CN104573438A - System and method for managing file based on file biological label - Google Patents
System and method for managing file based on file biological label Download PDFInfo
- Publication number
- CN104573438A CN104573438A CN201310516891.1A CN201310516891A CN104573438A CN 104573438 A CN104573438 A CN 104573438A CN 201310516891 A CN201310516891 A CN 201310516891A CN 104573438 A CN104573438 A CN 104573438A
- Authority
- CN
- China
- Prior art keywords
- file
- biological label
- module
- random number
- biological
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6209—Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a system and a method for managing a file based on a file biological label. The system for managing the file based on the file biological label is characterized by comprising a management center end, a client end module and an electronic key. The method is characterized by comprising the following steps of in the process of generating and writing the file biological label, generating the biological label by a file biological label generation module of the client end; encrypting the file by an encrypting algorithm, separating the generated biological label into three parts through operation, and respectively putting at a head part, a tail part and a middle part random position of the file; generating a random number by a built-in true random number chip of the electronic key of the client end, and determining the middle part random position according to the random number; embedding the file biological label into the file, and uploading the information to the management center end for storing. The system and the method have the advantages that by arranging the biological label module, the security of file management is improved, and the security of the management system is improved by the randomly generated encrypted number.
Description
Technical field
The present invention relates to a kind of file management system based on file biological label and method.
Background technology
Along with the development of society, between enterprises and institutions, transfer files major part replaces by the mode of e-file, efficient and saving resource, calls quick.But, cybertimes inevitably encounter the problem of divulging a secret, large to " prism door " event bubbling with noise in the recent period, how the little assault all occurred to every day, effectively ensure that the fail safe of file storage and transmission always is the major subjects of data security.
Therefore, prior art needs to be improved.
Summary of the invention
The present invention, in order to solve the deficiencies in the prior art, provides a kind of file management system based on file biological label and method, ensures the safe and reliable of file.
For solving the problems of the technologies described above, a kind of file management system based on file biological label that the embodiment of the present invention provides and method, adopt following technical scheme:
Based on a file management system for file biological label, it is characterized in that, comprise end of administrative center, client modules and electron key;
Described end of administrative center comprises data management module, data authentication module, file biological label store and management module;
Described client modules comprises data authentication correction verification module, file biological label generation module, biological label correction verification module;
Described electron key comprises generation public private key pair authentication module, built-in true random number chip generates random number module.
Based on a file management method for file biological label, it is characterized in that, comprise the steps:
S1: the generation of file biological label and write, generates biological label by client file biological label generation module;
S2: by cryptographic algorithm encrypt file, and the biological label generated is divided into three parts through computing, be placed on top of file, afterbody and middle part random site respectively;
S3: generate random number by the built-in true random number chip of client electronic key, decides middle part random site according to random number;
S4: file biological label is embedded in file, then this information is also uploaded to end of administrative center together and store.
Particularly, described biological label comprises the information such as file associated rights, paper writer, file size, electron key hardware characteristics code and generates biological label through cryptographic algorithm.
Particularly, user is when use management center-side data, and end of administrative center document control file cannot directly be opened online.
Particularly, all authorities of user are all in the unified setting of end of administrative center, and client is passive accepts associated rights.
Particularly, user in use, insert corresponding electron key, need to download the file into this locality, or copied files is to local, when user does the action of download and copied files, the associated rights of client biometric verification module to this user of the biological label of this file and end of administrative center record contrasts, if contrast successfully, normally open file, otherwise then can not download or copy.
A kind of file management system based on file biological label provided by the invention and method, strengthen the fail safe of file management by arranging biological label module, promoted the fail safe of management system by the encrypted value of stochastic generation.
Accompanying drawing explanation
Fig. 1 is the structural representation of the file management system based on file biological label described in the embodiment of the present invention.
The step schematic diagram that Fig. 2 is the file management method based on file biological label described in the embodiment of the present invention.
Embodiment
Provided by the invention a kind of file management system based on file biological label that the embodiment of the present invention provides and method, strengthen the fail safe of file management by arranging biological label module, promoted the fail safe of management system by the encrypted value of stochastic generation.
The file management system based on file biological label be supplied to the embodiment of the present invention below in conjunction with accompanying drawing and method are described in detail.
As shown in Figure 1, 2, a kind of file management system based on file biological label that the embodiment of the present invention provides, is characterized in that, comprise end of administrative center, client modules and electron key;
Described end of administrative center comprises data management module, data authentication module, file biological label store and management module;
Described client modules comprises data authentication correction verification module, file biological label generation module, biological label correction verification module;
Described electron key comprises generation public private key pair authentication module, built-in true random number chip generates random number module.
Based on a file management method for file biological label, it is characterized in that, comprise the steps:
S1: the generation of file biological label and write, generates biological label by client file biological label generation module;
S2: by cryptographic algorithm encrypt file, and the biological label generated is divided into three parts through computing, be placed on top of file, afterbody and middle part random site respectively;
S3: generate random number by the built-in true random number chip of client electronic key, decides middle part random site according to random number;
S4: file biological label is embedded in file, then this information is also uploaded to end of administrative center together and store.
Particularly, described biological label comprises the information such as file associated rights, paper writer, file size, electron key hardware characteristics code and generates biological label through cryptographic algorithm.
Particularly, user is when use management center-side data, and end of administrative center document control file cannot directly be opened online.
Particularly, all authorities of user are all in the unified setting of end of administrative center, and client is passive accepts associated rights.
Particularly, user in use, insert corresponding electron key, need to download the file into this locality, or copied files is to local, when user does the action of download and copied files, the associated rights of client biometric verification module to this user of the biological label of this file and end of administrative center record contrasts, if contrast successfully, normally open file, otherwise then can not download or copy.
A kind of file management system based on file biological label provided by the invention and method, strengthen the fail safe of file management by arranging biological label module, promoted the fail safe of management system by the encrypted value of stochastic generation.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; change can be expected easily or replace, all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should described be as the criterion with the protection range of claim.
Claims (6)
1. based on a file management system for file biological label, it is characterized in that, comprise end of administrative center, client modules and electron key;
Described end of administrative center comprises data management module, data authentication module, file biological label store and management module;
Described client modules comprises data authentication correction verification module, file biological label generation module, biological label correction verification module;
Described electron key comprises generation public private key pair authentication module, built-in true random number chip generates random number module.
2. based on a file management method for file biological label, it is characterized in that, comprise the steps:
S1: the generation of file biological label and write, generates biological label by client file biological label generation module;
S2: by cryptographic algorithm encrypt file, and the biological label generated is divided into three parts through computing, be placed on top of file, afterbody and middle part random site respectively;
S3: generate random number by the built-in true random number chip of client electronic key, decides middle part random site according to random number;
S4: file biological label is embedded in file, then this information is also uploaded to end of administrative center together and store.
3. the file management method based on file biological label according to claim 2, it is characterized in that, described biological label comprises the information such as file associated rights, paper writer, file size, electron key hardware characteristics code and generates biological label through cryptographic algorithm.
4. the file management method based on file biological label according to claim 2, is characterized in that, user is when use management center-side data, and end of administrative center document control file cannot directly be opened online.
5. the file management method based on file biological label according to claim 2, is characterized in that, all authorities of user are all in the unified setting of end of administrative center, and client is passive accepts associated rights.
6. the file management method based on file biological label according to claim 2, it is characterized in that, user in use, inserts corresponding electron key, needs to download the file into this locality, or copied files is to local, when user does download and the action of copied files, the associated rights of client biometric verification module to this user of the biological label of this file and end of administrative center record contrasts, if contrast successfully, normally open file, otherwise then can not download or copy.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310516891.1A CN104573438A (en) | 2013-10-29 | 2013-10-29 | System and method for managing file based on file biological label |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310516891.1A CN104573438A (en) | 2013-10-29 | 2013-10-29 | System and method for managing file based on file biological label |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104573438A true CN104573438A (en) | 2015-04-29 |
Family
ID=53089480
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310516891.1A Pending CN104573438A (en) | 2013-10-29 | 2013-10-29 | System and method for managing file based on file biological label |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104573438A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017024628A1 (en) * | 2015-08-11 | 2017-02-16 | 宇龙计算机通信科技(深圳)有限公司 | Encrypted information storage method, encrypted information storage device, and terminal |
| CN106834084A (en) * | 2017-02-04 | 2017-06-13 | 上海耐相智能科技有限公司 | A kind of user oriented DNA collections assay system |
-
2013
- 2013-10-29 CN CN201310516891.1A patent/CN104573438A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017024628A1 (en) * | 2015-08-11 | 2017-02-16 | 宇龙计算机通信科技(深圳)有限公司 | Encrypted information storage method, encrypted information storage device, and terminal |
| CN106834084A (en) * | 2017-02-04 | 2017-06-13 | 上海耐相智能科技有限公司 | A kind of user oriented DNA collections assay system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101311950B (en) | Electronic stamp realization method and device | |
| US20180322587A1 (en) | Payroll based blockchain identity | |
| CN101241569B (en) | Electronic signature method and device and system | |
| EP3667535B1 (en) | Storage data encryption and decryption device and method | |
| CN110784463B (en) | File storage and access method based on block chain | |
| CN1234081C (en) | Method and device for realizing computer safety and enciphering based on identity confirmation | |
| JP6921222B2 (en) | Encryption key management based on ID information | |
| KR20210066867A (en) | An encrypted asset encryption key portion that allows assembly of an asset encryption key using a subset of the encrypted asset encryption key portion. | |
| US20080072066A1 (en) | Method and apparatus for authenticating applications to secure services | |
| CN103065102A (en) | Data encryption mobile storage management method based on virtual disk | |
| WO2018222202A1 (en) | Digital composition hashing | |
| GB2459662A (en) | Securely caching electronic passport data for verification purposes | |
| US10630474B2 (en) | Method and system for encrypted data synchronization for secure data management | |
| CN103236930A (en) | Data encryption method and system | |
| CN102831346B (en) | A kind of file protecting system carries out the method for file encryption-decryption | |
| CN102932140A (en) | Key backup method for enhancing safety of cipher machine | |
| CN1776563A (en) | File encrypting device based on USB interface | |
| US20110107109A1 (en) | Storage system and method for managing data security thereof | |
| CN107911221B (en) | Key management method for secure storage of solid-state disk data | |
| CN1655505A (en) | Bank cashier safety system and method | |
| CN102651079B (en) | IC (integrated circuit) card management method occupying memory space for a short time and IC card management system | |
| KR20200116010A (en) | Encryption key management based on identity information | |
| CN104573438A (en) | System and method for managing file based on file biological label | |
| CN101848089B (en) | Establishment management system based on USB hardware device | |
| CN101099207B (en) | Portable data support with watermark function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150429 |