CN106096420A - The method and apparatus of embedded device clean boot - Google Patents
The method and apparatus of embedded device clean boot Download PDFInfo
- Publication number
- CN106096420A CN106096420A CN201610423928.XA CN201610423928A CN106096420A CN 106096420 A CN106096420 A CN 106096420A CN 201610423928 A CN201610423928 A CN 201610423928A CN 106096420 A CN106096420 A CN 106096420A
- Authority
- CN
- China
- Prior art keywords
- module
- embedded device
- booted
- digital signature
- application module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/03—Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
- G06F2221/033—Test or assess software
Abstract
The present invention discloses a kind of method of embedded device clean boot: S1, electrically activates and store the embedded device being booted up module and application module;It is booted up module described in S2, operation and the digital signature of described application module is verified;It is verified, performs S3, otherwise, perform S4;S3, load and run described application module, the described digital signature being booted up module is verified;It is verified, continues to run with described application module properly functioning to order about described embedded device, otherwise, perform S4;S4, to order about described embedded device out of service.Further, further relate to the device of a kind of embedded device clean boot, comprising: electric switch unit, be used for electrically activating described embedded device and according to the result described embedded device the most out of service;Memory element, is booted up module and application module for storage;First authentication unit, is used for performing above-mentioned S2;Second authentication unit, is used for performing above-mentioned S3.
Description
Technical field
The present invention relates to computer realm, a kind of method particularly relating to embedded device clean boot, and application should
The device of the embedded device clean boot of method.
Background technology
Along with developing rapidly of electronic technology, application-centered embedded system has had in all trades and professions widely should
With, such as consumer electronics, telecommunications, health care, measurement and instrument etc..
Along with the extensive application of embedded equipment, embedded device also faces more security threat.Software is illegally distorted
It is running on unauthorized embedded device with software and has been increasingly becoming the two kinds of normal method threatening embedded device safety.
In prior art, a kind of mode is based on hardware chip support, using globally unique chip keys as verification bar
Part, but this technology depends on chip, and range of application is restricted, and relatively costly;Another way is by embedded system
System is divided into BOOT to start code and APP application code, utilizes BOOT to start code and tests the legitimacy of APP application code
Card, but if there is BOOT to start the situation that code is distorted by unauthorized user, this authentication rule None-identified, form safety
Leak.
Summary of the invention
It is an object of the invention to as overcoming the deficiencies in the prior art, it is provided that a kind of low cost, security performance are high, can be to BOOT
The method that startup code and APP application code are mutually authenticated, and use the device of the method.
For reaching above technical purpose, the technical solution used in the present invention is as follows:
A kind of method of embedded device clean boot:
S1: electrically activate and store the embedded device being booted up module and application module;
S2: be booted up module described in operation and the digital signature of described application module is verified;It is verified,
Perform S3, otherwise, perform S4;
S3: load and run described application module, verifies the described digital signature being booted up module;Checking
Pass through, continue to run with described application module properly functioning to order about described embedded device, otherwise, perform S4;
S4: order about described embedded device out of service.
Specifically, be booted up described in the digital signature of module derive from the legal code segment being booted up module and
PKI is obtained after carrying out computing and being encrypted by private key.The digital signature of described application module derives from legal application mould
The code segment of block, data segment and the described digital signature being booted up module are obtained after carrying out computing and being encrypted by private key.
Preferably, the digital signature of the digital signature or described application module that are booted up module described in utilizes HASH function
After computing, encryption obtains.
Further, in S2, described in be booted up module application modules digital signature proof procedure particularly as follows:
S21: code segment, data segment and the described digital signature being booted up module of current application module is carried out computing
Obtain the first operation values;
S22: the digital signature of described application module is decrypted and obtains the first decrypted value;
S23: described first operation values and the first decrypted value are compared, comparison success, perform described S3, otherwise, hold
The described S4 of row.
Further, in S3, described application module to be booted up module digital signature proof procedure particularly as follows:
S31: transport being currently booted up the code segment of module, PKI and the described digital signature being booted up module
Calculation obtains the second operation values;
S32: the described digital signature being booted up module is decrypted and obtains the second decrypted value;
S33: described second operation values and the second decrypted value are compared, contrast successfully, described current application module continues
Reforwarding row is properly functioning to order about described embedded device, otherwise, performs described S4.
Preferably, described first operation values or the second operation values utilize HASH functional operation to obtain.
A kind of device of embedded device clean boot, comprising:
Electric switch unit, is used for electrically activating described embedded device and controlling described embedded device according to the result
Continue to run with or out of service;
Memory element, is booted up module and application module for storage;
First authentication unit, is booted up module and the number to described application module described in running after electrically activating
Word signature is verified;It is verified, runs following second authentication unit, otherwise, order about described electric switch unit out of service
Described embedded device;
Second authentication unit, is used for loading and run described application module, to the described numeral label being booted up module
Name is verified;It is verified, continues to run with described application module properly functioning to order about described embedded device, otherwise, drive
Make described electric switch unit described embedded device out of service.
Specifically, also include digital signature generation module, for by the legal code segment being booted up module and
PKI is booted up the digital signature of module described in generating after carrying out computing and being encrypted by private key, and/or by legal
The code segment of application module, data segment and the described digital signature being booted up module carry out computing and encrypted by private key
The digital signature of the described application module of rear generation.
Preferably, encrypt after described digital signature generation module utilizes HASH functional operation and be booted up module described in obtaining
Digital signature and/or the digital signature of described application module.
Further, described first authentication unit includes:
First computing module, for code segment, data segment and the described number being booted up module to current application module
Word signature carries out computing and obtains the first operation values;
First deciphering module, obtains the first decrypted value for being decrypted the digital signature of described application module;
First comparing module, for described first operation values and the first decrypted value are compared, comparison success, runs institute
State the second authentication unit, otherwise, order about described electric switch unit described embedded device out of service.
Further, described second authentication unit includes:
Second computing module, for being currently booted up the code segment of module, PKI and the described module that is booted up
Digital signature carries out computing and obtains the second operation values;
Second deciphering module, obtains the second decrypted value for being decrypted the described digital signature being booted up module;
Second comparing module, for described second operation values and the second decrypted value being compared, contrast successfully, described ought
It is properly functioning that front application module continues to run with to order about described embedded device, otherwise, orders about described electric switch unit and stops fortune
The described embedded device of row.
Preferably, described first computing module utilizes HASH functional operation to obtain the first operation values, or described second computing
Module utilizes HASH functional operation to obtain the second operation values.
Compared with prior art, the present invention has the advantage that
(1) method and apparatus of the embedded device clean boot of the present invention, uses digital signature identification system, has relatively
High security, it is difficult to cracked by the unauthorized user that there is no private key;
(2) method and apparatus of the embedded device clean boot of the present invention, uses and is booted up module and application module
Bi-directional authentication, has higher clean boot.
(3) method and apparatus of the embedded device clean boot of the present invention, it is based on software computing, it is not necessary to corresponding
Hardware supported, more flexible in application, use cost is lower.
Accompanying drawing explanation
For the technical scheme being illustrated more clearly that in the embodiment of the present invention, in embodiment being described below required for make
Accompanying drawing briefly introduce, it should be apparent that, below describe in accompanying drawing be only some embodiments of the present invention, for this
From the point of view of the those of ordinary skill in field, on the premise of not paying creative work, it is also possible to obtain it according to these accompanying drawings
His accompanying drawing.
Fig. 1 is the schematic flow sheet of the method for embedded device clean boot of the present invention.
Fig. 2 be embedded device clean boot of the present invention method and apparatus in be booted up the group of module and application module
Knit structural representation.
Fig. 3 be embedded device clean boot of the present invention method in be booted up the digital signature of module application modules
Checking schematic flow sheet.
Fig. 4 be embedded device clean boot of the present invention method in the application module digital signature to being booted up module
Checking schematic flow sheet.
Fig. 5 is the device organizational structure schematic diagram of embedded device clean boot of the present invention.
Detailed description of the invention
In order to make the object, technical solutions and advantages of the present invention clearer, below in conjunction with accompanying drawing the present invention made into
One step ground describes in detail, it is clear that described embodiment is only a part of embodiment of the present invention rather than whole enforcement
Example.Based on the embodiment in the present invention, those of ordinary skill in the art are obtained under not making creative work premise
All other embodiments, broadly fall into the scope of protection of the invention.
Below in conjunction with the drawings and specific embodiments, the present invention is described in further detail.
With reference to Fig. 1, the method for the embedded device clean boot of the present invention comprises the following steps:
S1, electrically activate embedded device;
Embedded device is mainly made up of flush bonding processor, associated support hardware and embedded software, and it collects software and hardware
In one, and can work independently.Embedded device has the features such as facility is flexible, the ratio of performance to price is high, embeddability is strong, permissible
It is embedded in existing any information household appliances and industrial control system;Embedded software therein has not alterability, system institute
Need that configuration requirement is relatively low, system is professional and the feature such as real-time is stronger.
Described embedded software generally include the module relevant to hardware configuration and with implement this embedded device merit
The module that can be correlated with, the described module relevant to function is usually application module (or referred to as application software, application code, APP).
In prior art, first described embedded device can run one in startup before properly functioning be booted up module, is used for
Initialize the setting of some hardware or software, in order to subsequent load also runs described application module.
For ensure described embedded device start safety, the present invention by described be mutually related be booted up module and
Application module at this embedded device after electrically activating, properly functioning before carry out security verification.Described electrically activating refers to
The hardware of this embedded device starts in the case of connecting with external power source.
With reference to Fig. 2, described in be booted up modules A by BOOT code segment A1, BOOT data segment A2, BOOTBSS section A3, PKI
(public key) A4 and BOOT digital signature (boot-sign) A5 forms.It is right that wherein said BOOT digital signature A5 derives from
The legal code segment being booted up module and PKI are obtained after carrying out HASH computing and being encrypted by private key.
Described application module B is by APP code segment B1, APP data segment B2, APP BSS section B3 and APP digital signature (app-
Sign) B4 composition.Wherein said APP digital signature B4 derives from the code segment to legal application module, data segment and described
BOOT digital signature A5 is obtained after carrying out HASH computing and being encrypted by private key.
It is booted up modules A described in S2, operation and the digital signature of current application module B is verified;
Digital signature technology is to be encrypted with the private key of sender by the summary info specified, and sends reception together with original text to
Person.Recipient only could decipher encrypted summary info with the private key of sender, then former to receive with HASH function
Literary composition produces a summary info, with the summary info contrast of deciphering.If identical, then illustrate that the information received is complete,
Not being modified in transmitting procedure, otherwise descriptive information is modified, and therefore digital signature is able to verify that the integrity of information.
Referring to figs. 2 and 3, specifically, described in be booted up modules A testing the digital signature of current application module B
Card process particularly as follows:
S21: APP code segment B1, APP data segment B2 and BOOT digital signature A5 to current application module B carry out HASH
Computing obtains the first operation values O1;
S22: described APP digital signature B4 is decrypted by described private key and obtains the first decrypted value D1;
S23: described first operation values O1 and the first decrypted value D1 are compared;
Contrast described here, is simply interpreted as that the first operation values O1 described in comparison and the first decrypted value D1 are the most consistent,
It can be appreciated that whether the ratio between described first operation values O1 and the first decrypted value D1 is default value.
If described first operation values O1 and the first decrypted value D1 comparison success, illustrate that current application module B is legal,
The content of this application module B is not illegally distorted, or this application module B is by the mandate operation of this embedded device,
Therefore following S3 is continued executing with;Otherwise, following S4 is performed.
S3, load and run described application module B, the current digital signature being booted up modules A is verified;
After described application module B is by the checking of above-mentioned steps, described in be booted up modules A just to application mould this described
Block B loads so that this application module B can run in this embedded device.
With reference to Fig. 2 and Fig. 4, further, it is booted up modules A described in and also needs to the numeral to current application module B
The carrying out of signature is verified, detailed process is:
S31: BOOT code segment A1, PKI A4 and BOOT digital signature A5 being currently booted up modules A is carried out HASH
Computing obtains the second operation values O2;
S32: described BOOT digital signature A5 is decrypted by described private key and obtains the second decrypted value D2;
S33: described second operation values O2 and the second decrypted value D2 are compared;
The implication that literary composition is caught up with in comparison described here is identical.If described second operation values O2 and the second decrypted value D2 comparison become
Merit, illustrates that the current modules A that is booted up is legal, and this content being booted up modules A is not illegally distorted, or should
Being booted up modules A to be run by this embedded device mandate, the most described current application module B will continue to run with to order about
Described embedded device is properly functioning;Otherwise, following S4 is performed.
S4: order about described embedded device out of service.
As it has been described above, no matter be booted up, described, the mistake that the digital signature of described application module B is verified by modules A
Cheng Zhong, or described in be booted up during the digital signature of described application module B verified by modules A, as long as wherein
The comparison of one-time authentication process is unsuccessful, and this embedded device is all by out of service, to ensure the safety of this embedded device.
Selectively, this embedded device is being set in default condition after the failure of previous round safety verification further
Under rerun described in be booted up modules A, then carry out the safety verification process of a new round, in order to get rid of last round of safety verification
In contingent mistake.Described default condition can be re-energised and electrically activate after, can be in "on" position
Under after the predetermined time out of service, or other technologies means that those skilled in the art commonly use.
Further, the step corresponding to method of above-mentioned embedded device clean boot can by corresponding functional unit by
One realizes, and the device of multiple described functional unit composition embedded device clean boot, and described functional unit can be integrated
In a processing module, it is also possible to be that each is individually physically present, it is also possible to be two or more functional units
It is integrated in one or more processing module.The device of described embedded device clean boot preferably employs software form and realizes,
But when it uses example, in hardware to realize also without departing substantially from the design principle of the present invention.Dress when described embedded device clean boot
When putting realization in a software form and sell as independent product or use, it is also possible to be stored in a computer-readable
In the storage medium taken.
With reference to Fig. 1 and Fig. 5, as a example by the device of the embedded device clean boot of described software form, this is embedded sets
The device of standby clean boot includes:
Electric switch unit 1, is used for electrically activating described embedded device and controls described embedded set according to the result
For continuing to run with or out of service.
Memory element 4, be used for storing described in be booted up modules A and application module B;According to embedded device and software thereof
Feature, described memory element 4 generally using flash memory as its hardware supported, with persistently store described embedded software and other
Information, when this embedded device will not wipe content therein when rebooting startup.
First authentication unit 2, is booted up modules A and to described application module B described in running after electrically activating
Digital signature verify;It is verified, runs following second authentication unit 3, otherwise, order about described electric switch unit 1 and stop
Only run described embedded device.
Specifically, described first authentication unit 2 includes: the first computing module 21, for reading from described memory element 4
The described information being booted up modules A and application module B, and APP code segment B1, APP data segment to current application module B
B2 and described BOOT digital signature A5 carry out HASH computing and obtain described first operation values O1;First deciphering module 22, for from
Described memory element 4 reads described APP digital signature B4, and this APP digital signature B4 is solved by described private key
Close obtain described first decrypted value D1;First comparing module 23, for entering described first operation values O1 and the first decrypted value D1
Row comparison, comparison success, runs described second authentication unit 3, otherwise, orders about described electric switch unit 1 out of service described embedding
Enter formula equipment.
Second authentication unit 3, is used for loading and run described application module B, to the described numeral being booted up modules A
Signature is verified;It is verified, continues to run with described application module B properly functioning to order about described embedded device, otherwise,
Order about described electric switch unit 1 described embedded device out of service.
Specifically, described second authentication unit 3 includes: the second computing module 31, for reading from described memory element 4
The described information being booted up modules A and application module B, and to being currently booted up the BOOT code segment A1 of modules A, PKI
Carry out HASH computing with described BOOT digital signature A5 and obtain described second operation values O2;Second deciphering module 32, for from institute
State and memory element 4 reads described BOOT digital signature A5, and this BOOT digital signature A5 is decrypted by private key
To the second decrypted value D2;Second comparing module 33 is for described second operation values D2 and the second decrypted value O2 being compared, right
Comparing successfully, it is properly functioning that described current application module B continues to run with to order about described embedded device, otherwise, orders about described electricity
Switch element 1 described embedded device out of service.
Preferably, the device of this embedded device clean boot can also include digital signature generation module, is used for generating
The described digital signature being booted up module, and/or generate the digital signature of described application module.Those skilled in the art pass through
Routine techniques means are booted up the digital signature of module and the digital signature of described application module by public affairs described in being obtained
Know mode to import in this embedded device safety starting device to use the essence also without departing substantially from the present invention.
In sum, the method and apparatus of embedded device clean boot of the present invention is installed and use cost is low, safety
Can be high, it is more suitable for extensively applying.
Above-described embodiment is the present invention preferably embodiment, but is not merely restricted to the described embodiments, other
The change made under any spirit without departing from the present invention and principle, modify, substitute, combine, simplify, all should be equivalence
Substitute mode, within being all contained in protection scope of the present invention.
The present invention is with reference to method, equipment (system) and the flow process of computer program according to embodiments of the present invention
Figure and/or block diagram describe.It should be understood that can the most first-class by computer program instructions flowchart and/or block diagram
Flow process in journey and/or square frame and flow chart and/or block diagram and/or the combination of square frame.These computer programs can be provided
Instruction arrives the processor of general purpose computer, special-purpose computer, Embedded Processor or other programmable data processing device to produce
A raw machine so that the instruction performed by the processor of computer or other programmable data processing device is produced for real
The device of the function specified in one flow process of flow chart or multiple flow process and/or one square frame of block diagram or multiple square frame now.
These computer program instructions may be alternatively stored in and computer or other programmable data processing device can be guided with spy
Determine in the computer-readable memory that mode works so that the instruction being stored in this computer-readable memory produces and includes referring to
Make the manufacture of device, this command device realize at one flow process of flow chart or multiple flow process and/or one square frame of block diagram or
The function specified in multiple square frames.
These computer program instructions also can be loaded in computer or other programmable data processing device so that at meter
Perform sequence of operations step on calculation machine or other programmable devices to produce computer implemented process, thus at computer or
The instruction performed on other programmable devices provides for realizing at one flow process of flow chart or multiple flow process and/or block diagram one
The step of the function specified in individual square frame or multiple square frame.
Although preferred embodiments of the present invention have been described, but those skilled in the art once know basic creation
Property concept, then can make other change and amendment to these embodiments.So, claims are intended to be construed to include excellent
Select embodiment and fall into all changes and the amendment of the scope of the invention.
Obviously, those skilled in the art can carry out various change and the modification essence without deviating from the present invention to the present invention
God and scope.So, if these amendments of the present invention and modification belong to the scope of the claims in the present invention and equivalent technologies thereof
Within, then the present invention is also intended to comprise these change and modification.
Claims (13)
1. the method for an embedded device clean boot, it is characterised in that:
S1: electrically activate and store the embedded device being booted up module and application module;
S2: be booted up module described in operation and the digital signature of described application module is verified;It is verified, performs
S3, otherwise, performs S4;
S3: load and run described application module, verifies the described digital signature being booted up module;Checking is logical
Cross, continue to run with described application module properly functioning to order about described embedded device, otherwise, perform S4;
S4: order about described embedded device out of service.
2. the method for embedded device clean boot as claimed in claim 1, it is characterised in that be booted up module described in:
Digital signature derives from and obtains after the legal code segment being booted up module and PKI are carried out computing and encrypted by private key
Arrive.
3. the method for embedded device clean boot as claimed in claim 2, it is characterised in that: the numeral of described application module
Signature derives from the code segment to legal application module, data segment and the described digital signature being booted up module and carries out computing
And obtain after being encrypted by private key.
4. the method for embedded device clean boot as claimed in claim 2 or claim 3, it is characterised in that be booted up mould described in:
The digital signature of block or the digital signature of described application module are encrypted after utilizing HASH functional operation and are obtained.
5. the method for embedded device clean boot as claimed in claim 3, it is characterised in that in S2, described in be booted up
The proof procedure of the digital signature of module application modules particularly as follows:
S21: code segment, data segment and the described digital signature being booted up module of current application module is carried out computing and obtain
First operation values;
S22: the digital signature of described application module is decrypted and obtains the first decrypted value;
S23: described first operation values and the first decrypted value are compared, comparison success, perform described S3, otherwise, perform institute
State S4.
6. the method for embedded device clean boot as claimed in claim 5, it is characterised in that in S3, described application module
To be booted up module digital signature proof procedure particularly as follows:
S31: carry out computing obtain being currently booted up the code segment of module, PKI and the described digital signature being booted up module
To the second operation values;
S32: the described digital signature being booted up module is decrypted and obtains the second decrypted value;
S33: described second operation values and the second decrypted value are compared, contrast successfully, described current application module continues fortune
Row is properly functioning to order about described embedded device, otherwise, performs described S4.
7. the method for the embedded device clean boot as described in claim 5 or 6, it is characterised in that: described first operation values
Or second operation values utilize HASH functional operation to obtain.
8. the device of an embedded device clean boot, it is characterised in that comprising:
Electric switch unit, is used for electrically activating described embedded device and controlling described embedded device according to the result continuing
Run or out of service;
Memory element, is booted up module and application module for storage;
First authentication unit, is booted up module and the numeral label to described application module described in running after electrically activating
Name is verified;It is verified, runs following second authentication unit, otherwise, order about described electric switch unit out of service described
Embedded device;
Second authentication unit, is used for loading and run described application module, enters the described digital signature being booted up module
Row checking;It is verified, continues to run with described application module properly functioning to order about described embedded device, otherwise, order about institute
State electric switch unit described embedded device out of service.
9. the device of embedded device clean boot as claimed in claim 8, it is characterised in that: also include that digital signature generates
Module, for by generating after the legal code segment being booted up module and PKI are carried out computing and encrypted by private key
The described digital signature being booted up module, and/or by code segment, data segment and the described guiding to legal application module
The digital signature of startup module generates the digital signature of described application module after carrying out computing and being encrypted by private key.
10. the device of embedded device clean boot as claimed in claim 9, it is characterised in that: described digital signature generates
Module utilize HASH functional operation after encryption obtain described in be booted up digital signature and/or the number of described application module of module
Word is signed.
The device of 11. embedded device clean boot as claimed in claim 9, it is characterised in that described first authentication unit
Including:
First computing module, for the code segment of current application module, data segment and the described numeral label being booted up module
Name carries out computing and obtains the first operation values;
First deciphering module, obtains the first decrypted value for being decrypted the digital signature of described application module;
First comparing module, for described first operation values and the first decrypted value are compared, comparison success, runs described the
Two authentication units, otherwise, order about described electric switch unit described embedded device out of service.
The device of 12. embedded device clean boot as claimed in claim 11, it is characterised in that described second authentication unit
Including:
Second computing module, for being currently booted up the code segment of module, PKI and the described numeral being booted up module
Signature carries out computing and obtains the second operation values;
Second deciphering module, obtains the second decrypted value for being decrypted the described digital signature being booted up module;
Second comparing module, for described second operation values and the second decrypted value being compared, contrast successfully, described current answers
Continue to run with to order about described embedded device by module properly functioning, otherwise, order about described electric switch unit institute out of service
State embedded device.
The device of the 13. embedded device clean boot as described in claim 11 or 12, it is characterised in that: described first computing
Module utilizes HASH functional operation to obtain the first operation values, or described second computing module utilizes HASH functional operation to obtain second
Operation values.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610423928.XA CN106096420A (en) | 2016-06-15 | 2016-06-15 | The method and apparatus of embedded device clean boot |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610423928.XA CN106096420A (en) | 2016-06-15 | 2016-06-15 | The method and apparatus of embedded device clean boot |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106096420A true CN106096420A (en) | 2016-11-09 |
Family
ID=57846938
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610423928.XA Pending CN106096420A (en) | 2016-06-15 | 2016-06-15 | The method and apparatus of embedded device clean boot |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106096420A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107223322A (en) * | 2017-04-25 | 2017-09-29 | 深圳市汇顶科技股份有限公司 | The method, apparatus and system of signature verification |
| CN109814934A (en) * | 2019-01-31 | 2019-05-28 | 安谋科技(中国)有限公司 | Data processing method, device, readable medium and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101034991A (en) * | 2007-04-06 | 2007-09-12 | 中兴通讯股份有限公司 | Secure guiding system, method, code signature construction method and authentication method |
| CN104008342A (en) * | 2014-06-06 | 2014-08-27 | 山东超越数控电子有限公司 | Method for achieving safe and trusted authentication through BIOS and kernel |
| CN104200153A (en) * | 2014-09-12 | 2014-12-10 | 北京赛科世纪数码科技有限公司 | Start verification method and system |
| CN105227319A (en) * | 2015-10-23 | 2016-01-06 | 浪潮电子信息产业股份有限公司 | A kind of method of authentication server and device |
| CN105426750A (en) * | 2015-12-03 | 2016-03-23 | 致象尔微电子科技(上海)有限公司 | Startup method of embedded system, and embedded device |
-
2016
- 2016-06-15 CN CN201610423928.XA patent/CN106096420A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101034991A (en) * | 2007-04-06 | 2007-09-12 | 中兴通讯股份有限公司 | Secure guiding system, method, code signature construction method and authentication method |
| CN104008342A (en) * | 2014-06-06 | 2014-08-27 | 山东超越数控电子有限公司 | Method for achieving safe and trusted authentication through BIOS and kernel |
| CN104200153A (en) * | 2014-09-12 | 2014-12-10 | 北京赛科世纪数码科技有限公司 | Start verification method and system |
| CN105227319A (en) * | 2015-10-23 | 2016-01-06 | 浪潮电子信息产业股份有限公司 | A kind of method of authentication server and device |
| CN105426750A (en) * | 2015-12-03 | 2016-03-23 | 致象尔微电子科技(上海)有限公司 | Startup method of embedded system, and embedded device |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107223322A (en) * | 2017-04-25 | 2017-09-29 | 深圳市汇顶科技股份有限公司 | The method, apparatus and system of signature verification |
| CN107223322B (en) * | 2017-04-25 | 2020-07-24 | 深圳市汇顶科技股份有限公司 | Signature verification method, device and system |
| CN109814934A (en) * | 2019-01-31 | 2019-05-28 | 安谋科技(中国)有限公司 | Data processing method, device, readable medium and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102325738B1 (en) | Authentication method and blockchain-based authentication data processing method and device | |
| CN103269271B (en) | A kind of back up the method and system of private key in electronic signature token | |
| CN106156635A (en) | Method for starting terminal and device | |
| CN111931154B (en) | Service processing method, device and equipment based on digital certificate | |
| CN109714303A (en) | BIOS starts method and data processing method | |
| CN107220547B (en) | Terminal equipment and starting method thereof | |
| CN103220153B (en) | Cipher set-up method based on Quick Response Code and device, information system | |
| CN106302544A (en) | A kind of safe verification method and system | |
| CN110677376A (en) | Authentication method, related device and system and computer readable storage medium | |
| CN104618114B (en) | ID card information acquisition methods, apparatus and system | |
| CN104854597B (en) | Certificate server, Verification System and authentication method | |
| CN110290134A (en) | A kind of identity identifying method, device, storage medium and processor | |
| CN105426734B (en) | A kind of identity identifying method and device based on trust computing | |
| CN105320891B (en) | A kind of method and device of computer security loading system mirror image | |
| CN107301343A (en) | Secure data processing method, device and electronic equipment | |
| CN102456102A (en) | Method for carrying out identity recertification on particular operation of information system by using Usb key technology | |
| CN107944234A (en) | A kind of brush machine control method of Android device | |
| CN103746802B (en) | A kind of data processing method and mobile phone based on arranging key | |
| CN103592927A (en) | Method for binding product server and service function through license | |
| CN106096420A (en) | The method and apparatus of embedded device clean boot | |
| CN111125665A (en) | Authentication method and device | |
| CN103370713A (en) | Method for programming a mobile terminal chip | |
| CN103813333A (en) | Data processing method based on negotiation keys | |
| CN111600701B (en) | Private key storage method, device and storage medium based on blockchain | |
| CN104298908A (en) | Information processing method and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20180301 Address after: 510663 Guangzhou Science City, Guangdong Shenzhou Road, No. 10 Applicant after: Comba Telecom System (China) Co., Ltd. Applicant after: Comba Telecom Systems (Guangzhou) Co., Ltd. Applicant after: Jingxin Communication Technology (Guangzhou) Co., Ltd. Applicant after: TIANJIN COMBA TELECOM SYSTEMS CO., LTD. Address before: 510663 Guangdong city of Guangzhou Province Economic and Technological Development Zone Jinbi Road No. 6 Applicant before: Jingxin Communication Technology (Guangzhou) Co., Ltd. |
|
| TA01 | Transfer of patent application right | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20161109 |
|
| RJ01 | Rejection of invention patent application after publication |