CN103927492A - Data processing device and data protecting method - Google Patents
Data processing device and data protecting method Download PDFInfo
- Publication number
- CN103927492A CN103927492A CN201310013078.2A CN201310013078A CN103927492A CN 103927492 A CN103927492 A CN 103927492A CN 201310013078 A CN201310013078 A CN 201310013078A CN 103927492 A CN103927492 A CN 103927492A
- Authority
- CN
- China
- Prior art keywords
- sign
- testing result
- data processing
- chip
- processing equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2121—Chip on media, e.g. a disk or tape with a chip embedded in its case
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Bioethics (AREA)
- Storage Device Security (AREA)
- Stored Programmes (AREA)
Abstract
The invention discloses a data processing device and a data protecting method; the method is applied to the data processing device; the data processing device comprises a data chip; the method comprises the steps of: setting a first identifier in the data chip by the data processing device; when the data processing device is electrified again after setting the first identifier, detecting the first identifier, and thus obtaining a first detecting result; setting a second identifier by the data processing device according to the first detecting result and a first predetermined relationship; when a first event occurs, detecting the second identifier by the data processing device, and thus obtaining a second detecting result; executing operation corresponding to the second detecting result by the data chip according to a second predetermined relationship. According to the data processing device and method, content in the data chip can be independently and comprehensively protected.
Description
Technical field
The present invention relates to computer realm, relate in particular to a kind of data processing equipment and data guard method.
Background technology
Under some public environment, in education sector, Internet bar and some public places, easily suffer artificial destruction BIOS (Basic Input Output System, Basic Input or Output System (BIOS)) information, bring some inconvenience to normal use.So need to there be a BIOS defencive function, can reach the protection to BIOS information, to do not allow user can revise easily BIOS information.
Existing a solution is to read BIOS information to leave on hard disk; when starting at every turn, reads again by computing machine current BIOS information; compare with the BIOS information of storage; if BIOS information changes; now point out user, and write the BIOS information of having preserved on hard disk to reach the object of BIOS data protection.
In realizing the process of embodiment of the present invention technical scheme, inventor finds that in above-mentioned prior art, at least there are the following problems:
Along with gradually becoming strong of Legacy (tradition) BIOS function, on Legacy BIOS, CMOS (Complementary Metal Oxide Semiconductor, complementary metal oxide semiconductor (CMOS)) information is no longer 128, but is greater than the byte of 128.So cause on old Legacy BIOS, cannot protect all BIOS information;
And on EFI (Extensible Firmware Interface) BIOS, if insert extrapolation USB flash disk, or in the time of can starting outfit, now from the user point of view, BIOS information does not change, but from BIOS itself, variation has occurred BIOS information, can the current BIOS information of prompting user change, produce ambiguity.
In addition, BIOS information is left in and on hard disk, have certain potential safety hazard.If someone (as hacker) destroys hard disc data, BIOS information just there will be extremely; If hard disk is pulled out, the defencive function of BIOS also cannot be realized; And repeatedly carry out the read-write of BIOS information, and can reduce the life-span of BIOS Flash chip, finally shorten whole service life of a machine.
Visible, existing CMOS protection scheme can not meet user's demand thoroughly, can not reach the effect of general protection BIOS, and stronger to the dependence of hard disk.
Summary of the invention
The technical problem to be solved in the present invention is independent, the content in protected data chip all sidedly how.
In order to address the above problem, the invention provides a kind of data guard method, be applied in a data processing equipment; Described data processing equipment comprises a data chip; Described method comprises:
Described data processing equipment arranges the sign of first in described data chip;
While again powering on, detect described the first sign after described data processing equipment is arranging described the first sign, obtain the first testing result;
Described data processing equipment, according to described the first testing result and the first predetermined relationship, arranges the second sign;
When first event of generation, described data processing equipment detects described the second sign, obtains the second testing result;
Described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
Further, described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set comprises:
If what the first testing result represented the first sign is disabled status, described data processing equipment is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described data processing equipment is arranged to the second sign to represent to enter the state of data chip.
Further, described data chip is according to the second predetermined relationship, and the step of carrying out operation corresponding to described the second testing result comprises:
When the second testing result represents that second while being designated the state that can not enter data chip, described data chip does not respond described the first event;
When the second testing result represents that second while being designated the state that can enter data chip, described data chip is carried out the operational order of described the first Event triggered.
Further, described data chip does not also comprise after not responding the step of described the first event:
Described data chip is revised as upstate by described the first sign.
Further, described data chip is BIOS chip, and described the first event is for triggering the event enter BIOS entrance, described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.
Further, described data processing equipment is arranging after described the first sign after the step that again powers on, and described data processing equipment is according to described the first testing result and the first predetermined relationship, also comprises before the step of the second sign is set:
Described data processing equipment detects the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set comprises:
Described data processing equipment when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
Further, described method also comprises:
When the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing not have described specific application program, described data chip is arranged to the first sign upstate and is restarted described data processing equipment.
The present invention also provides a kind of data processing equipment; Described data processing equipment comprises a data chip; Also comprise:
The first setting unit, for arranging the first sign of described data chip;
The first detecting unit detects described the first sign while again powering on after described the first sign is being set when described data processing equipment, obtains the first testing result;
The second setting unit, for according to described the first testing result and the first predetermined relationship, arranges the second sign;
The second detecting unit, for when there is the first event, described data chip detects described the second sign, obtains the second testing result;
Described data chip, for according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
Further, described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
If what the first testing result represented the first sign is disabled status, described the second setting unit is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described the second setting unit is arranged to the second sign to represent to enter the state of data chip.
Further, described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result and is referred to:
Described data chip represents that second while being designated the state that can not enter data chip, do not respond described the first event when the second testing result; When the second testing result represents that second while being designated the state that can enter data chip, carry out the operational order of described the first Event triggered.
Further, described data chip also for being revised as upstate by described the first sign after not responding described the first event.
Further, described data chip is BIOS chip, and described the first event is for triggering the event enter BIOS entrance, described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.
Further, described data processing equipment also comprises:
The 3rd detecting unit, for detection of the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
Described the second setting unit when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
Further, described data chip is also disabled status for what represent the first sign when the first testing result, and when described the 3rd testing result represents not have described specific application program, the first sign is arranged to upstate and is restarted described data processing equipment.
The content of at least one embodiment of the present invention in can protected data chip is not tampered; Another embodiment of the present invention can guarantee only to allow specific application program protect data chip, can also the in the situation that of this application program unloading or improper unloading, recover the operation to data chip; Another embodiment of the present invention can fundamentally stop the modification of user to BIOS data, to realize the object of BIOS protection, also can solve the incomplete problem of BIOS data protection; And to hard disk Existence dependency not, as long as after respective identification established, just can normally protect; Owing to repeatedly not reading and writing BIOS data, thus the serviceable life of BIOS Flash chip can be extended, to extend the serviceable life of whole machine.
Accompanying drawing explanation
Fig. 1 is the schematic flow sheet of embodiment mono-;
Fig. 2 is the schematic flow sheet of example in embodiment mono-;
Fig. 3 is the schematic block diagram of embodiment bis-.
Embodiment
Below in conjunction with drawings and Examples, technical scheme of the present invention is described in detail.
It should be noted that, if do not conflicted, each feature in the embodiment of the present invention and embodiment can mutually combine, all within protection scope of the present invention.In addition, although there is shown logical order in flow process, in some cases, can carry out shown or described step with the order being different from herein.
Embodiment mono-, and a kind of data guard method is applied in a data processing equipment; Described data processing equipment comprises a data chip; Described method as shown in Figure 1, comprising:
Described data processing equipment arranges the sign of first in described data chip;
While again powering on, detect described the first sign after described data processing equipment is arranging described the first sign, obtain the first testing result;
Described data processing equipment, according to described the first testing result and the first predetermined relationship, arranges the second sign;
When first event of generation, described data processing equipment detects described the second sign, obtains the second testing result;
Described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
Wherein, detect all or part of can being completed by data chip in first, second step that identifies, arranges the second sign, also can the other parts in data processing equipment complete.
In an embodiment of the present embodiment, described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set specifically can comprise:
If what the first testing result represented the first sign is disabled status, described data processing equipment is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described data processing equipment is arranged to the second sign to represent to enter the state of data chip.
In an embodiment of the present embodiment, described data chip is according to the second predetermined relationship, and the step of carrying out operation corresponding to described the second testing result specifically can comprise:
When the second testing result represents that second while being designated the state that can not enter data chip, described data chip does not respond described the first event;
When the second testing result represents that second while being designated the state that can enter data chip, described data chip is carried out the operational order of described the first Event triggered.
In this embodiment, when the second testing result represents that second while being designated the state that can not enter data chip, described data chip further can also produce the information of forbidding notebook data chip.
In this embodiment, described data chip can also not comprise after not responding the step of described the first event: described data chip is revised as upstate by described the first sign.
If comprise this step, the protection setting of data chip is only come into force once; If do not comprise this step,, before described the first sign of change, data chip does not respond the first event; Can select as required whether to increase this step.
In an embodiment of the present embodiment, described data processing equipment is after arranging the step again powering on after described the first sign, described data processing equipment is according to described the first testing result and the first predetermined relationship, can also comprise before the step of the second sign is set:
Described data processing equipment detects the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set specifically can comprise:
Described data processing equipment when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
Can guarantee so only to specific application program, to use for the protection of data chip.If there is not this specific application program, even if the first sign is configured to disabled status, data chip still can be operated.This application program can select whether to arrange BIOS protection for user, if user arranges BIOS protection, this application program can described the first sign be set to disabled status; If user does not arrange BIOS protection, this application program can described the first sign be set to upstate.
Described specific application program can be configured to when carrying out unloading operation, call the relevant interface that arranges, the first sign is set to upstate, the 3rd sign is set to represent not exist the value of specific application program, namely reverts to this application program and the state of disable data chip not do not installed.
During another of this embodiment realizes, described method can also comprise: when the first testing result represent the first sign for disabled status, and when described the 3rd testing result represents not have described specific application program, described data chip is arranged to the first sign upstate and is restarted described data processing equipment.
The object of doing is like this: if user changes hard disk, or the relative application software on hard disk is directly deleted in the situation that carrying out unloading operation, data chip can be certainly about to the first sign and be arranged to upstate.
In an embodiment of the present embodiment, described data chip is BIOS chip, and the value of the first sign is disabled status while being 00H, is upstate during for 01H.When the value of the first sign is changed to 00H, now the interface of any BIOS of entering all can be closed, and user cannot arrange BIOS.When the value of the first sign is changed to 01H, now any interface that enters BIOS is all in Open state, and user can utilize the entrance of the various BIOS of entering to enter BIOS and revise BIOS configuration information.
In this embodiment, described the first event is for triggering the event enter BIOS entrance, such as user by F1 shortcut trigger the entrance that enters BIOS.Described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.Described the second sign can be, but not limited to as " Enter Setup Flag ".
In other embodiment, the second sign can be also other sign, such as the sign that represents that can BIOS data be modified, or represent the sign can preserve the modification of BIOS data etc., at this moment described the first event should be the trigger event (such as user arranges certain sign) of revising BIOS data mutually, or the trigger event of preserve revising (such as user selects " preserve and exit " or presses the shortcut of corresponding function in BIOS interface), when the first testing result represent the first sign when the disabled status, above-mentioned second identifies the corresponding state that expression can not be modified that is configured to, or represent the state that can not preserve.
As shown in Figure 2, this example comprises above-mentioned the 3rd sign to the flow process of an object lesson of this embodiment, and processing procedure comprises step 201~205:
201, specific application program has been installed in data processing equipment, therefore the value of the 3rd sign is " 1 "; The value of this application program the first sign is set to " 1 ".
When 202, data processing equipment powers on again, BIOS chip judges that whether the value of described the first sign and the value of the 3rd sign are " 1 ", if so, carry out steps 203; If not, carry out step 204.
203, BIOS chip forbids that by the second sign being revised as to hidden state user enters BIOS SETUP by pressing F1 key; Carry out step 205.
204, BIOS chip allows user to enter BIOS SETUP by F1 by the second sign being revised as to non-hidden state; Carry out step 205.
205, BIOS chip is by described the first sign zero clearing.
A kind of data chip at the present embodiment is in the embodiment of BIOS chip, described data processing equipment can be by calling UEFI (Unified Extensible Firmware Interface, unified Extensible Firmware Interface) or SMI (Serial Management Interface, serial management interface), the sign of first in described data chip is arranged.
Such as described data processing equipment can call information that UEFI variable transmits concrete setting to BISO chip, it is EFI_GLOBAL_VARIABLE GUID that the variable calling can be, but not limited to, based on UINT8 size, NV/BS/RT attribute.Described data processing equipment obtains and arranges this variate-value according to calling of stipulating in UEFI standard with operation method.
If adopt SMI interface, data processing equipment can carry out according to mode below the setting of the first sign:
At entrance, EAX is set to 534DDD20h; BL is set to subfunction number; BH is set to set request variate-value;
In outlet, EAX is set to return code; EAX is SMI mistake return state, if there is no mistake EAX be 0, if do not support SMI, the 31st of EAX is 1; If SMI failure, the 30th of EAX is 1; If one or more input parameters are invalid, the 2nd of EAX is 1;
The variate-value arranging on SMI interface upgrades:
At entrance: BH=The request variable value to be set;
At outlet: BIOS, upgrade the parameter value that BH register transmits.
Embodiment bis-, and a kind of data processing equipment as shown in Figure 3, comprising:
One data chip;
The first setting unit, for arranging the first sign of described data chip;
The first detecting unit detects described the first sign while again powering on after described the first sign is being set when described data processing equipment, obtains the first testing result;
The second setting unit, for according to described the first testing result and the first predetermined relationship, arranges the second sign;
The second detecting unit, for when there is the first event, described data chip detects described the second sign, obtains the second testing result;
Described data chip, for according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
Wherein, all or part of can being integrated in data chip in first, second detecting unit, the second setting unit, also can be in data processing equipment the combination of hardware independently or software or software and hardware.
In an embodiment of the present embodiment, described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
If what the first testing result represented the first sign is disabled status, described the second setting unit is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described the second setting unit is arranged to the second sign to represent to enter the state of data chip.
In an embodiment of the present embodiment, described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result and is referred to:
Described data chip represents that second while being designated the state that can not enter data chip, do not respond described the first event when the second testing result; When the second testing result represents that second while being designated the state that can enter data chip, carry out the operational order of described the first Event triggered.
In this embodiment, when the second testing result represents that second while being designated the state that can not enter data chip, described data chip further can also produce the information of forbidding notebook data chip.
In an embodiment of the present embodiment, described data chip also for being revised as upstate by described the first sign after not responding described the first event.
If described data chip comprises this function, the protection setting of data chip is only come into force once; If do not comprise this function,, before described the first sign of change, data chip does not respond the first event; Can select as required whether to increase this step.
In an embodiment of the present embodiment, described data processing equipment also comprises:
The 3rd detecting unit, for detection of the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
Described the second setting unit when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
Can guarantee so only to specific application program, to use for the protection of data chip.If there is not this specific application program, even if the first sign is configured to disabled status, data chip still can be operated.
Described specific application program can be configured to when carrying out unloading operation, call the relevant interface that arranges, the first sign is set to upstate, the 3rd sign is set to represent not exist the value of specific application program, namely reverts to this application program and the state of disable data chip not do not installed.
In an embodiment of the present embodiment, described data chip is also disabled status for what represent the first sign when the first testing result, and when described the 3rd testing result represents not have described specific application program, the first sign is arranged to upstate and is restarted described data processing equipment.
The object of doing is like this: if user changes hard disk, or the relative application software on hard disk is directly deleted in the situation that carrying out unloading operation, data chip can be certainly about to the first sign and be arranged to upstate.
In an embodiment of the present embodiment, described data chip is BIOS chip, and the value of the first sign is disabled status while being 00H, is upstate during for 01H.When the value of the first sign is changed to 00H, now the interface of any BIOS of entering all can be closed, and user cannot arrange BIOS.When the value of the first sign is changed to 01H, now any interface that enters BIOS is all in Open state, and user can utilize the entrance of the various BIOS of entering to enter BIOS and revise BIOS configuration information.
In this embodiment, described the first event is for triggering the event enter BIOS entrance, such as user by F1 shortcut trigger the entrance that enters BIOS.Described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.Described the second sign can be, but not limited to as " Enter Setup Flag ".
In other embodiment, the second sign can be also other sign, such as the sign that represents that can BIOS data be modified, or represent the sign can preserve the modification of BIOS data etc., at this moment described the first event should be the trigger event (such as user arranges certain sign) of revising BIOS data mutually, or the trigger event of preserve revising (such as user selects " preserve and exit " or presses the shortcut of corresponding function in BIOS interface), when the first testing result represent the first sign when the disabled status, above-mentioned second identifies the corresponding state that expression can not be modified that is configured to, or represent the state that can not preserve.
One of ordinary skill in the art will appreciate that all or part of step in said method can come instruction related hardware to complete by program, described program can be stored in computer-readable recording medium, as ROM (read-only memory), disk or CD etc.Alternatively, all or part of step of above-described embodiment also can realize with one or more integrated circuit.Correspondingly, each the module/unit in above-described embodiment can adopt the form of hardware to realize, and also can adopt the form of software function module to realize.The present invention is not restricted to the combination of the hardware and software of any particular form.
Certainly; the present invention also can have other various embodiments; in the situation that not deviating from spirit of the present invention and essence thereof; those of ordinary skill in the art are when making according to the present invention various corresponding changes and distortion, but these corresponding changes and distortion all should belong to the protection domain of claim of the present invention.
Claims (14)
1. a data guard method, is applied in a data processing equipment; Described data processing equipment comprises a data chip; It is characterized in that, described method comprises:
Described data processing equipment arranges the sign of first in described data chip;
While again powering on, detect described the first sign after described data processing equipment is arranging described the first sign, obtain the first testing result;
Described data processing equipment, according to described the first testing result and the first predetermined relationship, arranges the second sign;
When first event of generation, described data processing equipment detects described the second sign, obtains the second testing result;
Described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
2. the method for claim 1, is characterized in that, described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set comprises:
If what the first testing result represented the first sign is disabled status, described data processing equipment is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described data processing equipment is arranged to the second sign to represent to enter the state of data chip.
3. method as claimed in claim 2, is characterized in that, described data chip is according to the second predetermined relationship, and the step of carrying out operation corresponding to described the second testing result comprises:
When the second testing result represents that second while being designated the state that can not enter data chip, described data chip does not respond described the first event;
When the second testing result represents that second while being designated the state that can enter data chip, described data chip is carried out the operational order of described the first Event triggered.
4. method as claimed in claim 3, is characterized in that, described data chip does not also comprise after not responding the step of described the first event:
Described data chip is revised as upstate by described the first sign.
5. the method for claim 1, is characterized in that:
Described data chip is BIOS chip, and described the first event is for triggering the event enter BIOS entrance, described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.
6. the method as described in any one in claim 1~5, it is characterized in that, described data processing equipment is arranging after described the first sign after the step that again powers on, and described data processing equipment is according to described the first testing result and the first predetermined relationship, also comprises before the step of the second sign is set:
Described data processing equipment detects the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described data processing equipment is according to described the first testing result and the first predetermined relationship, and the step that the second sign is set comprises:
Described data processing equipment when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
7. method as claimed in claim 6, is characterized in that, also comprises:
When the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing not have described specific application program, described data chip is arranged to the first sign upstate and is restarted described data processing equipment.
8. a data processing equipment, comprises a data chip; It is characterized in that, also comprise:
The first setting unit, for arranging the first sign of described data chip;
The first detecting unit detects described the first sign while again powering on after described the first sign is being set when described data processing equipment, obtains the first testing result;
The second setting unit, for according to described the first testing result and the first predetermined relationship, arranges the second sign;
The second detecting unit, for when there is the first event, described data chip detects described the second sign, obtains the second testing result;
Described data chip, for according to the second predetermined relationship, is carried out operation corresponding to described the second testing result.
9. data processing equipment as claimed in claim 8, is characterized in that, described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
If what the first testing result represented the first sign is disabled status, described the second setting unit is arranged to the second sign to represent to enter the state of data chip;
If what the first testing result represented the first sign is upstate, described the second setting unit is arranged to the second sign to represent to enter the state of data chip.
10. data processing equipment as claimed in claim 9, is characterized in that, described data chip, according to the second predetermined relationship, is carried out operation corresponding to described the second testing result and referred to:
Described data chip represents that second while being designated the state that can not enter data chip, do not respond described the first event when the second testing result; When the second testing result represents that second while being designated the state that can enter data chip, carry out the operational order of described the first Event triggered.
11. data processing equipments as claimed in claim 10, is characterized in that:
Described data chip also for being revised as upstate by described the first sign after not responding described the first event.
12. data processing equipments as claimed in claim 8, is characterized in that:
Described data chip is BIOS chip, and described the first event is for triggering the event enter BIOS entrance, described second while being designated hidden state for entering the state of data chip, during for non-hidden state for entering the state of data chip.
13. data processing equipments as described in any one in claim 8~12, is characterized in that, also comprise:
The 3rd detecting unit, for detection of the 3rd sign, obtains the 3rd testing result; Described the 3rd sign is used for representing whether described data processing equipment exists specific application program;
Described the second setting unit, according to described the first testing result and the first predetermined relationship, arranges the second sign and refers to:
Described the second setting unit when the first testing result represent the first sign for disabled status, and described the 3rd testing result is while representing to have described specific application program, the second sign is arranged to represent to enter to the state of data chip; When the first testing result represent the first sign for upstate, or described the 3rd testing result is while representing not have described specific application program, described the second sign is arranged to represent to enter to the state of data chip.
14. data processing equipments as claimed in claim 13, is characterized in that:
Described data chip also for when the first testing result, represent the first sign for disabled status, and described the 3rd testing result is while representing not have described specific application program, and the first sign is arranged to upstate and is restarted described data processing equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310013078.2A CN103927492B (en) | 2013-01-14 | 2013-01-14 | A kind of data processing equipment and data guard method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310013078.2A CN103927492B (en) | 2013-01-14 | 2013-01-14 | A kind of data processing equipment and data guard method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103927492A true CN103927492A (en) | 2014-07-16 |
| CN103927492B CN103927492B (en) | 2018-01-23 |
Family
ID=51145710
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310013078.2A Active CN103927492B (en) | 2013-01-14 | 2013-01-14 | A kind of data processing equipment and data guard method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103927492B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2018086375A1 (en) * | 2016-11-14 | 2018-05-17 | 华为技术有限公司 | Data protection circuit utilized in chip, chip, and electronic apparatus |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030149852A1 (en) * | 2002-02-04 | 2003-08-07 | Lg Electronics Inc. | Method and apparatus for securing data |
| CN1530835A (en) * | 2003-03-10 | 2004-09-22 | 联想(北京)有限公司 | Method for detecting computer operating system normal start |
| US20080022099A1 (en) * | 2006-07-18 | 2008-01-24 | Lenovo (Singapore) Pte. Ltd | Information transfer |
| CN101373451A (en) * | 2008-10-20 | 2009-02-25 | 华硕电脑股份有限公司 | Computer system for protecting double-basic input /output system program and control method thereof |
| CN101430665A (en) * | 2007-11-08 | 2009-05-13 | 英业达股份有限公司 | Write-protection prevention method for basic input/output system |
| CN101464933A (en) * | 2007-12-18 | 2009-06-24 | 中国长城计算机深圳股份有限公司 | BIOS write protection method and system |
| CN101499029A (en) * | 2008-02-02 | 2009-08-05 | 联想(北京)有限公司 | Cabinet recognizing method, computer, cabinet and main board |
| CN102681910A (en) * | 2011-03-08 | 2012-09-19 | 联想(北京)有限公司 | Recognition method, computer and recognition system |
-
2013
- 2013-01-14 CN CN201310013078.2A patent/CN103927492B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030149852A1 (en) * | 2002-02-04 | 2003-08-07 | Lg Electronics Inc. | Method and apparatus for securing data |
| CN1530835A (en) * | 2003-03-10 | 2004-09-22 | 联想(北京)有限公司 | Method for detecting computer operating system normal start |
| US20080022099A1 (en) * | 2006-07-18 | 2008-01-24 | Lenovo (Singapore) Pte. Ltd | Information transfer |
| CN101430665A (en) * | 2007-11-08 | 2009-05-13 | 英业达股份有限公司 | Write-protection prevention method for basic input/output system |
| CN101464933A (en) * | 2007-12-18 | 2009-06-24 | 中国长城计算机深圳股份有限公司 | BIOS write protection method and system |
| CN101499029A (en) * | 2008-02-02 | 2009-08-05 | 联想(北京)有限公司 | Cabinet recognizing method, computer, cabinet and main board |
| CN101373451A (en) * | 2008-10-20 | 2009-02-25 | 华硕电脑股份有限公司 | Computer system for protecting double-basic input /output system program and control method thereof |
| CN102681910A (en) * | 2011-03-08 | 2012-09-19 | 联想(北京)有限公司 | Recognition method, computer and recognition system |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2018086375A1 (en) * | 2016-11-14 | 2018-05-17 | 华为技术有限公司 | Data protection circuit utilized in chip, chip, and electronic apparatus |
| CN108073818A (en) * | 2016-11-14 | 2018-05-25 | 华为技术有限公司 | Data protection circuit, chip and the electronic equipment of chip |
| CN108073818B (en) * | 2016-11-14 | 2021-07-09 | 华为技术有限公司 | Data protection circuit of chip, chip and electronic equipment |
| US11216593B2 (en) | 2016-11-14 | 2022-01-04 | Huawei Technologies Co., Ltd. | Data protection circuit of chip, chip, and electronic device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103927492B (en) | 2018-01-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103718165B (en) | BIOS flash memory attack protection and notice | |
| CN103207975B (en) | The method of protection password and computing machine | |
| CA2799932C (en) | Computer motherboard having peripheral security functions | |
| CN103262092B (en) | Based on the anti-Malware method and apparatus of memory driver | |
| US20170289193A1 (en) | Secure smart terminal and an information processing method | |
| US10817211B2 (en) | Method for completing a secure erase operation | |
| US10037206B2 (en) | Methods and systems for state switching | |
| CN104461594A (en) | Updating method and device of embedded operating system | |
| CN110598384B (en) | Information protection method, information protection device and mobile terminal | |
| JP5466645B2 (en) | Storage device, information processing device, and program | |
| CN102722663A (en) | Handheld smart device data security protection method | |
| CN102968392A (en) | Microprocessor protected against memory dump | |
| CN110070360B (en) | Transaction request processing method, device, equipment and storage medium | |
| CN113467981A (en) | Exception handling method and device | |
| KR102494167B1 (en) | A Electronic Device And Method For Protecting The Kernel Space of the Memory | |
| CN104361280B (en) | A kind of method realizing carrying out authentic authentication to USB storage device by SMI interrupt | |
| CN102929802B (en) | A kind of guard method of storage resources and system | |
| CN103927492A (en) | Data processing device and data protecting method | |
| US10521150B2 (en) | Data processing method and device for nonvolatile memory and storage medium | |
| JP5241065B2 (en) | Apparatus and method for checking whether data stored in external memory is changed | |
| CN108647516B (en) | Method and device for defending against illegal privilege escalation | |
| US7882353B2 (en) | Method for protecting data in a hard disk | |
| CN104751082B (en) | Operating system and data security control method and device | |
| CN110750162B (en) | Input method and device | |
| US20210081117A1 (en) | Non-volatile memory protections |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |