described cryptographic validity of input, and described prompting rule comprises reminder time;
Described password inking device is stored state and the described prompting rule of the prompting of exceeding the time limit of described cryptographic validity.
Second aspect, provides a kind of using method of password, comprising:
Encryption apparatus obtains the state that arranges of password, and the state that arranges of described password comprises and password is set and password is not set;
When the state that arranges of described password is when arranging password, described encryption apparatus obtains the state that function is set of the cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing;
In the time that the state that function is set of described cryptographic validity is unlatching, described encryption apparatus obtains current time;
In the time obtaining current time success, described encryption apparatus obtains the described cryptographic validity of storage and the initial time of described cryptographic validity;
Described encryption apparatus calculates the time interval between described current time and the initial time of described cryptographic validity;
If described interval greater than described cryptographic validity described password inking device judge that described cryptographic validity exceeds the time limit;
If the described time interval be not more than described cryptographic validity described password inking device judge that described cryptographic validity does not exceed the time limit;
In the time that described cryptographic validity exceeds the time limit, described encryption apparatus is removed password;
In the time that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
In conjunction with second aspect, in the possible implementation of the first, described method also comprises:
In the time obtaining current time failure, described encryption apparatus judges that described cryptographic validity does not exceed the time limit.
In conjunction with second aspect and the possible implementation of the first, in the possible implementation of the second, described password using method also comprises:
Obtaining current time when success, described encryption apparatus obtains the state reminded of exceeding the time limit of the described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing;
In the time that the described state that exceeds the time limit to remind is unlatching, described encryption apparatus obtains the prompting rule of the described cryptographic validity of storage, and described prompting rule comprises reminder time;
Described encryption apparatus calculates the time of the described time interval and described reminder time and whether is greater than described cryptographic validity;
When the described time with while being greater than described cryptographic validity, described encryption apparatus ejects and exceeds the time limit to remind.
The third aspect, provides a kind of password inking device, comprising:
Acquiring unit, for obtaining the state that function is set of cryptographic validity, the state that function is set of described cryptographic validity comprises opening and closing;
The state that function is set of the described cryptographic validity obtaining when described acquiring unit is when opening, described acquiring unit is also for obtaining the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password;
Storage unit, for storing the initial time of the state that function is set, described cryptographic validity and described cryptographic validity of the described cryptographic validity that described acquiring unit obtains.
In conjunction with the third aspect, in the possible implementation of the first, described password inking device also comprises:
Setting unit, for the cryptographic validity according to input function control message is set, change the state that function is set of described cryptographic validity, so that described acquiring unit obtains the state that function is set of the described cryptographic validity that described setting unit sets.
In conjunction with the third aspect, in the possible implementation of the second, described password inking device also comprises:
Remind control module, for the control message that exceeds the time limit to remind of cryptographic validity according to input, change the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing;
Described acquiring unit is the state for exceeding the time limit described in obtaining that described prompting control module sets to remind also;
When described acquiring unit obtain described in exceed the time limit the state reminded when opening, described acquiring unit is also for obtaining the prompting rule of described cryptographic validity of input, described prompting rule comprises reminder time;
Described storage unit is also for storing state and the described prompting rule of reminding of exceeding the time limit of described cryptographic validity that described acquiring unit obtains.
Fourth aspect, provides a kind of encryption apparatus, comprising:
Acquiring unit, for obtaining the state that arranges of password, the state that arranges of described password comprises and password is set and password is not set;
The state that arranges of the described password obtaining when described acquiring unit is when arranging password, and described acquiring unit is also for obtaining the state that function is set of cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing;
The state that function is set of the described cryptographic validity obtaining when described acquiring unit is when opening, and described acquiring unit is also for obtaining current time;
In the time that described acquiring unit obtains current time success, described acquiring unit is also for obtaining the described cryptographic validity of storage and the initial time of described cryptographic validity;
Computing unit, for calculating the time interval between described current time and the initial time of described cryptographic validity that described acquiring unit obtains;
Judging unit, if the described described cryptographic validity obtaining interval greater than described acquiring unit that described computing unit calculates, described judging unit is used for judging that described cryptographic validity exceeds the time limit;
If the described time interval that described computing unit calculates is not more than the described cryptographic validity that described acquiring unit obtains, described judging unit is also for judging that described cryptographic validity does not exceed the time limit;
Remove unit, in the time that described judging unit judges that described cryptographic validity exceeds the time limit, for removing password;
In the time that described judging unit judges that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
In conjunction with fourth aspect, in the possible implementation of the first, described judging unit also for: obtain current time when failure at described acquiring unit, judge that described cryptographic validity does not exceed the time limit.
In conjunction with fourth aspect or the possible implementation of the first, in the possible implementation of the second, described encryption apparatus also comprises: notification unit,
Obtain current time when success at described acquiring unit, described acquiring unit is also for obtaining the state reminded of exceeding the time limit of described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing;
When described acquiring unit obtain described in exceed the time limit the state reminded when opening, described acquiring unit is also for obtaining the prompting rule of described cryptographic validity of storage, described prompting rule comprises reminder time;
Described judging unit, also for calculating the time of the described reminder time that described time interval that described computing unit draws and described acquiring unit obtain and whether being greater than the described cryptographic validity that described acquiring unit obtains;
When the result of calculation of described judging unit is described time and while being greater than described cryptographic validity, described notification unit exceeds the time limit to remind for ejecting.
Configuration, using method and the device of the password that the embodiment of the present invention provides, can arrange cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, and reshuffles thereby simplified password.
Brief description of the drawings
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, to the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The schematic flow sheet of the collocation method of a kind of password that Fig. 1 provides for embodiments of the invention;
The schematic flow sheet of the using method of a kind of password that Fig. 2 provides for another embodiment of the present invention;
The schematic flow sheet of the collocation method of a kind of password that Fig. 3 provides for another embodiment of the present invention;
Fig. 4 is the schematic flow sheet of the using method of a kind of password that an embodiment provides of the present invention again;
The structural representation of a kind of password inking device that Fig. 5 provides for embodiments of the invention;
The structural representation of a kind of password inking device that Fig. 6 provides for another embodiment of the present invention;
The structural representation of a kind of password inking device that Fig. 7 provides for another embodiment of the present invention;
The structural representation of a kind of encryption apparatus that Fig. 8 provides for embodiments of the invention;
The structural representation of a kind of encryption apparatus that Fig. 9 provides for another embodiment of the present invention;
The structural representation of a kind of password inking device that Figure 10 provides for embodiments of the invention;
The structural representation of a kind of encryption apparatus that Figure 11 provides for embodiments of the invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiment.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtaining under creative work prerequisite, belong to the scope of protection of the invention.
Embodiments of the invention provide a kind of collocation method of password, are applied to information security field, specifically for the configuration to password, shown in Fig. 1, comprise the following steps:
101, password inking device obtains the state that function is set of cryptographic validity, and the state that function is set of described cryptographic validity comprises opening and closing.
Concrete, the state that function is set of described cryptographic validity can, by password inking device default configuration, also can be configured according to the function control message that arranges of the cryptographic validity of input by described password inking device.
102, when the state that function is set of described cryptographic validity is when opening, described password inking device obtains the described cryptographic validity of input and the initial time of described cryptographic validity, so that described cryptographic validity while exceeding the time limit, is removed password.
Concrete, the initial time of cryptographic validity comprises network initial time and local computer initial time, can choose one as standard initial time and input when input.
103, described password inking device is stored the initial time of the state that function is set of described cryptographic validity, described cryptographic validity and described cryptographic validity.
Wherein, in step 103, the initial time of the state that function is set, described cryptographic validity and the described cryptographic validity of the cryptographic validity of storage is differentiated when whether password exceeds the time limit and is called for encryption apparatus, these information can be stored successively in the input process of each information, also can disposable storage after all input informations finish.
The collocation method of the password that the embodiment of the present invention provides, can arrange cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, thereby has simplified reshuffling password.
Embodiments of the invention provide a kind of using method of password, are applied to information security field, specifically for the use to password, shown in Fig. 2, comprise the following steps:
201, encryption apparatus obtains the state that arranges of password, and the state that arranges of described password comprises and password is set and password is not set.
202, when the state that arranges of described password is when arranging password, described encryption apparatus obtains the state that function is set of the cryptographic validity of password inking device storage, and the state that function is set of described cryptographic validity comprises opening and closing.
203, in the time that the state that function is set of described cryptographic validity is unlatching, described encryption apparatus obtains current time.
Concrete, described current time is the current network time, and the reason of doing is like this, local zone time can be modified, and does not have determinacy, is not suitable as the measurement time whether described cryptographic validity exceeds the time limit.
204, in the time obtaining current time success, described encryption apparatus obtains the described cryptographic validity of storage and the initial time of described cryptographic validity.
205, described encryption apparatus calculates the time interval between described current time and the initial time of described cryptographic validity.
Concrete, according to described in step 102, the initial time of cryptographic validity comprises network initial time and local computer initial time, in the time that the initial time of cryptographic validity is network initial time, this time interval is the interval of current network time and network initial time, and this time interval is two intervals between the standard time; In the time that the initial time of cryptographic validity is local computer initial time, this time interval is the interval of current network time and local computer initial time, in the time that local computer initial time is the standard time, this time interval is two intervals between the standard time; In the time that local computer initial time is a relative time, should, this time interval is a relative time and the interval between the standard time, when all can not affect the accuracy of cryptographic validity with upper type.
If 206 described interval greater than described cryptographic validity described encryption apparatus judge that described cryptographic validity exceeds the time limit.
If the 207 described time intervals be not more than described cryptographic validity described encryption apparatus judge that described cryptographic validity does not exceed the time limit.
208,, in the time that described cryptographic validity exceeds the time limit, described encryption apparatus is removed password.
209, in the time that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
The method also comprises: in the time obtaining current time failure, described encryption apparatus judges that described cryptographic validity does not exceed the time limit.
The using method of the password that the embodiment of the present invention provides, can utilize cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, thereby has simplified reshuffling password.
Embodiments of the invention provide a kind of collocation method of password.Be applied to information security field, shown in Fig. 3, comprise the following steps:
301, password inking device according to the cryptographic validity of input function control message is set, change the state that function is set of described cryptographic validity, the state that function is set of described cryptographic validity comprises opening and closing.
Concrete, the state that function is set of described cryptographic validity can, by password inking device default configuration, also can be configured according to the function control message that arranges of the cryptographic validity of input by described password inking device.
302, described password inking device obtains the state that function is set of described cryptographic validity.
303, when the state that function is set of described cryptographic validity is when opening, described password inking device obtains the described cryptographic validity of input and the initial time of described cryptographic validity, so that described cryptographic validity while exceeding the time limit, is removed password.
Concrete, the initial time of cryptographic validity comprises network initial time and local computer initial time, can choose one as standard initial time and input when input.
304, described password inking device is according to the control message that exceeds the time limit to remind of cryptographic validity of input, changes the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing.
Concrete, to described cryptographic validity exceed the time limit that to remind the reason being configured be for automatically prompting user before password exceeds the time limit, password to be reshuffled, avoid password to exceed the time limit to automatically terminate and ignored by user afterwards.
305, the described password inking device state of reminding that exceeds the time limit described in obtaining.
306, in the time that the described state that exceeds the time limit to remind is unlatching, described password inking device obtains the prompting rule of the described cryptographic validity of input, and described prompting rule comprises reminder time.
307, described password inking device is stored the exceed the time limit state of prompting and the prompting rule of described cryptographic validity of the state that function is set of described cryptographic validity, described cryptographic validity, the initial time of described cryptographic validity, described cryptographic validity.
Wherein, in step 307, the information such as state and described prompting rule of exceeding the time limit to remind of the state that function is set of the cryptographic validity of storage, described cryptographic validity, the initial time of described cryptographic validity, described cryptographic validity is differentiated when whether password exceeds the time limit and is called for encryption apparatus, these information can be stored successively in the input process of each information, also can disposable storage after all input informations finish.
The collocation method of the password that the embodiment of the present invention provides, can arrange cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, thereby has simplified reshuffling password; In addition, can also arrange described cryptographic validity exceed the time limit remind and remind rule to make user close on while exceeding the time limit and can obtain exceeding the time limit reminding at described password, thereby it is more convenient that password is used.
Embodiments of the invention provide a kind of using method of password.Be applied to information security field, shown in Fig. 4, comprise the following steps:
401, encryption apparatus obtains the state that arranges of password, and the state that arranges of described password comprises and password is set and password is not set.
402, when the state that arranges of described password is when arranging password, described encryption apparatus obtains the state that function is set of the cryptographic validity of password inking device storage, and the state that function is set of described cryptographic validity comprises opening and closing.
403, in the time that the state that function is set of described cryptographic validity is unlatching, described encryption apparatus obtains current time.
Concrete, described current time is the current network time, and the reason of doing is like this, local zone time can be modified, and does not have determinacy, is not suitable as the measurement time whether described cryptographic validity exceeds the time limit.
404,, obtaining current time when success, described encryption apparatus obtains the state reminded of exceeding the time limit of the initial time of the described cryptographic validity of storage, described cryptographic validity and described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing.
405, described encryption apparatus calculates the time interval between described current time and the initial time of described cryptographic validity.
Concrete, according to described in step 102, the initial time of cryptographic validity comprises network initial time and local computer initial time, in the time that the initial time of cryptographic validity is network initial time, this time interval is the interval of current network time and network initial time, and this time interval is two intervals between the standard time; In the time that the initial time of cryptographic validity is local computer initial time, this time interval is the interval of current network time and local computer initial time, in the time that local computer initial time is the standard time, this time interval is two intervals between the standard time; In the time that local computer initial time is a relative time, should, this time interval is a relative time and the interval between the standard time, when all can not affect the accuracy of cryptographic validity with upper type.
If 406 described interval greater than described cryptographic validity described encryption apparatus judge that described cryptographic validity exceeds the time limit.
If the 407 described time intervals be not more than described cryptographic validity described encryption apparatus judge that described cryptographic validity does not exceed the time limit.
408,, in the time that described cryptographic validity exceeds the time limit, described encryption apparatus is removed password.
409, in the time that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
The method also comprises: in the time obtaining current time failure, described encryption apparatus judges that described cryptographic validity does not exceed the time limit.
After step 405, also comprise following methods:
410, in the time that the described state that exceeds the time limit to remind is unlatching, described encryption apparatus obtains the prompting rule of the described cryptographic validity of storage, and described prompting rule comprises reminder time.
411, described encryption apparatus calculates the time of the described time interval and described reminder time and whether is greater than described cryptographic validity.
412,, when the described time with while being greater than described cryptographic validity, described encryption apparatus ejects and exceeds the time limit to remind.
The using method of the password that the embodiment of the present invention provides, can utilize cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, and reshuffles thereby simplified password; In addition, can also use storage described cryptographic validity exceed the time limit remind and remind rule to close on described in user being carried out while exceeding the time limit and exceed the time limit to remind at described password with described prompt rules, thereby it is more convenient that password is used.
The embodiment of the present invention specifically describes as an example of the configuration of the BIOS password of server and use example, password inking device or encryption apparatus that this server can provide for embodiments of the invention, and the collocation method of concrete BIOS password is as follows:
Password inking device obtains the state that function is set of described BIOS cryptographic validity, and the state that function is set of cryptographic validity comprises opening and closing.The state that function is set of the BIOS cryptographic validity that password inking device obtains, can be defaulted as and open or close by described password inking device, also can be as described in step 301 by as described in password inking device provide according to the arranging after function control message changes of BIOS cryptographic validity of input.For example, password in BIOS unlatching menu is set up the state options that function is set of cryptographic validity during menu is set, the original state that function is set of cryptographic validity is to close, and in the time that user need to use this that function is set, the state that function is set of cryptographic validity is set to open.
In the time that the state that function is set of described BIOS cryptographic validity is unlatching, now can edit described cryptographic validity, described password inking device obtains BIOS cryptographic validity and the initial time of input.Concrete, the initial time of described cryptographic validity comprises the residing network initial time of described password inking device and the local computer initial time that use described BIOS, can choose one as standard initial time and input when input.
Password inking device, according to the control message that exceeds the time limit to remind of the BIOS cryptographic validity of input, changes the state of the prompting of exceeding the time limit of BIOS cryptographic validity, and the state that exceeds the time limit to remind of BIOS cryptographic validity comprises opening and closing.To BIOS cryptographic validity exceed the time limit remind that the reason that is configured is for automatically prompting user before BIOS password exceeds the time limit, BIOS password to be reshuffled, avoid BIOS password to exceed the time limit to automatically terminate and ignored by user afterwards.
Then, password inking device obtains the state of the prompting of exceeding the time limit of BIOS cryptographic validity.When the state of reminding when exceeding the time limit described in described password inking device is unlatching, described password inking device obtains the prompting rule of the BIOS cryptographic validity of input, and described prompting rule comprises reminder time.
Password inking device is by the state of the initial time of the state that function is set of cryptographic validity, cryptographic validity, cryptographic validity, the prompting of exceeding the time limit and remind these information storages of rule, can be in the input process of each information, to be stored in successively FLASH(Flash Memory, involatile internal memory) in; Can certainly be by the initial time of the state that function is set of cryptographic validity, cryptographic validity, cryptographic validity, the state reminded and remind these information of rule to be simultaneously stored in FLASH completing after whole configurations exceeds the time limit.
For storage and the encryption of the above configuration information to described cryptographic validity, in reality, can adopt step as described below:
In described BIOS key structure, increase cryptographic validity functional configuration structure for integrating state and the described prompting rule of reminding of exceeding the time limit of the state that function is set of described cryptographic validity, described cryptographic validity, the initial time of described cryptographic validity, described cryptographic validity, increase time structure body for showing the time that configuration structure entity relates to the information of the information of configuration structure entity, time structure body to be kept in storage medium together with encrypted message.
If state configuration structure entity and described time structure body defines with program code means, structure definition function treatment scheme can be with reference to as described below:
Cryptographic validity function setting structure PASSWD_VALID_CFG is defined as follows:
Figure BDA0000477057180000131
In order to increase security, adopt variable mode to be stored in Flash in password and term of validity configuration, and adopt secure cryptographic algorithm, for example use Secure Hash Algorithm(Secure Hash Algorithm) encrypt.
The collocation method of above-mentioned password and hardware decouple, transplantability is good, has expanded BIOS standard interface simultaneously, applicable to traditional B IOS and EFI(Extensible Firmware Interface, expansion firmware interface) each software platform such as BIOS.
The collocation method of the password that the embodiment of the present invention provides, can arrange BIOS cryptographic validity BIOS password can be automatically terminated in the time exceeding the time limit, thereby simplify reshuffling BIOS password; In addition, can also arrange described BIOS cryptographic validity exceed the time limit remind and remind rule to make user close on while exceeding the time limit and can obtain exceeding the time limit reminding at described BIOS password, thereby it is more convenient that BIOS password is used.
Can configure the term of validity of BIOS password by said process, the using method that has configured rear BIOS password is as follows:
Encryption apparatus obtains the state that arranges of BIOS password, and the state that arranges of described password comprises and password is set and password is not set.
When the state that arranges of described password is when arranging password, described encryption apparatus obtains FLASH(Flash Memory, involatile internal memory) in the state that function is set of BIOS cryptographic validity of storage, the state that function is set of described BIOS cryptographic validity comprises opening and closing.
In the time that the state that function is set of described cryptographic validity is unlatching, described encryption apparatus is got current time.
Described encryption apparatus need to get Date to judge whether described BIOS cryptographic validity exceeds the time limit, and current date is to get the synchronous standard time of the world on current internet by network interface card.Cause obtaining network time failure if do not connect network or other reasons, described encryption apparatus judges that described BIOS cryptographic validity does not exceed the time limit.
The reason of doing is like this because local zone time is recorded in CMOS(Complementary Metal Oxide Semiconductor, complementary metal oxide semiconductor (CMOS)) in, can distort by removing CMOS battery or software, so local zone time is also unreliable, need to obtain the more reliable current network time as current time.
In the time obtaining current time success, described encryption apparatus obtain the initial time of the described BIOS cryptographic validity of storing in described FLASH, described BISO cryptographic validity and described BIOS cryptographic validity exceed the time limit remind state, described in exceed the time limit remind state comprise opening and closing.
Then, described encryption apparatus calculates the time interval between described current time and the initial time of described cryptographic validity.
Whether described encryption apparatus is greater than described BIOS cryptographic validity according to the described time interval, judges whether described BIOS cryptographic validity exceeds the time limit.
Concrete, if described interval greater than described BIOS cryptographic validity described encryption apparatus judge that described BIOS cryptographic validity exceeds the time limit, if the described time interval be not more than described BIOS cryptographic validity described encryption apparatus judge that described BIOS cryptographic validity does not exceed the time limit.
In the time that described cryptographic validity exceeds the time limit, described encryption apparatus is removed described BIOS password.
In the time that described cryptographic validity does not exceed the time limit, the described BIOS password of described encryption apparatus prompting input.
In the time that the described state that exceeds the time limit to remind is unlatching, described encryption apparatus obtains the prompting rule of the described BIOS cryptographic validity of storing in described FLASH, and described prompting rule comprises reminder time.
Described encryption apparatus calculates the time of time interval between initial time and the described current time of described cryptographic validity and described reminder time and whether is greater than described BIOS cryptographic validity.
When the described time with while being greater than described BIOS cryptographic validity, described encryption apparatus ejects and exceeds the time limit to remind.
Concrete, in reality, use the server of BIOS generally to adopt X86 system, and the scene that X86 system is restarted is fewer, generally in for a long time, can not restart, and BIOS only could move in the startup of server stage, can only be that X86 system is reminded while restarting so remind, there will be and remind phenomenon not in time.
By BMC(Baseboard Management Controller, baseboard management controller) management software realizes prompting function, send IPMI(Intelligent Platform Management Interface by described BIOS, IPMI) order described prompting rule of exceeding the time limit to remind is issued to described BMC, described BMC starts a timed task after receiving this order, in the time that password is about to exceed the time limit, provides prompting at System Management Daemon.So, described in can carrying out the unloading phase of the BIOS of described server, exceed the time limit to remind, described in also can carrying out during server operation after the BIOS of described server starts, exceed the time limit to remind.
The collocation method of above-mentioned password and hardware decouple, transplantability is good, has expanded BIOS standard interface simultaneously, applicable to traditional B IOS and EFI(Extensible Firmware Interface, expansion firmware interface) each software platform such as BIOS.
The using method of the password that the embodiment of the present invention provides, can be used the BIOS cryptographic validity of storage that BIOS password is automatically terminated in the time exceeding the time limit, thereby simplify reshuffling BIOS password; In addition, can also use the rule of exceeding the time limit to remind and remind of the described BIOS cryptographic validity of storage, close on described in user being carried out while exceeding the time limit and exceed the time limit to remind at described password with described prompt rules, thereby it is more convenient that BIOS password is used.
Embodiments of the invention provide a kind of password inking device, shown in Fig. 5, for realizing the collocation method of above-mentioned password, comprising:
Acquiring unit 501, for obtaining the state that function is set of cryptographic validity, the state that function is set of described cryptographic validity comprises opening and closing.
The state that function is set of the described cryptographic validity obtaining when described acquiring unit 501 is when opening, described acquiring unit 501 is also for obtaining the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password.
Storage unit 502, for storing the initial time of the state that function is set, described cryptographic validity and described cryptographic validity of the described cryptographic validity that described acquiring unit 501 obtains.
Optionally, shown in Fig. 6, described password inking device also comprises:
Setting unit 503, for the cryptographic validity according to input function control message is set, change the state that function is set of described cryptographic validity, so that described acquiring unit 501 obtains the state that function is set of the described cryptographic validity of described setting unit setting.
Optionally, shown in Fig. 7, described password inking device also comprises:
Remind control module 504, for the control message that exceeds the time limit to remind of cryptographic validity according to input, change the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing.
Described acquiring unit 501 is the state for exceeding the time limit described in obtaining that described prompting control module 504 sets to remind also.
When described acquiring unit 501 obtain described in exceed the time limit the state reminded when opening, described acquiring unit 501 is also for obtaining the prompting rule of described cryptographic validity of input, described prompting rule comprises reminder time.
Described storage unit 502 is also for storing state and the described prompting rule of reminding of exceeding the time limit of described cryptographic validity that described acquiring unit 501 obtains.
The password inking device that the embodiment of the present invention provides, can arrange cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, thereby has simplified reshuffling password; In addition, can also arrange described cryptographic validity exceed the time limit remind and remind rule to make user close on while exceeding the time limit and can obtain exceeding the time limit reminding at described password, thereby it is more convenient that password is used.
Embodiments of the invention provide a kind of encryption apparatus, shown in Fig. 8, for realizing the using method of above-mentioned password, comprising:
Acquiring unit 801, for obtaining the state that arranges of password, the state that arranges of described password comprises and password is set and password is not set.
The state that arranges of the described password obtaining when described acquiring unit 801 is when arranging password, described acquiring unit 801 is also for obtaining the state that function is set of cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing.
The state that function is set of the described cryptographic validity obtaining when described acquiring unit 801 is when opening, and described acquiring unit 801 is also for obtaining current time.
In the time that described acquiring unit 801 obtains current time success, described acquiring unit 801 is also for obtaining the described cryptographic validity of storage and the initial time of described cryptographic validity.
Computing unit 802, for calculating the time interval between described current time and the initial time of described cryptographic validity that described acquiring unit 801 obtains.
Judging unit 803, if the described described cryptographic validity obtaining interval greater than described acquiring unit 801 that described computing unit 802 calculates, described judging unit 803 exceeds the time limit for judging described cryptographic validity.
If the described time interval that described computing unit 802 calculates is not more than the described cryptographic validity that described acquiring unit 801 obtains, described judging unit 803 is also for judging that described cryptographic validity does not exceed the time limit.
Remove unit 804, in the time that described judging unit 803 judges that described cryptographic validity exceeds the time limit, for removing password.
In the time that described judging unit 803 judges that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
Optionally, described judging unit 803 also, for obtain current time when failure at described acquiring unit 801, judges that described cryptographic validity does not exceed the time limit.
Optionally, shown in Fig. 9, described encryption apparatus also comprises: notification unit 805,
Obtain current time when success at described acquiring unit 801, described acquiring unit 801 is also for obtaining the state reminded of exceeding the time limit of described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing.
When described acquiring unit 801 obtain described in exceed the time limit the state reminded when opening, described acquiring unit 801 is also for obtaining the prompting rule of described cryptographic validity of storage, described prompting rule comprises reminder time.
Described judging unit 803, also for calculating the time of the described reminder time that described time interval that described computing unit 802 draws and described acquiring unit 801 obtain and whether being greater than the described cryptographic validity that described acquiring unit 801 obtains.
When the result of calculation of described judging unit 803 is described time and while being greater than described cryptographic validity, described notification unit 805 exceeds the time limit to remind for ejecting.
The encryption apparatus that the embodiment of the present invention provides, can utilize cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, and reshuffles thereby simplified password; In addition, can also use storage described cryptographic validity exceed the time limit remind and remind rule to close on described in user being carried out while exceeding the time limit and exceed the time limit to remind at described password with described prompt rules, thereby it is more convenient that password is used.
Embodiments of the invention provide a kind of password inking device, shown in Figure 10, this password inking device can embed or itself be exactly micro-process computer, such as: the portable equipments such as multi-purpose computer, customization machine, mobile phone terminal or purl machine, this signal processing apparatus 1001 comprises: at least one receiver 1011, processor 1012, storer 1013 and bus 1014, this at least one receiver 1011, processor 1012 and storer 1013 are connected by bus 1014 and complete mutual communication.
This bus 1014 can be ISA(Industry Standard Architecture, industry standard architecture) bus, PCI(Peripheral Component, peripheral component interconnect) bus or EISA(Extended Industry Standard Architecture, extended industry-standard architecture) bus etc.This bus 1014 can be divided into address bus, data bus, control bus etc.For ease of representing, in Fig. 2, only represent with a thick line, but do not represent only to have the bus of a bus or a type.Wherein:
Storer 1013 is for stores executable programs code, and this program code comprises computer-managed instruction.Storer 1013 may comprise high-speed RAM storer, also may also comprise nonvolatile memory (non-volatile memory), for example at least one magnetic disk memory.
Processor 1012 may be a central processing unit (Central Processing Unit, referred to as CPU), or specific integrated circuit (Application Specific Integrated Circuit, referred to as ASIC), or be configured to implement one or more integrated circuit of the embodiment of the present invention.
Wherein, described receiver 1011, for obtaining the state that function is set of cryptographic validity, the state that function is set of described cryptographic validity comprises opening and closing.
The state that function is set of the described cryptographic validity obtaining when described receiver 1011 is when opening, described receiver 1011 is also for obtaining the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password.
Storer 1013, for storing the initial time of the state that function is set, described cryptographic validity and described cryptographic validity of the described cryptographic validity that described receiver 1011 obtains.
Optionally, described processor 1012, also for the cryptographic validity according to input function control message is set, change the state that function is set of described cryptographic validity, so that described acquiring unit 501 obtains the state that function is set of the described cryptographic validity that described setting unit sets.
Optionally, described processor 1012, also for the control message that exceeds the time limit to remind of cryptographic validity according to input, changes the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing.
Described receiver 1011 is the state for exceeding the time limit described in obtaining that described prompting control module 504 sets to remind also.
When described receiver 1011 obtain described in exceed the time limit the state reminded when opening, described receiver 1011 is also for obtaining the prompting rule of described cryptographic validity of input, described prompting rule comprises reminder time.
Described storer 1013 is also for storing state and the described prompting rule of reminding of exceeding the time limit of described cryptographic validity that described receiver 1011 obtains.
The password inking device that the embodiment of the present invention provides, can arrange cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, thereby has simplified reshuffling password; In addition, can also arrange described cryptographic validity exceed the time limit remind and remind rule to make user close on while exceeding the time limit and can obtain exceeding the time limit reminding at described password, thereby it is more convenient that password is used.
Through the above description of the embodiments, those skilled in the art can be well understood to the present invention and can realize with hardware, or firmware realization, or their array mode realizes.In the time using software to realize, one or more instructions or the code that above-mentioned functions can be stored in computer-readable medium or on computer-readable medium transmit.Computer-readable medium comprises computer-readable storage medium and communication media, and wherein communication media comprises any medium of being convenient to transmit from a place to another place computer program.Storage medium can be any usable medium that computing machine can access.As example but be not limited to: computer-readable medium can comprise RAM(Random Access Memory, random access memory), ROM(Read Only Memory, read-only memory), EEPROM(Electrically Erasable Programmable Read Only Memory, EEPROM (Electrically Erasable Programmable Read Only Memo)), CD-ROM(Compact Disc Read Only Memory, be read-only optical disc) or other optical disc storage, magnetic disk storage medium or other magnetic storage apparatus, or can be used in carry or store the expectation with instruction or data structure form program code and can be by any other medium of computer access.What in addition, any connection can be suitable becomes computer-readable medium.For example, if software is to use concentric cable, optical fiber cable, twisted-pair feeder, DSL(Digital Subscriber Line, digital subscriber line) or wireless technology such as infrared ray, radio and microwave from website, server or the transmission of other remote source, so concentric cable, optical fiber cable, twisted-pair feeder, DSL or the wireless technology such as infrared ray, wireless and microwave be included under in the photographic fixing of medium.As used in the present invention, dish and dish comprise CD(Compact Disc, compression laser disc), laser dish, laser disc, DVD dish (Digital Versatile Disc, digital universal light), floppy disk and Blu-ray Disc, the copy data of the common magnetic of its mid-game, dish carrys out the copy data of optics with laser.Within combination above also should be included in the protection domain of computer-readable medium.
Embodiments of the invention provide a kind of encryption apparatus, shown in Figure 11, this encryption apparatus can embed or itself be exactly micro-process computer, such as: the portable equipments such as multi-purpose computer, customization machine, mobile phone terminal or purl machine, this signal processing apparatus 1101 comprises: at least one receiver 1111, processor 1112, storer 1113 and bus 1114, this at least one receiver 1111, processor 1112 and storer 1113 are connected by bus 1114 and complete mutual communication.
This bus 1114 can be ISA(Industry Standard Architecture, industry standard architecture) bus, PCI(Peripheral Component, peripheral component interconnect) bus or EISA(Extended Industry Standard Architecture, extended industry-standard architecture) bus etc.This bus 1114 can be divided into address bus, data bus, control bus etc.For ease of representing, in Fig. 2, only represent with a thick line, but do not represent only to have the bus of a bus or a type.Wherein:
Storer 1113 is for stores executable programs code, and this program code comprises computer-managed instruction.Storer 1113 may comprise high-speed RAM storer, also may also comprise nonvolatile memory (non-volatile memory), for example at least one magnetic disk memory.
Processor 1112 may be a central processing unit (Central Processing Unit, referred to as CPU), or specific integrated circuit (Application Specific Integrated Circuit, referred to as ASIC), or be configured to implement one or more integrated circuit of the embodiment of the present invention.
Wherein, described receiver 1111, for obtaining the state that arranges of password, the state that arranges of described password comprises and password is set and password is not set.
The state that arranges of the described password obtaining when described receiver 1111 is when arranging password, and described receiver 1111 is also for obtaining the state that function is set of cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing;
The state that function is set of the described cryptographic validity obtaining when described receiver 1111 is when opening, and described receiver 1111 is also for obtaining current time;
In the time that described receiver 1111 obtains current time success, described receiver 1111 is also for obtaining the described cryptographic validity of storage and the initial time of described cryptographic validity;
Described processor 1112, also for calculating the time interval between described current time and the initial time of described cryptographic validity that described receiver 1111 obtains;
Described processor 1112, if the described described cryptographic validity obtaining interval greater than described acquiring unit 801 that described processor 1112 calculates, described processor 1112 is also for judging that described cryptographic validity exceeds the time limit;
If the described time interval that described processor 1112 calculates is not more than the described cryptographic validity that described receiver 1111 obtains, described processor 1112 is also for judging that described cryptographic validity does not exceed the time limit;
Described processor 1112, in the time that described processor 1112 judges that described cryptographic validity exceeds the time limit, for removing password;
In the time that described processor 1112 judges that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
Optionally, described processor 1112 also, for obtain current time when failure at described receiver 1111, judges that described cryptographic validity does not exceed the time limit.
Optionally, obtain current time when success at described receiver 1111, described acquiring unit 801 is also for obtaining the state reminded of exceeding the time limit of described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing;
When described receiver 1111 obtain described in exceed the time limit the state reminded when opening, described receiver 1111 is also for obtaining the prompting rule of described cryptographic validity of storage, described prompting rule comprises reminder time;
Described processor 1112, also for calculating the time of the described reminder time that described time interval that described processor 1112 draws and described receiver 1111 obtain and whether being greater than the described cryptographic validity that described receiver 1111 obtains;
When the result of calculation of described processor 1112 is described time and while being greater than described cryptographic validity, described processor 1112 exceeds the time limit to remind for ejecting.
The encryption apparatus that the embodiment of the present invention provides, can utilize cryptographic validity, and password can be automatically terminated in the time exceeding the time limit, and reshuffles thereby simplified password; In addition, can also use storage described cryptographic validity exceed the time limit remind and remind rule to close on described in user being carried out while exceeding the time limit and exceed the time limit to remind at described password with described prompt rules, thereby it is more convenient that password is used.
Through the above description of the embodiments, those skilled in the art can be well understood to the present invention and can realize with hardware, or firmware realization, or their array mode realizes.In the time using software to realize, one or more instructions or the code that above-mentioned functions can be stored in computer-readable medium or on computer-readable medium transmit.Computer-readable medium comprises computer-readable storage medium and communication media, and wherein communication media comprises any medium of being convenient to transmit from a place to another place computer program.Storage medium can be any usable medium that computing machine can access.As example but be not limited to: computer-readable medium can comprise RAM(Random Access Memory, random access memory), ROM(Read Only Memory, read-only memory), EEPROM(Electrically Erasable Programmable Read Only Memory, EEPROM (Electrically Erasable Programmable Read Only Memo)), CD-ROM(Compact Disc Read Only Memory, be read-only optical disc) or other optical disc storage, magnetic disk storage medium or other magnetic storage apparatus, or can be used in carry or store the expectation with instruction or data structure form program code and can be by any other medium of computer access.What in addition, any connection can be suitable becomes computer-readable medium.For example, if software is to use concentric cable, optical fiber cable, twisted-pair feeder, DSL(Digital Subscriber Line, digital subscriber line) or wireless technology such as infrared ray, radio and microwave from website, server or the transmission of other remote source, so concentric cable, optical fiber cable, twisted-pair feeder, DSL or the wireless technology such as infrared ray, wireless and microwave be included under in the photographic fixing of medium.As used in the present invention, dish and dish comprise CD(Compact Disc, compression laser disc), laser dish, laser disc, DVD dish (Digital Versatile Disc, digital universal light), floppy disk and Blu-ray Disc, the copy data of the common magnetic of its mid-game, dish carrys out the copy data of optics with laser.Within combination above also should be included in the protection domain of computer-readable medium.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited to this, any be familiar with those skilled in the art the present invention disclose technical scope in; can expect easily changing or replacing, within all should being encompassed in protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection domain of claim.

Claims (12)

1. a collocation method for password, is characterized in that, comprising:
Password inking device obtains the state that function is set of cryptographic validity, and the state that function is set of described cryptographic validity comprises opening and closing;
In the time that the state that function is set of described cryptographic validity is unlatching, described password inking device obtains the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password;
Described password inking device is stored the initial time of the state that function is set of described cryptographic validity, described cryptographic validity and described cryptographic validity.
2. the collocation method of password according to claim 1, is characterized in that, described password inking device comprises before obtaining the state that function is set of cryptographic validity:
Described password inking device arranges function control message according to the cryptographic validity of input, changes the state that function is set of described cryptographic validity.
3. the collocation method of password according to claim 1, is characterized in that, described method also comprises:
Described password inking device is according to the control message that exceeds the time limit to remind of cryptographic validity of input, changes the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing;
The state of reminding exceeds the time limit described in described password inking device obtains;
In the time that the described state that exceeds the time limit to remind is unlatching, described password inking device obtains the prompting rule of the described cryptographic validity of input, and described prompting rule comprises reminder time;
Described password inking device is stored state and the described prompting rule of the prompting of exceeding the time limit of described cryptographic validity.
4. a using method for password, is characterized in that, comprising:
Encryption apparatus obtains the state that arranges of password, and the state that arranges of described password comprises and password is set and password is not set;
When the state that arranges of described password is when arranging password, described encryption apparatus obtains the state that function is set of the cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing;
In the time that the state that function is set of described cryptographic validity is unlatching, described encryption apparatus obtains current time;
In the time obtaining current time success, described encryption apparatus obtains the described cryptographic validity of storage and the initial time of described cryptographic validity;
Described encryption apparatus calculates the time interval between described current time and the initial time of described cryptographic validity;
If described interval greater than described cryptographic validity described encryption apparatus judge that described cryptographic validity exceeds the time limit;
If the described time interval be not more than described cryptographic validity described encryption apparatus judge that described cryptographic validity does not exceed the time limit;
In the time that described cryptographic validity exceeds the time limit, described encryption apparatus is removed password;
In the time that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
5. the using method of password according to claim 4, is characterized in that, described method also comprises:
In the time obtaining current time failure, described encryption apparatus judges that described cryptographic validity does not exceed the time limit.
6. according to the using method of the password described in claim 4 or 5, it is characterized in that, described method also comprises:
Obtaining current time when success, described encryption apparatus obtains the state reminded of exceeding the time limit of the described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing;
In the time that the described state that exceeds the time limit to remind is unlatching, described encryption apparatus obtains the prompting rule of the described cryptographic validity of storage, and described prompting rule comprises reminder time;
Described encryption apparatus calculates the time of the described time interval and described reminder time and whether is greater than described cryptographic validity;
When the described time with while being greater than described cryptographic validity, described encryption apparatus ejects and exceeds the time limit to remind.
7. a password inking device, is characterized in that, comprising:
Acquiring unit, for obtaining the state that function is set of cryptographic validity, the state that function is set of described cryptographic validity comprises opening and closing;
The state that function is set of the described cryptographic validity obtaining when described acquiring unit is when opening, described acquiring unit is also for obtaining the described cryptographic validity of input and the initial time of described cryptographic validity, the initial time of described cryptographic validity comprises network initial time and local computer initial time, so that when described cryptographic validity exceeds the time limit, remove password;
Storage unit, for storing the initial time of the state that function is set, described cryptographic validity and described cryptographic validity of the described cryptographic validity that described acquiring unit obtains.
8. device according to claim 7, is characterized in that, described password inking device also comprises:
Setting unit, for the cryptographic validity according to input function control message is set, change the state that function is set of described cryptographic validity, so that described acquiring unit obtains the state that function is set of the described cryptographic validity that described setting unit sets.
9. device according to claim 7, is characterized in that, described password inking device also comprises:
Remind control module, for the control message that exceeds the time limit to remind of cryptographic validity according to input, change the state reminded of exceeding the time limit of described cryptographic validity, described in the state that exceeds the time limit to remind comprise opening and closing;
Described acquiring unit is the state for exceeding the time limit described in obtaining that described prompting control module sets to remind also;
When described acquiring unit obtain described in exceed the time limit the state reminded when opening, described acquiring unit is also for obtaining the prompting rule of described cryptographic validity of input, described prompting rule comprises reminder time;
Described storage unit is also for storing state and the described prompting rule of reminding of exceeding the time limit of described cryptographic validity that described acquiring unit obtains.
10. an encryption apparatus, is characterized in that, comprising:
Acquiring unit, for obtaining the state that arranges of password, the state that arranges of described password comprises and password is set and password is not set;
The state that arranges of the described password obtaining when described acquiring unit is when arranging password, and described acquiring unit is also for obtaining the state that function is set of cryptographic validity of storage, and the state that function is set of described cryptographic validity comprises opening and closing;
The state that function is set of the described cryptographic validity obtaining when described acquiring unit is when opening, and described acquiring unit is also for obtaining current time;
In the time that described acquiring unit obtains current time success, described acquiring unit is also for obtaining the described cryptographic validity of storage and the initial time of described cryptographic validity;
Computing unit, for calculating the time interval between described current time and the initial time of described cryptographic validity that described acquiring unit obtains;
Judging unit, if the described described cryptographic validity obtaining interval greater than described acquiring unit that described computing unit calculates, described judging unit is used for judging that described cryptographic validity exceeds the time limit;
If the described time interval that described computing unit calculates is not more than the described cryptographic validity that described acquiring unit obtains, described judging unit is also for judging that described cryptographic validity does not exceed the time limit;
Remove unit, in the time that described judging unit judges that described cryptographic validity exceeds the time limit, for removing password;
In the time that described judging unit judges that described cryptographic validity does not exceed the time limit, described encryption apparatus prompting input password.
11. devices according to claim 10, is characterized in that, described judging unit also for: obtain current time when failure at described acquiring unit, judge that described cryptographic validity does not exceed the time limit.
12. according to the device described in claim 10 or 11, it is characterized in that, described encryption apparatus also comprises: notification unit,
Obtain current time when success at described acquiring unit, described acquiring unit is also for obtaining the state reminded of exceeding the time limit of described cryptographic validity of storage, described in the state that exceeds the time limit to remind comprise opening and closing;
When described acquiring unit obtain described in exceed the time limit the state reminded when opening, described acquiring unit is also for obtaining the prompting rule of described cryptographic validity of storage, described prompting rule comprises reminder time;
Described judging unit, also for calculating the time of the described reminder time that described time interval that described computing unit draws and described acquiring unit obtain and whether being greater than the described cryptographic validity that described acquiring unit obtains;
The result of calculating when described judging unit is described time and while being greater than described cryptographic validity, and described notification unit exceeds the time limit to remind for ejecting.
CN201410095083.7A 2014-03-14 2014-03-14 Code configuring and using method and device Pending CN103838998A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410095083.7A CN103838998A (en) 2014-03-14 2014-03-14 Code configuring and using method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410095083.7A CN103838998A (en) 2014-03-14 2014-03-14 Code configuring and using method and device

Publications (1)

Publication Number Publication Date
CN103838998A true CN103838998A (en) 2014-06-04

Family

ID=50802486

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410095083.7A Pending CN103838998A (en) 2014-03-14 2014-03-14 Code configuring and using method and device

Country Status (1)

Country Link
CN (1) CN103838998A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106295276A (en) * 2016-08-09 2017-01-04 浪潮电子信息产业股份有限公司 Method for recording BIOS password input by user to enter system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1235445A (en) * 1998-01-13 1999-11-17 日本电气株式会社 Password updating apparatus and recording medium used therefor
CN101207476A (en) * 2006-12-20 2008-06-25 吴琛 System for amending single point password
US7451478B2 (en) * 2004-12-22 2008-11-11 Inventec Corporation Time managing system and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1235445A (en) * 1998-01-13 1999-11-17 日本电气株式会社 Password updating apparatus and recording medium used therefor
US7451478B2 (en) * 2004-12-22 2008-11-11 Inventec Corporation Time managing system and method
CN101207476A (en) * 2006-12-20 2008-06-25 吴琛 System for amending single point password

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106295276A (en) * 2016-08-09 2017-01-04 浪潮电子信息产业股份有限公司 Method for recording BIOS password input by user to enter system

Similar Documents

Publication Publication Date Title
US10735427B2 (en) Method and apparatus for managing program of electronic device
US9426661B2 (en) Secure lock for mobile device
EP2962241A1 (en) Continuation of trust for platform boot firmware
US11316693B2 (en) Trusted platform module-based prepaid access token for commercial IoT online services
US20160210632A1 (en) Secured payment method and relevant device and system
EP3591552B1 (en) Protection system including machine learning snapshot evaluation
US10831881B2 (en) Method and terminal for enhancing information security
CN107832595B (en) Locking method and related equipment
CN110875819B (en) Password operation processing method, device and system
KR102090940B1 (en) Method and system for extracting characteristic information
CN108960839B (en) Payment method and device
WO2018000843A1 (en) Mobile payment method, system on chip and terminal
CN104318186A (en) Code switching method, equipment and terminal
CN107729775B (en) Method and device for realizing switching between intelligent secret key equipment modes
CN106507300A (en) A kind of method for giving loss terminal for change, device and terminal
CN115495161B (en) BIOS option modification validation method and device and storage medium
CN103838998A (en) Code configuring and using method and device
CN103685259A (en) Method and device for account logging in
CN110781527B (en) Control register protection method and device
CN105556536A (en) One-time power-on password
CN103634467A (en) Privacy protecting method and mobile terminal
CN106055940A (en) Application freezing management method and apparatus, and terminal
CN107295177B (en) Application disabling method and device and terminal equipment
TWI416931B (en) System and method for deleting data stored in the mobile phone automatically
CN107480493B (en) Information processing method and related product

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20140604