CN105488436A - Mobile storage equipment access method and device - Google Patents

Mobile storage equipment access method and device Download PDF

Info

Publication number
CN105488436A
CN105488436A CN 201510998032 CN201510998032A CN105488436A CN 105488436 A CN105488436 A CN 105488436A CN 201510998032 CN201510998032 CN 201510998032 CN 201510998032 A CN201510998032 A CN 201510998032A CN 105488436 A CN105488436 A CN 105488436A
Authority
CN
Grant status
Application
Patent type
Prior art keywords
access
storage device
operation
mobile
device
Prior art date
Application number
CN 201510998032
Other languages
Chinese (zh)
Inventor
胡启宇
潘山
江爱军
Original Assignee
北京奇虎科技有限公司
北京奇安信科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • G06F21/79Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in semiconductor storage media, e.g. directly-addressable memories

Abstract

The invention provides a mobile storage equipment access method and device. The method comprises the steps that mobile storage equipment which has access to a user terminal is configured with an equipment identification, displaying of the equipment identification on the position relative to an operating system of the access user terminal is canceled, access operation to the mobile storage equipment is received, safety verification is conducted on the access operation by calling first safety driving preset on the mobile storage equipment, and after verification is successful, the mobile storage equipment is accessed according to the access operation. According to the scheme, due to the fact that the equipment identification configured on the mobile storage equipment which has access to the user terminal is not displayed, the mobile storage equipment can not be accessed directly by identifying the equipment identification and relative operations, verification is conducted on the access operation by further calling the safety driving preset on the mobile storage equipment, after verification is successful, the mobile storage equipment is allowed to be accessed according to the access operation, and therefore the safety of the mobile storage equipment is guaranteed.

Description

一种移动存储设备访问方法和装置 A mobile storage access method and apparatus

技术领域 FIELD

[0001]本发明涉及软件技术领域,特别是涉及一种移动存储设备访问方法,以及一种移动存储设备访问装置。 [0001] The present invention relates to the field of software technology, particularly to a method for accessing the mobile storage device, storage access, and a mobile device.

背景技术 Background technique

[0002] U盘全称USB闪存盘,是一种使用USB接口与终端设备连接的移动存储设备,具有存储容量大、数据存储速度快、体积小和使用方便等优点,正被越来越多的用户使用。 [0002] U stands for USB flash drive disk, is a storage device using a mobile terminal device connected to the USB interface having a large storage capacity, high speed data storage, small size and ease of use, are being more and more users.

[0003] 访问U盘时,可以将U盘插入终端设备,通过打开页面显示的U盘盘符访问U盘,将所需数据存储于U盘内或从U盘中下载所需数据。 [0003] When accessing U disk, U disk may be inserted into the terminal device, by opening U U disk drive to access disk page displayed in the desired U-U disk, or downloaded from the data storage required.

[0004]但是,普通U盘对数据的访问操作没有任何访问控制,只要具有USB接口的终端设备都可以对U盘进行访问,此种U盘访问方式在给人们带来便利的同时,也带来了病毒侵入和信息泄密等问题。 [0004] However, there is no common U disk access control access to operational data, as long as the terminal device having a USB interface can be accessed on the U disk, U disk access this way to bring convenience, but also with the virus to invade and information leaks and other problems.

发明内容 SUMMARY

[0005]鉴于上述问题,提出了本发明以便提供一种克服上述问题或者至少部分地解决上述问题的移动存储设备访问方法和移动存储设备访问装置。 [0005] In view of the above problems, the present invention is proposed in order to overcome the above problems or to provide an at least partially overcome the mobile storage access method and a mobile storage access means of the above-described problems.

[0006]依据本发明的一个方面,提供了 一种移动存储设备访问方法,包括: [0006] According to an aspect of the present invention, there is provided a method of accessing the mobile storage device, comprising:

[0007]对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; [0007] The mobile user terminal to the access storage device configuration device identifier, and canceling the display device in the operating system identifier associated with the access position of a user terminal;

[0008]接收对所述移动存储设备的访问操作; [0008] The receiving access to said mobile storage device to operate;

[0009]调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0009] After the first call to the preset safety driving the mobile storage device for security verification of the access operation, and the authentication is successful, the mobile access storage device according to the access operation.

[0010]可选地,所述移动存储设备采用NTFS新技术文件系统。 [0010] Alternatively, the mobile storage device using NTFS New Technology File System.

[0011]可选地,所述取消所述设备标识在所接入的用户终端的操作系统的展示包括: [0011] Alternatively, to cancel the user terminal identifies the device accessed by the operating system display comprising:

[0012]修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 [0012] registry settings associated with an operating system user to modify the access terminal is not showing a mobile storage device.

[0013]可选地,在所述接收用户对所述移动存储设备的访问操作之前,所述方法还包括: [0013] Alternatively, before the receiving user access operation to the mobile storage device, the method further comprising:

[0014]生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框; [0014] generation mobile storage device management interface, and present the device identifier and the corresponding log block in said management interface;

[0015] 对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0015] user login information in the login box, input validation, verification and determine success.

[0016] 可选地,所述方法还包括: [0016] Optionally, the method further comprising:

[0017]接收在所述管理界面中对所述移动存储设备的属性设置操作。 [0017] receiving property of the mobile device operated in the storage management interface.

[0018]可选地,所述接收对所述移动存储设备的访问操作包括: [0018] Alternatively, the receiving apparatus storing the mobile access operation comprises:

[0019]生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; [0019] The removable storage device to generate the corresponding folder, the folder for receiving a user-initiated access operation;

[0020]或,接收某个程序根据所述设备标识发起的访问操作。 [0020] or, receives a program initiated access operation according to the device identification.

[0021]可选地,所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证包括: [0021] Alternatively, the call preset security verification of the access operation comprises a first driving safety of the mobile storage device:

[0022]若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; [0022] When the access operation is triggered by a user through a folder, then the access authentication operation for the safe operation;

[0023]若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 [0023] When the access operation is initiated by a program according to the device identifier, the access operation to verify whether the security operation.

[0024]可选地,在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,所述方法还包括: [0024] Alternatively, prior to calling the preset security verification of the access operation of the first safety driving of the mobile storage device, the method further comprising:

[0025]调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0025] In the second pre-driver calls the mobile storage device to verify the access operation is a safe operation.

[0026]可选地,在所述对接入的移动存储设备配置设备标识之后,所述方法还包括: [0026] Alternatively, after the access to the storage device configuration of the mobile device identifier, the method further comprises the:

[0027]将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 [0027] The mobile device identifier of the first storage device and the drive for security association.

[0028]可选地,所述根据所述访问操作访问所述移动存储设备包括: [0028] Alternatively, the access according to the access operation to the mobile storage device comprises:

[0029]通过访问所述设备标识对应的移动存储设备的访问控制接口,将所述访问操作发送至所述移动存储设备。 [0029] The access control interface to access the device corresponding to the identifier by the mobile storage device, the storage of the mobile device to the access operation.

[0030]可选地,所述访问操作为对所述移动存储设备的读操作、写操作或格式化操作。 [0030] Alternatively, the access operation is a read operation to the mobile storage device, write or format operation. [0031 ]根据本发明的另一个方面,提供了一种移动存储设备访问装置,包括: [0031] According to another aspect of the present invention, there is provided a mobile storage access apparatus comprising:

[0032]设备标识取消模块,用于对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; [0032] The cancel device identification module configured to configure the user equipment identifier to the access terminal, a mobile storage device, and to cancel the display device in the operating system identifier associated with the access position of a user terminal;

[0033]访问操作接收模块,用于接收对所述移动存储设备的访问操作; [0033] The access operation receiving module, for receiving said removable storage device access operation;

[0034]安全验证模块,用于调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0034] The security authentication module for calling the preset safety after the first mobile storage device to drive the security verification of the access operation, and the authentication is successful, according to the access operation accessing the mobile storage device.

[0035]可选地,所述移动存储设备采用NTFS新技术文件系统。 [0035] Alternatively, the mobile storage device using NTFS New Technology File System.

[0036]可选地,所述设备标识取消模块,具体用于修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 [0036] Alternatively, the device identification cancellation module is provided for associating items registry modifying the operating system of the user terminal does not exhibit mobile access storage device.

[0037] 可选地,所述装置还包括: [0037] Optionally, the apparatus further comprising:

[0038]管理界面生成模块,用于在所述接收用户对所述移动存储设备的访问操作之前,生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框; Login [0038] Management interface generating means for receiving a user access prior to the operation of the mobile storage device, generating a mobile storage device management interface, and the display apparatus and the corresponding identification in said management interface frame;

[0039] 登录信息验证模块,用于对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0039] The login authentication module configured to authenticate the user logged in login information input box, and determined that the verification is successful.

[0040] 可选地,所述装置还包括: [0040] Optionally, the apparatus further comprising:

[0041]属性设置操作接收模块,用于接收在所述管理界面中对所述移动存储设备的属性设置操作。 [0041] attribute setting operation receiving module for receiving the management interface provided to the mobile storage device attribute operation.

[0042 ]可选地,所述访问操作接收模块包括: [0042] Alternatively, the access operation receiving module comprises:

[0043]文件夹生成子模块,用于生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; [0043] The folder creation sub-module for generating the removable storage device corresponding to the folder, receiving user access operations initiated for the folder;

[0044]或,访问操作获得子模块,用于接收某个程序根据所述设备标识发起的访问操作。 [0044] or, the access operation to obtain sub-module, for receiving a program initiated by an access operation according to the device identifier.

[0045]可选地,所述安全验证模块包括: [0045] Alternatively, the security authentication module comprising:

[0046]安全操作确定子模块,用于若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; [0046] safe operation determination sub-module, configured to, if the access operation is triggered by the user folder, to verify the access operation safe operation;

[0047]安全操作验证子模块,用于若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 [0047] safe operation verification sub-module, configured to, if the apparatus identifier according to the access operation initiated by a program, verify whether the access operation for the safe operation.

[0048] 可选地,所述装置还包括: [0048] Optionally, the apparatus further comprising:

[0049]第二驱动程序调用模块,用于在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0049] The second driver calling module for calling the preset prior to the first movement of the safety drive storage device for security verification of the access operation, the first mobile call preset in the storage device two drivers to verify that the access operation is a safe operation.

[0050] 可选地,所述装置还包括: [0050] Optionally, the apparatus further comprising:

[0051]设备标识关联模块,用于在所述对接入的移动存储设备配置设备标识之后,将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 [0051] The device identifier associating module, configured to, after the access storage device configuration of the mobile device identifier identifying the mobile device and the first storage device for driving security association.

[0052]可选地,所述安全验证模块,具体用于通过访问所述设备标识对应的移动存储设备的访问控制接口,将所述访问操作发送至所述移动存储设备。 [0052] Alternatively, the security authentication module is used to control access to the device interface for accessing the removable storage device corresponding to the identifier by, the access operation to the mobile storage device.

[0053]可选地,所述访问操作为对所述移动存储设备的读操作、写操作或格式化操作。 [0053] Alternatively, the access operation is a read operation to the mobile storage device, write or format operation. 通过本发明实施例,由于不展示对接入用户终端的移动存储设备配置的设备标识,无法通过识别设备标识及相关操作直接访移动存储设备,需要进一步调用预置在移动存储设备的第一安全驱动对访问操作进行验证,并且验证成功后,才允许根据所述访问操作访问所述移动存储设备,从而保证了移动存储设备的安全,避免了病毒入侵和信息泄密等问题。 Embodiments of the present invention, since the device does not display an identification of a mobile user terminal access storage device configuration, can not directly access the storage devices via the mobile device identifier identifying and related operations need to further secure the first preset call in the mobile storage device driving of the access operation for authentication, and upon successful authentication, access is permitted according to the access operation to the mobile storage device, so as to ensure the safety of mobile storage devices, to avoid the leakage of information viruses and other issues.

[0054]上述说明仅是本发明技术方案的概述,为了能够更清楚了解本发明的技术手段,而可依照说明书的内容予以实施,并且为了让本发明的上述和其它目的、特征和优点能够更明显易懂,以下特举本发明的具体实施方式。 [0054] The above description is only an overview of the technical solution of the present invention, in order to more fully understood from the present invention, but may be implemented in accordance with the contents of the specification, and in order to make the aforementioned and other objects, features and advantages of the present invention can be more apparent from the following specific embodiments cite Patent of the present invention.

附图说明 BRIEF DESCRIPTION

[0055]通过阅读下文优选实施方式的详细描述,各种其他的优点和益处对于本领域普通技术人员将变得清楚明了。 [0055] By reading the following detailed description of preferred embodiments Hereinafter, a variety of other advantages and benefits to those of ordinary skill in the art will become apparent. 附图仅用于示出优选实施方式的目的,而并不认为是对本发明的限制。 The drawings are only for purposes of illustrating a preferred embodiment and are not to be considered limiting of the present invention. 而且在整个附图中,用相同的参考符号表示相同的部件。 But throughout the drawings, like parts with the same reference symbols. 在附图中: In the drawings:

[0056]图1示出了根据本发明实施例1的移动存储设备访问方法的流程图; [0056] FIG. 1 shows a flowchart of a method accessing moving storage apparatus of the embodiment according to Example 1 of the present invention;

[0057]图2示出了根据本发明实施例2的移动存储设备访问方法的流程图; [0057] FIG. 2 shows a flowchart of a method of accessing the mobile storage device according to Embodiment 2 of the invention;

[0058]图3示出了根据本发明实施例1的移动存储设备访问装置的结构框图; [0058] FIG. 3 shows a block diagram of a mobile device to access the storage device according to Embodiment 1 of the invention;

[0059]图4示出了根据本发明实施例2的移动存储设备访问装置的结构框图。 [0059] FIG. 4 shows a block diagram of a mobile device to access the storage device according to Embodiment 2 of the invention.

具体实施方式 detailed description

[0060]下面将参照附图更详细地描述本公开的示例性实施例。 [0060] The following exemplary embodiments of the present disclosure will be described in more detail with reference to the drawings. 虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。 While the exemplary embodiment shows an exemplary embodiment of the present disclosure in the drawings, it should be understood that the present disclosure may be implemented embodiments and should not be set forth herein to limit in various forms. 相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。 Rather, these embodiments are able to more thorough understanding of the present disclosure, and the scope of the present disclosure can be completely conveying to those skilled in the art.

[0061]参照图1,示出了根据本发明实施例1的一种移动存储设备访问方法的步骤流程图,具体可以包括如下步骤: [0061] Referring to Figure 1, there is shown a flow diagram of the steps of the method of accessing a mobile storage apparatus of the present invention, Example 1, specifically comprising the following steps:

[0062]步骤101,对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示。 [0062] Step 101, the user terminal access storage device configuration of a mobile device identifier, and canceling the display device in the operating system identifier associated with the access position of a user terminal.

[0063]用户终端可以为台式电脑、笔记本电脑、手机、PAD等终端设备,所述终端设备安装有供接口(例如USB等)插入的卡槽(例如USB卡槽等)。 [0063] The user terminal may be a desktop computer, notebook computers, mobile phones, and other devices the PAD, the terminal device is mounted for interfaces (e.g. USB, etc.) into a slot (e.g. slot USB, etc.). 移动存储设备可以为具有接口的U盘、硬盘或是其他可移动使用并可作为存储介质的设备(例如移动终端等)。 The mobile storage device may be used as the storage media (e.g., mobile terminals, etc.) having a U-disk interface, a hard disk or other removable. 可以通过将移动存储设备的接口插入用户终端的卡槽,连接移动终端设备和用户终端,实现用户终端对移动存储设备的数据读取操作和数据写入操作等操作。 Interface of the mobile device can be stored by the user terminal into the slot, connecting the mobile terminal device and the user terminals, the user terminals for data read operation and data write operation of the mobile storage device and other operations.

[0064]设备标识为设备盘符,可以是文字、数字、字符和其他标识中至少一种,例如“可移动存储设备I”。 [0064] device identification letter as the device, it can be text, numeric, character, and at least one other identifier, such as "removable storage device I". 在检测到移动存储设备接入用户终端后,可以根据需要对接入的移动存储设备配置设备标识。 After detecting that the mobile user terminal access storage device, the identification device can be configured according to the needs of the mobile access storage device.

[0065]在对接入用户终端的移动存储设备配置设备标识后,传统的方法会在用户终端的操作系统关联位置对设备标识进行展示,例如在“我的电脑”所属页面中展示设备标识“可移动存储设备I”等。 [0065] After configuring the device identifier of the mobile user terminal access storage devices, the traditional method of the display device will be identified in the position of the user terminal associated with the operating system, for example, display equipment identification in the "My Computer" your page " a removable storage device I "and the like. 而本发明实施例中的方法在移动存储设备接入用户终端并对其配置设备标识后,取消所述设备标识在所接入的用户终端的操作系统关联位置的展示,即对配置的设备标识进行隐藏。 The method of the embodiment of the present invention, a mobile terminal user and the access storage device configuration after its device identifier, canceling the display device in the operating system identifier associated with the access position of a user terminal, i.e. the identification of the device arranged in be hidden. 由于设备标识不展示,无法通过识别设备标识及相关操作直接访问移动存储设备,需要通过完成后续的相关操作才能访问移动存储设备,从而实现了对移动存储设备访问的控制,保证了移动存储设备的安全。 Since the device identification does not show, can not access removable storage devices directly through the recognition device identification and related operations, the need to access removable storage device by completing the follow-up related operations, in order to achieve control access to removable storage devices, to ensure that the mobile storage device Safety.

[0066]步骤102,接收用户对所述移动存储设备的访问操作。 [0066] Step 102 receives a user access to the mobile storage device operation.

[0067]在移动存储设备接入用户终端后,可以接收用户对移动存储设备的访问操作。 [0067] After the mobile storage device access user terminal, a user may receive an access operation to the mobile storage device. 例如,可以在配置设备标识后,在弹出的页面中展示生成的文件夹,用户可以针对展示的文件夹发起访问操作;也可以在配置设备标识后,接收其他驱动程序或非驱动程序通过逆向操作发现隐藏的设备标识,并对所述设备标识发起访问操作;还可以为其他访问方式,本发明在此不做限制。 For example, after configuring the device identifier, the pop-up page display generated folder, a user may initiate an access operation for a file folder display; may be arranged after the device identifier, receiving a driver or other driver through the reverse operation find hidden device identification, device identification and to initiate the access operation; may be other access methods, the present invention is not restricted herein. 其中,访问操作可以为读操作、写操作或格式化操作等操作。 Wherein the access operation may be a read, write or format operation operation.

[0068]步骤103,调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0068] Step 103, after the first call preset safe driving the mobile storage device for security verification of the access operation, and the authentication is successful, the mobile access storage device according to the access operation.

[0069]移动存储设备内预置有第一安全驱动的安装文件,安装后的第一安全驱动用于对访问操作进行安全验证。 [0069] The mobile storage device with a first pre-driver installation file security, safety after a first installation drive access operations for security verification. 具体地,在移动存储设备接入用户终端后,用户终端的操作系统检测用户终端内是否需要安装第一安全驱动,在检测到所述用户终端内需要安装第一安全驱动时,指示用户终端运行移动存储设备内存储的第一安全驱动的安装文件,以实现第一安全驱动可用。 Specifically, after the mobile storage device access user terminals, first need to install the operating system detects the driving safety of the user terminal of the user terminal, upon detection of the need to secure a first driver in said user terminal, indicating that the user terminal runs the first safety drive stored within the mobile storage device installation files available to achieve a first driving safety.

[0070]第一驱动程序用于验证发起访问操作的程序是否安全,进而验证访问操作是否为安全操作。 [0070] The first driver for initiating the access operation to verify whether the safety program, and further operable to verify access safe operation.

[0071]在移动存储设备的终端服务器中预先设置有第一安全程序名单,用于对发起操作访问的程序进行验证。 [0071] In terminal server mobile storage device is provided in advance with a list of the first security program for initiating the operation to access the program verify. 具体地,第一程序名单可以是白名单,默认白名单中的程序为安全程序,若发起访问操作的程序命中白名单,则说明所述程序为安全程序;也可以是黑名单,默认黑名单中的程序为危险程序,若发起访问操作的程序命中黑名单,则说明所述程序为危险程序。 Specifically, the first white list may be a list of programs, the default program whitelist for the safety program, if the program hit whitelist initiated access operation, then the program is a safety program; black list may also be the default blacklist the program is dangerous programs, if the initiator access operation hit the blacklist, then the procedure is dangerous programs. 还可以是其他验证方法,本发明在此不做限制。 May also be other authentication methods, the present invention is not restricted herein.

[0072]验证访问操作时,可以调用第一安全驱动验证发起访问操作的应用程序或驱动是否属于第一安全程序名单,此时第一安全程序名单为白名单,若属于,则判定所述访问操作为安全操作,可以进一步根据所述访问操作访问所述移动存储设备;如果不属于,则判定所述访问操作为危险操作,阻止对移动存储设备进行访问操作。 [0072] The access verification operation, a first secure driver can call initiated access operation verification application or driver safe list belongs to a first program, while the first safety program list whitelist, if belongs to, it is determined that the access operation of safe operation, may be further accessing the mobile storage device according to the access operation; if not, it is determined that the access operation is a dangerous operation, to prevent the mobile device storage access operations.

[0073]在实际操作中,可以将所述移动存储设备的设备标识与所述第一安全驱动进行关联,可以在第一安全驱动对访问操作验证成功后,对关联的设备标识对应的移动存储设备进行访问操作。 [0073] In practice, the identification device may be a mobile storage device and driving the first security association, the security may be the driving of the first access operation successful verification of identity associated with the mobile storage device corresponding to device access operations.

[0074]依据本发明实施例,由于不展示对接入用户终端的移动存储设备配置的设备标识,无法通过识别设备标识及相关操作直接访移动存储设备,需要进一步调用预置在移动存储设备的第一安全驱动对访问操作进行验证,并且验证成功后,才允许根据所述访问操作访问所述移动存储设备,从而保证了移动存储设备的安全,避免了病毒入侵和信息泄密等问题。 [0074] According to an embodiment of the present invention, since the device does not display an identification of a mobile user terminal access storage device configuration, can not directly access the storage devices via the mobile device identifier identifying and related operations, the need for further pre-call in the mobile storage device a first driving safety access authentication operation, and after successful authentication, access is permitted according to the access operation to the mobile storage device, so as to ensure the safety of mobile storage devices, to avoid the leakage of information viruses and other issues.

[0075]参照图2,示出了根据本发明实施例2的移动存储设备访问方法的流程图,具体可以包括如下步骤: [0075] Referring to FIG 2, a flowchart illustrating a mobile device storage access method according to Embodiment 2 of the present invention, specifically include the following steps:

[0076]步骤201,生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框。 [0076] Step 201 generates a removable storage device management interface, and present the device identifier and the corresponding log block in said management interface.

[0077]本发明实施例中,在移动存储设备接入用户终端前,可以根据预设操作打开用户终端安装的访问管理客户端,生成移动存储设备的管理界面。 Embodiment [0077] of the present invention, prior to moving the storage device the access user terminals, to open access to the management client according to a preset user terminal mounting operation, generating a mobile storage device management interface.

[0078]管理界面为信息配置界面,在管理界面中可以展示移动存储设备的设备标识和对应的登录框,登录框内可以展示有多个属性信息以及关联的输入栏,例如设备厂商信息、设备序列单号、单位信息、部门信息、使用人信息、备注信息等属性信息;还可以展示初始口令、口令尝试次数和口令复杂度要求等属性信息,以及针对各个属性信息配置的输入栏。 [0078] Information management interface configuration interface, the administration interface can show a mobile device identifier and the storage device corresponding login box, the box may show login information and attributes associated with a plurality of input columns, such as the device vendor information, device single sequence number, unit information, department information, the use of personal information, notes and other information attribute information; can also display the original password, password attempts and password complexity requirements and other attribute information, and attribute information for each input field configuration.

[0079]在具体操作中,对于首次接入的移动存储设备,可以接收在所述管理界面中对所述移动存储设备的属性设置操作,通过在管理界面中配置属性信息完成对移动存储设备的注册,可以将移动存储设备的注册信息存储于用户终端的登录服务器内以供查看,同时移动存储设备的注册行为可以以日志的形式记录在登录服务器内。 [0079] In a particular operation, the first access to the mobile storage device may be received attribute setting operation for the mobile storage device, by arranging the attribute information in the management interface is completed in the management interface of the mobile storage device registration, registration information can be stored in removable storage devices in the server log in the user terminal for viewing, while the registration behavior removable storage devices can be recorded in a log on the server as a log.

[0080]对于非首次接入的移动存储设备,可以在生成的管理界面中输入属性信息,生成对所述移动存储设备的登录信息,可以通过在管理界面中的预设操作,例如点击“确定”按钮,提交输入的登录信息。 [0080] For the first non-access mobile storage device, can be entered in the generated management interface attribute information, generates registration information to the mobile storage device, preset operation by the management interface, such as clicking "OK "button to submit login information input.

[0081]在实际操作中,移动存储设备可以采用NTFS新技术文件系统,相比于常用的FAT32文件系统,NTFS新技术文件系统内存更大、可以在多个硬盘上存储文件,同时NTFS能够提供各种FAT版本所不具备的性能、安全性、可靠性与先进特性的高级文件系统。 [0081] In practice, the mobile storage devices may be employed NTFS New Technology File System, as compared to conventional FAT32 file system, NTFS New Technology File System larger memory, can store files, while NTFS hard disk can be provided on a plurality of advanced file system performance, security, reliability, and advanced features of the various versions of FAT are not available. 例如,NTFS通过标准事务日志功能与恢复技术确保卷的一致性。 For example, NTFS via standard transaction logging and recovery techniques to ensure the consistency of the volume. 如果系统出现故障,NTFS能够使用日志文件与检查点信息来恢复文件系统的一致性。 If the system fails, NTFS file system consistency can be restored using the log file and checkpoint information. 在Windows 2000和Windows XP中,NTFS还能提供诸如文件与文件夹权限、加密、磁盘配额以及压缩之类的高级特性。 In Windows 2000 and Windows XP, NTFS also provides services such as file and folder permissions, encryption, disk quotas, and advanced features like compression.

[0082] 步骤202,对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0082] Step 202, the user login information to the login box input validation, and determines that the verification is successful.

[0083]接收到用户在管理界面的登录框中输入的登录信息后,对所述登录信息进行验证,验证所述登录信息是否正确,若正确,则确定验证成功。 After [0083] receiving the login information of the user management interface in the login input box, to verify the login information, the login authentication information is correct, if correct, it is determined that authentication is successful.

[0084]具体验证登录信息时,可以从用户终端的后端服务器中读取移动存储设备的注册信息,判断移动存储设备的登录信息和注册信息是否一致,若一致,则判定验证成功,可以进一步接收用户对移动存储设备的访问操作;若不一致,则判定验证失败,禁止接收用户对移动存储设备的访问操作。 When [0084] DETAILED login authentication information may be read from the backend server of the user terminal registration information of the mobile storage device, determines whether the login information of the mobile storage device and registration information agree, if they are consistent, it is determined that authentication is successful, it may be further receiving a user operation of the mobile access storage device; if not, it is determined that authentication fails, the access operation to prohibit a user receiving a mobile storage device.

[0085]步骤203,对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示。 [0085] Step 203, the user terminal access storage device configuration of a mobile device identifier, and canceling the display device in the operating system identifier associated with the access position of a user terminal.

[0086]对移动存储设备配置设备标识后,不展示所述设备标识,例如可以通过修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备,隐藏设备标识。 [0086] After the mobile device configuration storage device identifier, the device identifier does not show, for example, by setting items associated with the operating system registry modifying the user terminal is not a mobile display access storage device, the device identification of the hidden . 例如,可以在注册表中查找路径HKEY_CURRENT_USER4Software—Microsoft4Windows—CurrentVers1n—Ploicies—Explorer,找到“NoDrives” 的选项后将其删除,从而隐藏设备标识。 For example, you can find in the registry path HKEY_CURRENT_USER4Software-Microsoft4Windows-CurrentVers1n-Ploicies-Explorer, will find "NoDrives" option to remove it, thus hiding the device identification. 还可以通过其他方式隐藏设备标识,本发明在此不做限制。 Device identifier may also be hidden by other means, the present invention is not restricted herein.

[0087]步骤204,接收对所述移动存储设备的访问操作。 [0087] Step 204, the receiving operation of the mobile access storage device.

[0088]在具体实现中,可以在配置设备标识后,生成所述移动存储设备对应的文件夹,接收用户针对文件夹发起的访问操作,例如可以在弹出的页面中展示生成的文件夹,用户可以针对展示的文件夹发起访问操作;也可以在弹出的页面中展示文件夹所在路径以供用户查找,如路径“我的电脑/可移动存储设备I”,用户可以依据所述路径查找文件夹,并对找到的文件夹发起访问操作。 [0088] In a specific implementation, may be arranged after the device identifier, the mobile storage device to generate the corresponding folder, for receiving a user-initiated access operation folder, for example, generated folder display the pop-up page, the user folder access operations can initiate file for display; can show the path to the folder for the user to find, such as the path "my computer / removable storage devices I" in the pop-up page, the user can locate the folder based on the path , find the folder and file access operations initiated.

[0089]也可以在配置设备标识后,接收某个程序根据设备标识发起的访问操作,例如由其他驱动程序或非驱动程序通过逆向操作发现隐藏的设备标识,并对所述设备标识发起访问操作;还可以为其他接收方式,本发明在此不做限制。 [0089] After configuring the device may be identified, according to a program reception device identification access operation is initiated, for example, a driver or other drivers find hidden by the reverse operation device identifier, the device identifier and access operations initiated ; received may be other embodiment, the present invention is not restricted herein. 其中,访问操作可以为读操作、写操作或格式化操作等。 Among them, access operations can read, write or format operation.

[0090]步骤205,调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0090] Step 205, the driver calls the second preset in the mobile storage device to verify the access operation is a safe operation.

[0091]第二驱动程序用于验证发起访问操作的程序是否安全,进而验证访问操作是否为安全操作。 [0091] The second driver for initiating the access operation to verify whether the security procedures, and further verify if the operation is safe access operation.

[0092]在移动存储设备的终端服务器中预先设置有第二安全程序名单,用于对发起操作访问的程序进行验证。 [0092] In terminal server in advance in the mobile storage device is provided with a second list of security procedures for initiating a program to verify the operation of access. 具体地,第二程序名单可以是白名单,默认白名单中的程序为安全程序,若发起访问操作的程序命中白名单,则说明所述程序为安全程序;也可以是黑名单,默认黑名单中的程序为危险程序,若发起访问操作的程序命中黑名单,则说明所述程序为危险程序。 In particular, the list of the second program may be white list, whitelist default procedure for the safety program, if the program hit whitelist initiated access operation, then the program is a safety program; black list may also be the default blacklist the program is dangerous programs, if the initiator access operation hit the blacklist, then the procedure is dangerous programs. 还可以是其他验证方法,本发明在此不做限制。 May also be other authentication methods, the present invention is not restricted herein.

[0093]当访问操作由用户终端内的某个程序触发时,可以在接收对所述移动存储设备的访问操作后,从终端服务器中获取第二安全程序名单,并且判断发起所述访问操作的程序是否属于第二安全程序名单,此时第二访问名单为白名单,若属于,则判定发起所述访问操作的程序为安全程序,所述访问操作为安全操作。 [0093] When the access operation is triggered by a program in the user terminal may acquire the second security program from the list after receiving the terminal server access operation to the mobile storage device, and initiating the access operation is determined a second security program whether the program list, then the second access list is a whitelist, if belongs to, it is determined that the initiator of the access operation for the safety program, the access operation is a safe operation. 其中,第一安全驱动的第一安全程序名单不同于第二安全驱动的第二安全程序名单,例如程序名称不同、程序分类不同、程序来源不同(例如外网下载、用户终端原始程序等)、程序大小不同和其他不同,本发明在此不做限制。 Wherein the first driving safety program list is different from the first security program for the second list of second secure safe driving, for example, different program name, program classification different, different program sources (e.g., external network to download, the user terminal of the original program and the like), of different sizes and various other procedures, the present invention is not restricted herein. 使用两个安全驱动分别对访问操作进行验证,进一步保证了移动存储设备的安全。 Two drives are used to access secure verify operation, to further ensure the safety of mobile storage devices.

[0094]在具体操作中,触发访问请求的方式可以为用户针对文件夹发起的、某个程序根据设备标识发起的或其他适用方式。 [0094] In the specific operation, triggering access request may be initiated by the user for a folder, a program initiated in accordance with device ID or other applicable way. 若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作,即不调用第二安全驱动对所述访问操作进行安全验证;若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作,例如判断发起所述访问操作的程序是否在第二安全程序名单中,若在,则验证成功,之后再调用第一安全驱动验证所述访问操作是否安全。 If the access operation is triggered by a user through the file folder, the verification operation is a safe operation of the access, i.e. the safety driving without calling the second access operation for secure authentication; if the access operation of a program in accordance with the initiating a device identifier, verify whether the access operation is a safe operation, for example, the initiator determines whether the access operation at a second security program list, if the, authentication is successful, then the first call and then verify the safety drive access operation is safe.

[0095]步骤206,调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0095] Step 206, after the first call preset safe driving the mobile storage device for security verification of the access operation, and the authentication is successful, according to the access operation accessing the mobile storage device.

[0096]在具体操作中,触发访问操作的方式可以为用户针对文件夹发起的、某个程序根据设备标识发起的或其他适用方式。 [0096] In the specific operation, trigger access operations can be initiated by the user for a folder, a program initiated in accordance with device ID or other applicable way. 若所述访问操作由用户通过文件夹触发,则放行所述访问操作,即不调用第一安全驱动对所述访问操作进行安全验证;若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作,例如判断发起所述访问操作的程序是否在第一安全程序名单中,若在,则验证成功。 If the access operation by the user is triggered by file folder, then release the access operation, i.e., does not call the first access operation of the safety drive for secure authentication; if the access operation is initiated by a program according to the device identifier , verify whether the access operation is a safe operation, for example, the initiator determines whether the access operation of the first safety program list, if the, authentication is successful.

[0097]移动存储设备内置有主控芯片,主控芯片设置有一个或多个访问控制接口,可以通过访问所述设备标识对应的移动存储设备的访问控制接口,与其他设备进行数据传输,将所述访问操作发送至所述移动存储设备;进一步主控芯片可以依据访问操作对数据进行处理,通过访问控制接口将处理后的数据反馈至与其连接的用户终端。 [0097] The removable storage device built master chip, the master chip is provided with one or more access control interface, the control interface can access indicator corresponding to the mobile device accesses the storage device through data transmission with other devices, the the access operation to the mobile storage device; master chip may further process the data according to the access operation, the data is fed back to the process interface by the access control user terminals connected thereto.

[0098]依据本发明实施例,由于不展示对接入用户终端的移动存储设备配置的设备标识,无法通过识别设备标识及相关操作直接访移动存储设备,需要进一步调用预置在移动存储设备的第一安全驱动对访问操作进行验证,并且验证成功后,才允许根据所述访问操作访问所述移动存储设备,从而保证了移动存储设备的安全,避免了病毒入侵和信息泄密等问题。 [0098] According to an embodiment of the present invention, since the device does not display an identification of a mobile user terminal access storage device configuration, can not directly access the storage devices via the mobile device identifier identifying and related operations, the need for further pre-call in the mobile storage device a first driving safety access authentication operation, and after successful authentication, access is permitted according to the access operation to the mobile storage device, so as to ensure the safety of mobile storage devices, to avoid the leakage of information viruses and other issues.

[0099]参照图3,示出了根据本发明实施例1的移动存储设备访问装置的结构框图,具体可以包括如下模块: [0099] Referring to Figure 3, a block diagram illustrating a mobile storage access apparatus configuration example of an embodiment of the present invention, may include the following modules:

[0100]设备标识取消模块301,用于对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示。 [0100] device identification module 301 is canceled, for a mobile storage device configured to access user terminal device identifier and canceling the display device in the operating system identifier associated with the access position of a user terminal.

[0101 ]访问操作接收模块302,用于接收对所述移动存储设备的访问操作。 [0101] access operation receiving module 302, configured to receive an access operation to the mobile storage device.

[0102]安全验证模块303,用于调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0102] security authentication module 303, after the first call preset for safety drive of the mobile storage device for security verification of the access operation, and the authentication is successful, according to the access operation accessing the mobile storage device .

[0103]依据本发明实施例,由于不展示对接入用户终端的移动存储设备配置的设备标识,无法通过识别设备标识及相关操作直接访移动存储设备,需要进一步调用预置在移动存储设备的第一安全驱动对访问操作进行验证,并且验证成功后,才允许根据所述访问操作访问所述移动存储设备,从而保证了移动存储设备的安全,避免了病毒入侵和信息泄密等问题。 [0103] According to an embodiment of the present invention, since the device does not display an identification of a mobile user terminal access storage device configuration, can not directly access the storage devices via the mobile device identifier identifying and related operations, the need for further pre-call in the mobile storage device a first driving safety access authentication operation, and after successful authentication, access is permitted according to the access operation to the mobile storage device, so as to ensure the safety of mobile storage devices, to avoid the leakage of information viruses and other issues.

[0104]参照图4,示出了根据本发明实施例2的移动存储设备访问装置的结构框图,具体可以包括如下模块: [0104] Referring to Figure 4, a block diagram illustrating the structure of a mobile storage access apparatus according to Embodiment 2 of the present invention, may include the following modules:

[0105]管理界面生成模块401,用于在所述接收用户对所述移动存储设备的访问操作之前,生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框。 [0105] Management interface generation module 401, for receiving a user access prior to the operation of the mobile storage device, generating a mobile storage device management interface, and present the device identified in the management interface and the corresponding login box.

[0106] 登录信息验证模块402,用于对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0106] login authentication information module 402 is configured to authenticate a user login login information input box, and determined that the verification is successful.

[0107]设备标识取消模块403,用于对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示。 [0107] cancellation device identification module 403 for configuring the device identification of the mobile user terminal access storage devices, and canceling the display device in the operating system identifier associated with the access position of a user terminal.

[0108]访问操作接收模块404,用于接收对所述移动存储设备的访问操作。 [0108] access operation receiving module 404, configured to receive an access operation to the mobile storage device.

[0109]第二驱动程序调用模块405,用于在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0109] The second module 405 calls the driver, in the call for a first preset safe driving before the removable storage device security verification of the access operation, in the pre-call mobile storage device the second driver verification of the access operation is a safe operation.

[0110]安全验证模块406,用于调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0110] security authentication module 406, after the first call preset for safety drive of the mobile storage device for security verification of the access operation, and the authentication is successful, according to the access operation accessing the mobile storage device .

[0111]本发明实施例中,优选地,所述移动存储设备采用NTFS新技术文件系统。 [0111] Example embodiments of the present invention, preferably, the mobile storage device using NTFS New Technology File System.

[0112]本发明实施例中,优选地,所述设备标识取消模块403,具体用于修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 [0112] embodiment of the present invention, preferably, the device identification module 403 is canceled, the registry settings associated with a particular operating system to modify the user terminal is not a mobile display access storage device.

[0113]本发明实施例中,优选地,所述装置还包括: [0113] Example embodiments of the present invention, preferably, the apparatus further comprising:

[0114]属性设置操作接收模块,用于接收在所述管理界面中对所述移动存储设备的属性设置操作。 [0114] attribute setting operation receiving module for receiving the management interface provided to the mobile storage device attribute operation.

[0115]本发明实施例中,优选地,所述访问操作接收模块404包括: [0115] Example embodiments of the present invention, preferably, the access operation receiving module 404 comprises:

[0116]文件夹生成子模块,用于生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; [0116] folder generating sub-module, for generating the removable storage device corresponding to the folder, receiving user access operations initiated for the folder;

[0117]或,访问操作获得子模块,用于接收某个程序根据所述设备标识发起的访问操作。 [0117] or, the access operation to obtain sub-module, for receiving a program initiated by an access operation according to the device identifier.

[0118]本发明实施例中,优选地,所述安全验证模块406包括: [0118] embodiment, preferably, the embodiment of security authentication module 406 of the present invention comprises:

[0119]安全操作确定子模块,用于若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; [0119] safe operation determination sub-module, configured to, if the access operation is triggered by the user folder, to verify the access operation safe operation;

[0120]安全操作验证子模块,用于若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 [0120] safe operation verification sub-module, configured to, if the apparatus identifier according to the access operation initiated by a program, verify whether the access operation for the safe operation.

[0121]本发明实施例中,优选地,所述装置还包括: [0121] Example embodiments of the present invention, preferably, the apparatus further comprising:

[0122]设备标识关联模块,用于在所述对接入的移动存储设备配置设备标识之后,将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 [0122] device identifier associating module, configured to, after the access storage device configuration of the mobile device identifier identifying the mobile device and the first storage device for driving security association.

[0123]本发明实施例中,优选地,所述安全验证模块406,具体用于通过访问所述设备标识对应的移动存储设备的访问控制接口,将所述访问操作发送至所述移动存储设备。 [0123] Example embodiments, preferably, the security verification module 406 of the present invention, particularly for controlling the access interface for accessing the device corresponding to the identifier by the mobile storage device, transmitting the access operation to the mobile storage device .

[0124]本发明实施例中,优选地,所述访问操作为对所述移动存储设备的读操作、写操作或格式化操作。 [0124] Example embodiments of the present invention, preferably, the access operation is a read operation to the mobile storage device, write or format operation.

[0125]依据本发明实施例,由于不展示对接入用户终端的移动存储设备配置的设备标识,无法通过识别设备标识及相关操作直接访移动存储设备,需要进一步调用预置在移动存储设备的第一安全驱动对访问操作进行验证,并且验证成功后,才允许根据所述访问操作访问所述移动存储设备,从而保证了移动存储设备的安全,避免了病毒入侵和信息泄密等问题。 [0125] According to an embodiment of the present invention, since the device does not display an identification of a mobile user terminal access storage device configuration, can not directly access the storage devices via the mobile device identifier identifying and related operations, the need for further pre-call in the mobile storage device a first driving safety access authentication operation, and after successful authentication, access is permitted according to the access operation to the mobile storage device, so as to ensure the safety of mobile storage devices, to avoid the leakage of information viruses and other issues.

[0126]对于上述基于地理位置的来电管理装置实施例而言,由于其与方法实施例基本相似,所以描述的比较简单,相关之处参见方法实施例的部分说明即可。 [0126] For the above-described location-based call manager apparatus of the embodiment, since the method of the embodiment which is substantially similar, the description is relatively simple, see Example RELATED place portion can be described.

[0127]本说明书中的各个实施例均采用递进的方式描述,每个实施例重点说明的都是与其他实施例的不同之处,各个实施例之间相同相似的部分互相参见即可。 [0127] In the present specification, various embodiments are described in a progressive way, differences from the embodiment and the other embodiments each of which emphasizes embodiment, the same portions similar between the various embodiments refer to each other.

[0128]本领域技术人员易于想到的是:上述各个实施例的任意组合应用都是可行的,故上述各个实施例之间的任意组合都是本发明的实施方案,但是由于篇幅限制,本说明书在此就不一一详述了。 [0128] readily occur to those skilled in the art it is: Application of any combination of the various embodiments described above are possible, so each of the above in any combination between the embodiments are embodiments of the present invention, but because of space limitations, the present specification this is not reproduced here.

[0129]在此提供的基于地理位置的来电管理方案不与任何特定计算机、虚拟系统或者其它设备固有相关。 [0129] location-based call management program are not, the virtual system, or other apparatus provided herein inherently related to any particular computer. 各种通用系统也可以与基于在此的示教一起使用。 Various general-purpose systems may also be used with the teachings herein based. 根据上面的描述,构造具有本发明方案的系统所要求的结构是显而易见的。 According to the above description, according to the present embodiment having the system configuration of the claimed invention will be apparent structure. 此外,本发明也不针对任何特定编程语言。 Further, the present invention is not to any particular programming language. 应当明白,可以利用各种编程语言实现在此描述的本发明的内容,并且上面对特定语言所做的描述是为了披露本发明的最佳实施方式。 It should be appreciated that a variety of programming languages ​​may be utilized to achieve the present invention described herein, the above description and specific language is made to the disclosure of preferred embodiments of the present invention.

[0130]在此处所提供的说明书中,说明了大量具体细节。 [0130] In the description provided herein, numerous specific details are described. 然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下实践。 However, it can be understood that the embodiments of the present invention may be practiced without these specific details. 在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。 In some examples, not shown in detail in well-known methods, structures and techniques, so as not to obscure the understanding of this description.

[0131]类似地,应当理解,为了精简本公开并帮助理解各个发明方面中的一个或多个,在上面对本发明的示例性实施例的描述中,本发明的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。 [0131] Similarly, it should be understood that the purpose of streamlining the disclosure and aiding in the understanding of one or more of the various inventive aspects in the description of exemplary embodiments of the present invention, various features of the invention are sometimes grouped into a single together embodiment, FIG, or the description thereof. 然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本发明要求比在每个权利要求中所明确记载的特征更多的特征。 However, the methods disclosed herein should not be interpreted as reflecting an intention: that the claimed invention requires more features than in each of the claims expressly recited. 更确切地说,如权利要求书所反映的那样,发明方面在于少于前面公开的单个实施例的所有特征。 More specifically, as reflected in the book as claimed in claim, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. 因此,遵循具体实施方式的权利要求书由此明确地并入该具体实施方式,其中每个权利要求本身都作为本发明的单独实施例。 Thus, the claims following the specific embodiments are hereby incorporated into this Detailed Description explicitly, with each claim itself as a separate embodiment of the present invention.

[0132]本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。 [0132] Those skilled in the art can understand may be made to change adaptively embodiment device module and provided them with one or more devices different from this embodiment of the. 可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。 The embodiments may be modules or units into one module or component or components or units, and in addition they can be divided into a plurality of sub-modules or sub-units or sub-assemblies. 除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。 Any method other than such features and / or process, or at least some of the units are mutually exclusive, any combination of the present specification (including the accompanying claims, abstract and drawings) All of the features disclosed in, or disclosed herein and such All process units or equipment combination. 除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。 Unless expressly stated otherwise, each feature of the present specification (including the accompanying claims, abstract and drawings) may be provided by the same disclosed, characterized equivalents or similar purpose may be substituted.

[0133]此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本发明的范围之内并且形成不同的实施例。 [0133] Moreover, those skilled in the art will appreciate that although in some embodiments described herein include some features included in other embodiments, rather than other features, combinations of features of different embodiments are meant in the present within the scope of the invention and form different embodiments. 例如,在权利要求书中,所要求保护的实施例的任意之一都可以以任意的组合方式来使用。 For example, in any combination can be used in the manner of any one of claims embodiment, as claimed.

[0134]本发明的各个部件实施例可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。 Example [0134] The various components of the present invention may be implemented in hardware, or as software modules running on one or more processors, or in a combination thereof. 本领域的技术人员应当理解,可以在实践中使用微处理器或者数字信号处理器(DSP)来实现根据本发明实施例的移动存储设备访问方案中的一些或者全部部件的一些或者全部功能。 Those skilled in the art will appreciate that a microprocessor may be used or a digital signal processor (DSP) to implement in practice, in accordance with some or all of the functions of the mobile storage device access scheme embodiment of the present invention, some or all of the components. 本发明还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。 The present invention may also be implemented as a part or all of the device or apparatus programs for performing the methods described herein (e.g., computer programs and computer program products). 这样的实现本发明的程序可以存储在计算机可读介质上,或者可以具有一个或者多个信号的形式。 Such a program implementing the present invention may be stored on a computer-readable medium, or may have the form of one or more signals. 这样的信号可以从因特网网站上下载得到,或者在载体信号上提供,或者以任何其他形式提供。 Such signals can be downloaded from the Internet website, or provided on a carrier signal, or in any other form.

[0135] 应该注意的是上述实施例对本发明进行说明而不是对本发明进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施例。 [0135] It should be noted that the embodiments of the present invention, the above-described embodiments illustrate rather than limit the invention, and those skilled in the art without departing from the scope of the appended claims may be devised alternative embodiments. 在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。 In the claims, should not be limited by any reference signs located claimed configured to claims between parentheses. 单词“包含”不排除存在未列在权利要求中的元件或步骤。 The word "comprising" does not exclude the presence of elements or steps not listed in the appended claims. 位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。 Preceding an element of the word "a" or "an" does not exclude the presence of a plurality of such elements. 本发明可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。 The present invention by means of hardware comprising several distinct elements, and by means of a suitably programmed computer implemented. 在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。 Unit claims enumerating several means, several of these means may be embodied by the same item of hardware. 单词第一、第二、以及第三等的使用不表示任何顺序。 Word of the first, second, and third, etc. does not denote any order. 可将这些单词解释为名称。 These words can be interpreted as names.

[0136]本发明公开了A1、一种移动存储设备访问方法,其中,包括: [0136] The present invention discloses A1, a mobile storage access method, comprising:

[0137]对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; [0137] a mobile user terminal to the access storage device configuration device identifier, and canceling the display device in the operating system identifier associated with the access position of a user terminal;

[0138]接收对所述移动存储设备的访问操作; [0138] receiving access operation to the mobile storage device;

[0139]调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0139] After the first call to the preset safety driving the mobile storage device for security verification of the access operation, and the authentication is successful, the mobile access storage device according to the access operation.

[0140] A2、根据A1所述的方法,其中,所述移动存储设备采用NTFS新技术文件系统。 [0140] A2, The method of claim A1, wherein the mobile storage device using NTFS New Technology File System.

[0141] A3、根据A1所述的方法,其中,所述取消所述设备标识在所接入的用户终端的操作系统的展示包括: [0141] A3, A1 The method of claim, wherein the device identification cancel the display in the operating system accesses the user terminal comprising:

[0142]修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 [0142] registry settings associated with an operating system user to modify the access terminal is not showing a mobile storage device.

[0143] A4、根据A1所述的方法,其中,在所述接收用户对所述移动存储设备的访问操作之前,所述方法还包括: [0143] A4, A1 according to the method, wherein, before the receiving user access operation to the mobile storage device, the method further comprising:

[0144]生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框; [0144] generation mobile storage device management interface, and present the device identifier and the corresponding log block in said management interface;

[0145]对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0145] user login information in the login box, input validation, verification and determine success.

[0146] A5、根据A4所述的方法,其中,所述方法还包括: [0146] A5, method according to A4, wherein the method further comprises:

[0147]接收在所述管理界面中对所述移动存储设备的属性设置操作。 [0147] receiving property of the mobile device operated in the storage management interface.

[0148] A6、根据A1所述的方法,其中,所述接收对所述移动存储设备的访问操作包括: [0148] A6, The method of claim A1, wherein the receiving operation of the mobile access storage device comprising:

[0149]生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; [0149] The removable storage device to generate the corresponding folder, the folder for receiving a user-initiated access operation;

[0150]或,接收某个程序根据所述设备标识发起的访问操作。 [0150] or, receives a program initiated access operation according to the device identification.

[0151] A7、根据A6所述的方法,其中,所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证包括: [0151] A7, method according to A6, wherein said preset in the first call of the mobile storage device of the safety drive of the access security validation operation comprising:

[0152]若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; [0152] When the access operation is triggered by a user through a folder, then the access authentication operation for the safe operation;

[0153]若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 [0153] When the access operation is initiated by a program according to the device identifier, the access operation to verify whether the security operation.

[0154] A8、根据A1所述的方法,其中,在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,所述方法还包括: [0154] A8, The method of claim A1, wherein the preset prior to the invocation of the security verification of safety driving a first access operation of the mobile storage device, the method further comprising:

[0155]调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0155] In the second pre-driver calls the mobile storage device to verify the access operation is a safe operation.

[0156] A9、根据A1所述的方法,其中,在所述对接入的移动存储设备配置设备标识之后,所述方法还包括: [0156] A9, The method of claim A1, wherein, after said access storage device configuration of the mobile device identifier, the method further comprising:

[0157]将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 [0157] The mobile device identifier of the first storage device and the drive for security association.

[0158] A10、根据A1所述的方法,其中,所述根据所述访问操作访问所述移动存储设备包括: [0158] A10, The method of claim A1, wherein said accessing according to the access operation to the mobile storage device comprises:

[0159]通过访问所述设备标识对应的移动存储设备的访问控制接口,将所述访问操作发送至所述移动存储设备。 [0159] access control interface to access the device corresponding to the identifier by the mobile storage device, the storage of the mobile device to the access operation.

[0160] All、根据A1所述的方法,其中,所述访问操作为对所述移动存储设备的读操作、写操作或格式化操作。 [0160] All, The method of claim A1, wherein the access operation is a read operation of the mobile storage device, write or format operation.

[0161]本发明还公开了B12、一种移动存储设备访问装置,其中,包括: [0161] The present invention also discloses B12, a mobile storage access device, comprising:

[0162]设备标识取消模块,用于对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; [0162] cancellation device identification module configured to configure the user equipment identifier to the access terminal, a mobile storage device, and to cancel the display device in the operating system identifier associated with the access position of a user terminal;

[0163]访问操作接收模块,用于接收对所述移动存储设备的访问操作; [0163] access operation receiving module, for receiving said removable storage device access operation;

[0164]安全验证模块,用于调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 [0164] security authentication module for calling the preset safety after the first mobile storage device to drive the security verification of the access operation, and the authentication is successful, according to the access operation accessing the mobile storage device.

[0165] B13、根据B12所述的装置,其中,所述移动存储设备采用NTFS新技术文件系统。 [0165] B13, B12, according to the apparatus, wherein the mobile storage device using NTFS New Technology File System.

[0166] B14、根据B12所述的装置,其中: [0166] B14, B12 of the apparatus, wherein:

[0167]所述设备标识取消模块,具体用于修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 The [0167] device identification cancellation module is configured to modify the operating system registry of the user terminal related to the setting item does not exhibit mobile access storage device.

[0168] B15、根据B12所述的装置,其中,所述装置还包括: [0168] B15, B12, according to the apparatus, wherein said apparatus further comprises:

[0169]管理界面生成模块,用于在所述接收用户对所述移动存储设备的访问操作之前,生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框; Login [0169] Management interface generating means for receiving a user access prior to the operation of the mobile storage device, generating a mobile storage device management interface, and the display apparatus and the corresponding identification in said management interface frame;

[0170]登录信息验证模块,用于对用户在登录框中输入的登录信息进行验证,并确定验证成功。 [0170] login authentication module configured to authenticate the user logged in login information input box, and determined that the verification is successful.

[0171] B16、根据B15所述的装置,其中,所述装置还包括: [0171] B16, B15 apparatus according to claim, wherein said apparatus further comprises:

[0172]属性设置操作接收模块,用于接收在所述管理界面中对所述移动存储设备的属性设置操作。 [0172] attribute setting operation receiving module for receiving the management interface provided to the mobile storage device attribute operation.

[0173] B17、根据B12所述的装置,其中,所述访问操作接收模块包括: [0173] B17, B12, according to the apparatus, wherein the access operation receiving module comprises:

[0174]文件夹生成子模块,用于生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; [0174] folder generating sub-module, for generating the removable storage device corresponding to the folder, receiving user access operations initiated for the folder;

[0175]或,访问操作获得子模块,用于接收某个程序根据所述设备标识发起的访问操作。 [0175] or, the access operation to obtain sub-module, for receiving a program initiated by an access operation according to the device identifier.

[0176] B18、根据B17所述的装置,其中,所述安全验证模块包括: [0176] B18, B17 of the apparatus, wherein the security authentication module comprising:

[0177]安全操作确定子模块,用于若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; [0177] safe operation determination sub-module, configured to, if the access operation is triggered by the user folder, to verify the access operation safe operation;

[0178]安全操作验证子模块,用于若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 [0178] safe operation verification sub-module, configured to, if the apparatus identifier according to the access operation initiated by a program, verify whether the access operation for the safe operation.

[0179] B19、根据B12所述的装置,其中,所述装置还包括: [0179] B19, B12, according to the apparatus, wherein said apparatus further comprises:

[0180]第二驱动程序调用模块,用于在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 [0180] The second driver calling means for calling the preset prior to the first movement of the safety drive storage device for security verification of the access operation, the first mobile call preset in the storage device two drivers to verify that the access operation is a safe operation.

[0181] B20、根据B12所述的装置,其中,所述装置还包括: [0181] B20, B12, according to the apparatus, wherein said apparatus further comprises:

[0182]设备标识关联模块,用于在所述对接入的移动存储设备配置设备标识之后,将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 [0182] device identifier associating module, configured to, after the access storage device configuration of the mobile device identifier identifying the mobile device and the first storage device for driving security association.

[0183] B21、根据B12所述的装置,其中: [0183] B21, B12 of the apparatus, wherein:

[0184]所述安全验证模块,具体用于通过访问所述设备标识对应的移动存储设备的访问控制接口,将所述访问操作发送至所述移动存储设备。 [0184] The security authentication module is used to control access to the device interface for accessing the removable storage device corresponding to the identifier by, the access operation to the mobile storage device.

[0185] B22、根据B12所述的装置,其中,所述访问操作为对所述移动存储设备的读操作、写操作或格式化操作。 [0185] B22, B12, according to the apparatus, wherein the access operation is a read operation to the mobile storage device, write or format operation.

Claims (10)

1.一种移动存储设备访问方法,其中,包括: 对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; 接收对所述移动存储设备的访问操作; 调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 A mobile storage access method, comprising: a user terminal access storage device configuration of the mobile device identifier, and canceling the display device in the operating system identifier associated with the access position of a user terminal; receiving the mobile access operation of the memory device; call preset security verification of the access operation of the first driving safety of the mobile storage device, and after the verification is successful, the mobile access storage device according to the access operation.
2.根据权利要求1所述的方法,其中,所述移动存储设备采用NTFS新技术文件系统。 The method according to claim 1, wherein the mobile storage device using NTFS New Technology File System.
3.根据权利要求1所述的方法,其中,所述取消所述设备标识在所接入的用户终端的操作系统的展示包括: 修改所述用户终端的操作系统的注册表的关联设置项为不展示接入的移动存储设备。 3. The method according to claim 1, wherein said operating system to cancel the display device identifies the accessed user terminal comprising: a user terminal modifying the operating system registry settings associated to does not exhibit mobile access storage device.
4.根据权利要求1所述的方法,其中,在所述接收用户对所述移动存储设备的访问操作之前,所述方法还包括: 生成移动存储设备的管理界面,并在所述管理界面中展示所述设备标识以及对应的登录框; 对用户在登录框中输入的登录信息进行验证,并确定验证成功。 4. The method according to claim 1, wherein before the receiving user access operation to the mobile storage device, the method further comprising: generating a mobile storage device management interface and the management interface display device identifier and the corresponding log block; login user login information input box to verify and determine the authentication is successful.
5.根据权利要求4所述的方法,其中,所述方法还包括: 接收在所述管理界面中对所述移动存储设备的属性设置操作。 The method according to claim 4, wherein said method further comprises: receiving attributes of the mobile storage device is provided in the operation management interface.
6.根据权利要求1所述的方法,其中,所述接收对所述移动存储设备的访问操作包括: 生成所述移动存储设备对应的文件夹,接收用户针对所述文件夹发起的访问操作; 或,接收某个程序根据所述设备标识发起的访问操作。 6. The method according to claim 1, wherein the receiving access operation to the mobile storage device comprises: generating the mobile storage device corresponding to the folder, receiving user access operations initiated for the folder; or, receiving a program initiated access operation according to the device identification.
7.根据权利要求6所述的方法,其中,所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证包括: 若所述访问操作由用户通过文件夹触发,则验证所述访问操作为安全操作; 若所述访问操作由某个程序根据所述设备标识发起,则验证所述访问操作是否为安全操作。 The method according to claim 6, wherein said preset security verification comprising calling said access operation to secure the first removable storage drive: if the access operation is triggered by the user folder then verifying the access operation for the safe operation; if the device identifier according to the access operation initiated by a program, verify whether the access operation for the safe operation.
8.根据权利要求1所述的方法,其中,在所述调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证之前,所述方法还包括: 调用预置在所述移动存储设备的第二驱动程序验证所述访问操作是否为安全操作。 8. The method of claim 1, wherein, prior to calling the preset security verification of the access operation of the first safety driving of the mobile storage device, the method further comprising: calling the preset the mobile storage device of the second driver to verify whether the access operation safe operation.
9.根据权利要求1所述的方法,其中,在所述对接入的移动存储设备配置设备标识之后,所述方法还包括: 将所述移动存储设备的设备标识与所述第一安全驱动进行关联。 9. The method according to claim 1, wherein, after the access to a storage device configuration of the mobile device identifier, the method further comprises the: the mobile device identifier of the first storage device with the secure driver associate.
10.一种移动存储设备访冋装置,其中,包括: 设备标识取消模块,用于对接入用户终端的移动存储设备配置设备标识,并取消所述设备标识在所接入的用户终端的操作系统关联位置的展示; 访问操作接收模块,用于接收对所述移动存储设备的访问操作; 安全验证模块,用于调用预置在所述移动存储设备的第一安全驱动对所述访问操作进行安全验证,并在验证成功后,根据所述访问操作访问所述移动存储设备。 10. A mobile storage device access Jiong device, comprising: a cancel device identification module configured to configure the user equipment identifier to the access terminal, a mobile storage device, the device identifies and cancels the operation in the user terminal accesses the display system associated locations; access operation receiving module, for receiving said removable storage device access operation; security authentication module, configured to perform the call access operation preset in a safety driving said first mobile storage device after the security authentication, and the authentication is successful, according to the access operation accessing the mobile storage device.
CN 201510998032 2015-12-25 2015-12-25 Mobile storage equipment access method and device CN105488436A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 201510998032 CN105488436A (en) 2015-12-25 2015-12-25 Mobile storage equipment access method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 201510998032 CN105488436A (en) 2015-12-25 2015-12-25 Mobile storage equipment access method and device

Publications (1)

Publication Number Publication Date
CN105488436A true true CN105488436A (en) 2016-04-13

Family

ID=55675408

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 201510998032 CN105488436A (en) 2015-12-25 2015-12-25 Mobile storage equipment access method and device

Country Status (1)

Country Link
CN (1) CN105488436A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106101129A (en) * 2016-07-06 2016-11-09 北京元心科技有限公司 Storage device and method and system for protecting safety of data therethrough

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1661573A (en) * 2004-02-24 2005-08-31 深圳市朗科科技有限公司 Method for managing notations of disks of mobile storage device
CN1866225A (en) * 2005-05-20 2006-11-22 联想(北京)有限公司 Mapping method for mobile memory device
CN101350034A (en) * 2008-09-10 2009-01-21 普天信息技术研究院有限公司 Mobile memory apparatus and method for visiting file
CN102495986A (en) * 2011-12-15 2012-06-13 上海中标凌巧软件科技有限公司 Calling control method for avoiding embezzlement of enciphered data in computer system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1661573A (en) * 2004-02-24 2005-08-31 深圳市朗科科技有限公司 Method for managing notations of disks of mobile storage device
CN1866225A (en) * 2005-05-20 2006-11-22 联想(北京)有限公司 Mapping method for mobile memory device
CN101350034A (en) * 2008-09-10 2009-01-21 普天信息技术研究院有限公司 Mobile memory apparatus and method for visiting file
CN102495986A (en) * 2011-12-15 2012-06-13 上海中标凌巧软件科技有限公司 Calling control method for avoiding embezzlement of enciphered data in computer system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
周峰: "基于虚拟卷技术的安全U盘研究与实现", 《中国优秀硕士学位论文全文数据库信息科技辑》 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106101129A (en) * 2016-07-06 2016-11-09 北京元心科技有限公司 Storage device and method and system for protecting safety of data therethrough

Similar Documents

Publication Publication Date Title
Jeon et al. Dr. Android and Mr. Hide: fine-grained permissions in android applications
US8200962B1 (en) Web browser extensions
US20130086684A1 (en) Contextual virtual machines for application quarantine and assessment method and system
US9300660B1 (en) Providing authorization and authentication in a cloud for a user of a storage array
US8239918B1 (en) Application marketplace administrative controls
US20060294105A1 (en) Method and system for enabling enterprises to use detachable memory devices that contain data and executable files in controlled and secure way
US8544072B1 (en) Single sign-on service
US20130347070A1 (en) System and method for embedding first party widgets in third-party applications
US20130185764A1 (en) File system access for one or more sandboxed applications
CN103617382A (en) Privacy protection method and device
CN101960446A (en) Secure browser-based applications
US20130067600A1 (en) Selective file access for applications
US20130124843A1 (en) Secure boot administration in a unified extensible firmware interface (uefi)-compliant computing device
US20100211802A1 (en) Storage Volume Protection Supporting Legacy Systems
US9183383B1 (en) System and method of limiting the operation of trusted applications in presence of suspicious programs
US8601579B2 (en) System and method for preserving references in sandboxes
CN103631617A (en) Method and device for unloading system application on terminal equipment
US9483644B1 (en) Methods for detecting file altering malware in VM based analysis
CN104376273A (en) Data access control method and device
US8301715B2 (en) Host device and method for accessing a virtual file in a storage device by bypassing a cache in the host device
CN103036871A (en) Support device and method of application plug-in of browser
US20140359098A1 (en) Dynamic registration of an application with an enterprise system
CN104021017A (en) Starting item processing method and device
Apvrille Symbian worm Yxes: Towards mobile botnets?
US20150249617A1 (en) Enrolling a mobile device with an enterprise mobile device management environment

Legal Events

Date Code Title Description
C06 Publication
C10 Entry into substantive examination