CN106406939A - EMMC chip-based mobile terminal rollback prevention method and system - Google Patents
EMMC chip-based mobile terminal rollback prevention method and system Download PDFInfo
- Publication number
- CN106406939A CN106406939A CN201610801835.6A CN201610801835A CN106406939A CN 106406939 A CN106406939 A CN 106406939A CN 201610801835 A CN201610801835 A CN 201610801835A CN 106406939 A CN106406939 A CN 106406939A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- version information
- rpmb
- information
- total degree
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/70—Software maintenance or management
- G06F8/71—Version control; Configuration management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/575—Secure boot
Abstract
The invention discloses an EMMC chip-based mobile terminal rollback prevention method and system. The method comprises the steps of obtaining first version information stored in an RPMB physical partition of an EMMC chip when a mobile terminal is started, wherein the first version information includes version information of partitions; comparing the first version information with second version information run by the mobile terminal, wherein the second version information includes current version information of the partitions; and when the first version information is higher than the second version information, controlling the mobile terminal to stop starting. According to the method and the system, the version information of the partitions are stored in the RPMB physical partition of the EMMC chip, and the version information in the RPMB physical partitions serves as a basis for judging whether the version rolls back or not. On one hand, the rollback of the version is prevented; and on the other hand, the EMMC chip is necessary hardware of the mobile terminal, so that the application range of the rollback prevention method is expanded.
Description
Technical field
The present invention relates to technical field of mobile terminals, particularly to a kind of anti-rollback side of mobile terminal based on EMMC chip
Method and system.
Background technology
With scientific and technological development, smart mobile phone just obtains in worldwide and is increasingly widely applied.According to statistics, cut
Only to the end of the year 2015, global smart phone user alreadys exceed 1,900,000,000 it is contemplated that being up to 2,200,000,000 by 2016.With smart mobile phone
Widely use, and the progressively popularization of the application such as mobile-phone payment, smart mobile phone is just progressively from communication tool to personal information eventually
End change, incident how to ensure mobile phone and userspersonal information security the problems such as, just more and more consumed
Person and mobile phone production firm are of interest.
Generally, after mobile phone dispatches from the factory, if manufacturer is found that some great software issues, can be by way of upgrading
(As OTA)Cell phone software is upgraded, thus substitute the old edition in original mobile phone using the new version software of problem of having repaired
This software.However, problematic legacy version software is again brushed back by hacker or Malware possibly through some technological means
In mobile phone, thus stealing user profile using the known defect in these softwares or being engaged in some other unlawful activities.Anti-
rollback(Anti- rollback)The version information by comparison software for the technology, only allows highest version software to upgrade and operate in mobile phone
In, and do not allow lowest version software again to brush in the mobile phone after returning to upgrading and run, so as to effectively solve the above problems.
The popular Anti-rollback scheme of industry is to be used for preserving current phone system using efuse memory space at present
The version information of nucleus module/subregion in system, in start-up course using efuse in the version information that preserves soft with current operation
The version information of part is compared.But, this method has some shortcomings, because generally there being the electricity of fixing relatively low amount
Fuse can use, and exhaust once these and just cannot reoffer anti-rollback and protect.Therefore, once correct version information cannot be used
Update e-Fuse, then have the potentially possible of rollback attacks.Meanwhile, when chip for cell phone does not provide efuse or similar memory space
When, then cannot provide anti-rollback protection using the Anti-rollback scheme of efuse, thus limiting Anti-rollback
The scope of application of scheme.
Thus prior art could be improved and improves.
Content of the invention
The technical problem to be solved in the present invention is, for the deficiencies in the prior art, provide a kind of based on EMMC chip
The anti-rollback method of mobile terminal and system, by preserving to version information using RPMB Physical Extents, improve anti-rollback
The scope of application of method.
In order to solve above-mentioned technical problem, the technical solution adopted in the present invention is as follows:
A kind of anti-rollback method of the mobile terminal based on EMMC chip, it includes:
When mobile terminal starts, obtain the first version information preserving in the RPMB Physical Extents of EMMC chip, wherein, described
First version information includes the version information of each subregion;
The second edition information of described first version information and running of mobile terminal is compared, wherein, the described second edition
Information includes the current version information of each subregion;
When described first version information is higher than second edition information, then mobile terminal is controlled to stop starting.
The anti-rollback method of the described mobile terminal based on EMMC chip, wherein, described by described first version information and shifting
The second edition information of dynamic terminal operating is compared, and wherein, described second edition information includes the current version letter of each subregion
Also include before breath:
Read in described RPMB Physical Extents preserve its be written of the first total degree, wherein, described first total degree storage
In RPMB Physical Extents;
Reading RPMB Physical Extents are driven to be written of the second total degree by RPMB, and will be total with second for described first total degree
Number of times is compared;
When described first total degree is identical with the second total degree, execute described first version information and running of mobile terminal
The step that second edition information is compared.
The anti-rollback method of the described mobile terminal based on EMMC chip, wherein, methods described also includes:
When described first version information is not higher than second edition information, judge whether described first version information is equal to the second edition
This information;
If described first version information is not equal to second edition information, described second total degree added 1 obtain new second always secondary
Number;
The second new total degree and second edition information are write RPMB Physical Extents.
The anti-rollback method of the described mobile terminal based on EMMC chip, wherein, methods described also includes:
If described first version information is equal to second edition information, mobile terminal is controlled to start.
The anti-rollback method of the described mobile terminal based on EMMC chip, wherein, during the described startup when mobile terminal, obtains
The first version information preserving in the RPMB Physical Extents of EMMC chip, wherein, described first version information includes each subregion
Version information specifically includes:
When mobile terminal starts, Bootloader process accesses RPMB physics using the Key being burned onto in advance in EMMC chip
Subregion, reads the version information preserving in RPMB Physical Extents;Wherein, described key is used for mobile terminal EMMC chip
RPMB Physical Extents are written and read the unique mark operating.
A kind of anti-rollback system of the mobile terminal based on EMMC chip, it includes:
Acquisition module, for when mobile terminal starts, obtaining the first version preserving in the RPMB Physical Extents of EMMC chip
Information, wherein, described first version information includes the version information of each subregion;
Comparison module, for being compared the second edition information of described first version information and running of mobile terminal, wherein,
Described second edition information includes the current version information of each subregion;
Performing module, with when described first version information is higher than second edition information, then controlling mobile terminal to stop starting.
The anti-rollback system of the described mobile terminal based on EMMC chip, it also includes:
First read module, for read in described RPMB Physical Extents preserve its be written of the first total degree, wherein, institute
State the first total degree to be stored in RPMB Physical Extents;
Second read module, for driving reading RPMB Physical Extents to be written of the second total degree by RPMB, and will be described
First total degree is compared with the second total degree;
Control module, for when described first total degree is identical with the second total degree, execution by described first version information with
The step that the second edition information of running of mobile terminal is compared.
The anti-rollback system of the described mobile terminal based on EMMC chip, it also includes:
Judge module, for when described first version information is not higher than second edition information, judging described first version information
Whether it is equal to second edition information;
Computing module, for being not equal to second edition information when described first version information, described second total degree is added 1 and obtains
The second new total degree;
Writing module, for writing RPMB Physical Extents by the second new total degree and second edition information.
The anti-rollback system of the described mobile terminal based on EMMC chip, it also includes:
Control module, if being equal to second edition information for described first version information, controls mobile terminal to start.
The anti-rollback system of the described mobile terminal based on EMMC chip, wherein, described acquisition module specifically for:
When mobile terminal starts, RPMB is accessed using the Key being burned onto in advance in EMMC chip by Bootloader process
Physical Extents, read the version information preserving in RPMB Physical Extents;Wherein, described key is used for mobile terminal EMMC chip
RPMB Physical Extents be written and read operate unique mark.
Beneficial effect:Compared with prior art, the invention provides a kind of anti-rollback of mobile terminal based on EMMC chip
Method and system, methods described includes:When mobile terminal starts, obtain the preserving in the RPMB Physical Extents of EMMC chip
One version information, wherein, described first version information includes the version information of each subregion;By described first version information and movement
The second edition information of terminal operating is compared, and wherein, described second edition information includes the current version information of each subregion;
When described first version information is higher than second edition information, then mobile terminal is controlled to stop starting.The present invention passes through each point
The version information in area is stored in the RPMB Physical Extents of EMMC chip, and using the version information in RPMB Physical Extents as sentencing
The foundation of disconnected version whether rollback.So, on the one hand prevent the rollback of version;On the other hand, because EMMC chip is to move
Terminal must hardware, thus improve the scope of application of anti-rollback method.
Brief description
The flow chart that Fig. 1 is preferably implemented for the anti-rollback method of the mobile terminal based on EMMC chip that the present invention provides.
The reality that the version information of the anti-rollback method of the mobile terminal based on EMMC chip that Fig. 2 provides for the present invention compares
The flow chart applying example.
The flow chart that Fig. 3 is implemented for the anti-rollback method of the mobile terminal based on EMMC chip one that the present invention provides.
The structure principle chart of the anti-rollback system of the mobile terminal based on EMMC chip that Fig. 4 provides for the present invention.
Specific embodiment
The present invention provides a kind of anti-rollback method of mobile terminal based on EMMC chip and system, for making the mesh of the present invention
, technical scheme and effect clearer, clear and definite, the present invention is described in more detail for the embodiment that develops simultaneously referring to the drawings.
It should be appreciated that specific embodiment described herein, only in order to explain the present invention, is not intended to limit the present invention.
In the present invention, using such as " module ", " part " or " unit " for representing element suffix only for favourable
In the explanation of the present invention, itself does not have specific meaning.Therefore, module ", " part " or " unit " can mixedly make
With.
Terminal device can be implemented in a variety of manners.For example, the terminal described in the present invention can include such as moving
Phone, smart phone, notebook computer, digit broadcasting receiver, PDA (personal digital assistant), PAD (panel computer), PMP
The mobile terminal of (portable media player), guider etc. and such as numeral TV, desktop computer etc. consolidate
Determine terminal.However, it will be understood by those skilled in the art that, in addition to being used in particular for the element of mobile purpose, according to this
The construction of bright embodiment can also apply to the terminal of fixed type.
Below in conjunction with the accompanying drawings, by the description to embodiment, content of the invention is described further.
Refer to Fig. 1, the preferable enforcement of the anti-rollback method of the mobile terminal based on EMMC chip that Fig. 1 provides for the present invention
The flow chart of example.Methods described includes:
S100, when mobile terminal starts, obtain EMMC chip RPMB Physical Extents in preserve first version information, its
In, described first version information includes the version information of each subregion.
Specifically, described EMMC(Embedded MultiMedia Card)Set for referring to embedded type multimedia file storage
Standby, EMMC chip is the embedded storage standard specification ordered by MMC association, and EMMC chip is made up of 4 block Physical Extents:
USER DATA、BOOT1、BOOT2、RPMB(Replay Protected Memory Block).Wherein, RPMB subregion is system
Data storage one piece of special memory headroom is provided, this space must be authenticated using band and playback the mode of protection and be visited
Ask.PRMB requires, before carrying out data storage, to need the Key being used for packet authentication is burnt in EMMC.Described Key is
For the RPMB Physical Extents of mobile terminal EMMC chip are written and read with the unique mark operating.That is, when to RPMB
When Physical Extents are written and read, this key is write the RPMB Physical Extents of EMMC chip, so that mobile terminal obtains authorizing,
And the security related information file in read-write described RPMB Physical Extents, i.e. RPMB information.
In the present embodiment, described RPMB Physical Extents are only used for preserving version information by bootloader, not by other
Module is used for preserving other data, and that is, described RPMB information only has the version information of each subregion.Described bootloader is system
Bootstrap before startup, ran before operating system nucleus runs.In actual applications, described RPMB Physical Extents can be adopted
Preserve version information with the form of Frame, the structure of described Frame can be as follows:
Wherein, version for partition 1, version for partition 2 ..., version for
Partition n is the version information of each subregion;Write counter value is RPMB during this Frame of last update
write counter(RPMB writes total degree)Value;HMAC is then used for checking the completing property of whole Frame.
What described RPMB write counter preserved is the total degree to the successful write operation of RPMB, and its initial value is
0, every time successfully after write operation, described numerical value adds 1, and described numerical value can not be reset.In actual applications, described RPMB
The value of Write counter can drive the interface providing to read out by RPMB.
Further, because described RPMB Physical Extents only are used for preserving version information by bootloader, then moving
When terminal starts, obtain the version information in RPMB Physical Extents and be also only capable of obtaining version information by bootloader, thus
During the described startup when mobile terminal, obtain the first version information preserving in the RPMB Physical Extents of EMMC chip, wherein, described
The version information that first version information includes each subregion specifically includes:
S101, when mobile terminal starts, run Bootloader process;
Bootloader process described in S102 reads the version information preserving in RPMB Physical Extents, wherein, described first version
Information includes the version information of each subregion.
Specifically, when being written and read to RPMB Physical Extents, need this key writes the RPMB thing of EMMC chip
Reason subregion, so that mobile terminal obtains authorizing, then the security related information file in read-write described RPMB Physical Extents.Institute
State step S102 to specifically include:
The Key that S1021, described Bootloader process are passed through to be burned onto in EMMC chip in advance accesses RPMB Physical Extents, its
In, described key is used for the unique mark RPMB Physical Extents of mobile terminal EMMC chip being written and read operate;
S1022, verified in described RPMB using described key and preserve version information, and read RPMB physics after being proved to be successful and divide
The version information preserving in area, wherein, described first version information includes the version information of each subregion.
In the present embodiment, when described Key is that Bootloader starts for the first time, the RPMB for mobile terminal of generation
Access authentication unique mark, and described key is burned onto in EMMC.Described key has the uniqueness of mobile terminal, that is, not
Key with mobile terminal is different.And, described Key can not be obtained by the program outside bootloader, thus ensureing key
Security.
S200, the second edition information of described first version information and running of mobile terminal is compared, wherein, described
Second edition information includes the current version information of each subregion.
Specifically, described first version information refers to version number.Described second edition information refers to mobile terminal and opens
The version information of the current operation of each subregion when dynamic.The information of the corresponding version of each firmware of described mobile terminal is different, also
To say, each subregion version information of mobile terminal is different, thus described by described first version information and running of mobile terminal
Second edition information is compared, and wherein, the current version information that described second edition information includes each subregion is specially:By institute
State the version information of the RPMB Physical Extents difference each subregion of memory mobile terminal and the second edition information of each subregion of mobile terminal
It is compared, wherein, described second edition information includes the current version information of each subregion.
In the present embodiment, in order to improve the accuracy comparing further, read out from RPMB respectively in Bootloader
While the version information of subregion, also obtain the first total degree write counter value1 of RPMB Physical Extents memory storage
By write counter value1 value, value, verifies whether the version preserving in RPMB is tampered in advance, and in RPMB
The version preserving is not tampered with, and can be used for follow-up edition comparison;Otherwise equipment stops starting.Specifically, as shown in Fig. 2 institute
State and the second edition information of described first version information and running of mobile terminal is compared, wherein, described second edition letter
Also include before the current version information that breath includes each subregion:
S201, the Frame reading in RPMB Physical Extents, and guarantor in described RPMB Physical Extents is determined according to described Frame
Its deposited is written of the first total degree write counter value1;
S202, by RPMB drive read RPMB Physical Extents be written of the second total degree write counter value2;
S203 by described first total degree write counter value1 and the second total degree write counter
Value2 is compared;
S204, as described first total degree write counter value1 and the second total degree write counter value2
When identical, the second edition information of described first version information and running of mobile terminal is compared, wherein, the described second edition
This information includes the current version information of each subregion;
S205, as described first total degree write counter value1 and the second total degree write counter
When value12 differs, mobile terminal is controlled to stop starting.
Specifically, before being compared version information, first by the first total degree write of RPMB Physical Extents storage
Second total degree write counter value2 of counter value1 and RPMB Physical Extents self maintained is compared,
As long as could illustrate that when both are identical the version information of RPMB Physical Extents storage is not tampered with, carry out believing using version
Breath carries out judging whether rollback, further increases the Exact Travelling of anti-rollback.
S300, when described first version information be higher than the second edition information when, then control mobile terminal stop start.
Specifically, described first version information is higher than the version quilt that second edition information illustrates the system of running of mobile terminal
Rollback, there is security risk in mobile terminal, now control mobile terminal to stop starting, to ensure the security row of mobile terminal.
In another embodiment of the present invention, as shown in figure 3, methods described also includes:
S400, when described first version information be not higher than the second edition information when, judge whether described first version information is equal to
Second edition information;
If S500 described first version information is equal to second edition information, mobile terminal is controlled to start;
If S600 described first version information is not equal to second edition information, if described first version information is not equal to second
Version information, described second total degree is added 1 and obtains the second new total degree;And by the second new total degree and the second edition
Information writes RPMB Physical Extents.
Specifically, in described step S600, described first version information is not equal to second edition information, and hand is described
Machine has just lived through normal upgrading, and now, described second edition information is saved in RPMB by key authentication by bootloader
In, and the first total degree write counter value1 in Frame is updated to the second up-to-date at present total degree of RPMB
Write counter value2, mobile phone continuation afterwards starts.It is, by the first total degree write in Frame
Counter value adds 1.
Present invention also offers a kind of anti-rollback system of the mobile terminal based on EMMC chip, as shown in figure 4, it includes:
Acquisition module 100, for when mobile terminal starts, obtaining the first edition preserving in the RPMB Physical Extents of EMMC chip
This information, wherein, described first version information includes the version information of each subregion;
Comparison module 200, for the second edition information of described first version information and running of mobile terminal is compared, its
In, described second edition information includes the current version information of each subregion;
Performing module 300, with when described first version information is higher than second edition information, then controlling mobile terminal to stop opening
Dynamic.
The anti-rollback system of the described mobile terminal based on EMMC chip, wherein, described comparison module specifically for:
Described RPMB Physical Extents are distinguished the version information of each subregion of memory mobile terminal and the current of each subregion of mobile terminal
Version information is compared.
The anti-rollback system of the described mobile terminal based on EMMC chip, wherein, described comparison module specifically includes:
First processing units, for read in described RPMB Physical Extents preserve its be written of the first total degree, wherein, institute
State the first total degree to be stored in RPMB Physical Extents;
Second processing unit, for driving reading RPMB Physical Extents to be written of the second total degree by RPMB, and will be described
First total degree is compared with the second total degree;
Comparing unit, for when described first total degree is identical with the second total degree, by described first version information and movement
The second edition information of terminal operating is compared, and wherein, described second edition information includes the current version information of each subregion.
The anti-rollback method of the described mobile terminal based on EMMC chip, wherein, described acquisition module specifically includes:
Running unit, for when mobile terminal starts, running Bootloader process;
Reading unit, for controlling described Bootloader process to read the version information preserving in RPMB Physical Extents.
The anti-rollback system of the described mobile terminal based on EMMC chip, wherein, described reading unit specifically includes:
Access subelement, the Key being burned onto in EMMC chip in advance for controlling described Bootloader process to pass through accesses
RPMB Physical Extents, wherein, described key is used for being written and read operation only to the RPMB Physical Extents of mobile terminal EMMC chip
One mark;
Read subelement, preserve version information for verifying in described RPMB using described key, and read after being proved to be successful
The version information preserving in RPMB Physical Extents.
The modules of the anti-rollback system of the above-mentioned mobile terminal based on EMMC chip are in the above-mentioned methods specifically
Bright, just no longer state one by one here.
It should be understood that disclosed system and method in embodiment provided by the present invention, can pass through other
Mode is realized.For example, device embodiment described above is only schematically, for example, the division of described module, it is only
A kind of division of logic function, actual can have other dividing mode when realizing, for example multiple units or assembly can in conjunction with or
Person is desirably integrated into another system, or some features can be ignored, or does not execute.Another, shown or discussed is mutual
Between coupling or direct-coupling or communication connection can be by some interfaces, the INDIRECT COUPLING of device or unit or communication link
Connect, can be electrical, mechanical or other forms.
The described unit illustrating as separating component can be or may not be physically separate, show as unit
The part showing can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple
On NE.The mesh to realize this embodiment scheme for some or all of unit therein can be selected according to the actual needs
's.
In addition, can be integrated in a processing unit in each functional unit in each embodiment of the present invention it is also possible to
It is that unit is individually physically present it is also possible to two or more units are integrated in a unit.Above-mentioned integrated list
Unit both can be to be realized in the form of hardware, it would however also be possible to employ the form that hardware adds SFU software functional unit is realized.
The above-mentioned integrated unit realized in the form of SFU software functional unit, can be stored in an embodied on computer readable and deposit
In storage media.Above-mentioned SFU software functional unit is stored in a storage medium, including some instructions with so that a computer
Equipment (can be personal computer, server, or network equipment etc.) or processor (processor) execution the present invention each
The part steps of embodiment methods described.And aforesaid storage medium includes:USB flash disk, portable hard drive, read-only storage (Read-
Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disc or CD etc. various
Can be with the medium of store program codes.
Finally it should be noted that:Above example only in order to technical scheme to be described, is not intended to limit;Although
With reference to the foregoing embodiments the present invention is described in detail, it will be understood by those within the art that:It still may be used
To modify to the technical scheme described in foregoing embodiments, or equivalent is carried out to wherein some technical characteristics;
And these modification or replace, do not make appropriate technical solution essence depart from various embodiments of the present invention technical scheme spirit and
Scope.
Claims (10)
1. a kind of anti-rollback method of the mobile terminal based on EMMC chip is it is characterised in that it includes:
When mobile terminal starts, obtain the first version information preserving in the RPMB Physical Extents of EMMC chip, wherein, described
First version information includes the version information of each subregion;
The second edition information of described first version information and running of mobile terminal is compared, wherein, the described second edition
Information includes the current version information of each subregion;
When described first version information is higher than second edition information, then mobile terminal is controlled to stop starting.
2. according to claim 1 the anti-rollback method of the mobile terminal based on EMMC chip it is characterised in that described will be described
First version information is compared with the second edition information of running of mobile terminal, and wherein, described second edition information includes respectively
Also include before the current version information of subregion:
Read in described RPMB Physical Extents preserve its be written of the first total degree, wherein, described first total degree storage
In RPMB Physical Extents;
Reading RPMB Physical Extents are driven to be written of the second total degree by RPMB, and will be total with second for described first total degree
Number of times is compared;
When described first total degree is identical with the second total degree, execute described first version information and running of mobile terminal
The step that second edition information is compared.
3. according to claim 2 the anti-rollback method of the mobile terminal based on EMMC chip it is characterised in that methods described also
Including:
When described first version information is not higher than second edition information, judge whether described first version information is equal to the second edition
This information;
If described first version information is not equal to second edition information, described second total degree added 1 obtain new second always secondary
Number;
The second new total degree and second edition information are write RPMB Physical Extents.
4. according to claim 3 the anti-rollback method of the mobile terminal based on EMMC chip it is characterised in that methods described also
Including:
If described first version information is equal to second edition information, mobile terminal is controlled to start.
5. according to claim 1 the anti-rollback method of the mobile terminal based on EMMC chip it is characterised in that described when move
When terminal starts, obtain the first version information preserving in the RPMB Physical Extents of EMMC chip, wherein, described first version letter
The version information that breath includes each subregion specifically includes:
When mobile terminal starts, Bootloader process accesses RPMB physics using the Key being burned onto in advance in EMMC chip
Subregion, reads the version information preserving in RPMB Physical Extents;Wherein, described Key is used for mobile terminal EMMC chip
RPMB Physical Extents are written and read the unique mark operating.
6. a kind of anti-rollback system of the mobile terminal based on EMMC chip is it is characterised in that it includes:
Acquisition module, for when mobile terminal starts, obtaining the first version preserving in the RPMB Physical Extents of EMMC chip
Information, wherein, described first version information includes the version information of each subregion;
Comparison module, for being compared the second edition information of described first version information and running of mobile terminal, wherein,
Described second edition information includes the current version information of each subregion;
Performing module, with when described first version information is higher than second edition information, then controlling mobile terminal to stop starting.
7. according to claim 6 the anti-rollback system of the mobile terminal based on EMMC chip it is characterised in that it also includes:
First read module, for read in described RPMB Physical Extents preserve its be written of the first total degree, wherein, institute
State the first total degree to be stored in RPMB Physical Extents;
Second read module, for driving reading RPMB Physical Extents to be written of the second total degree by RPMB, and will be described
First total degree is compared with the second total degree;
Control module, for when described first total degree is identical with the second total degree, execution by described first version information with
The step that the second edition information of running of mobile terminal is compared.
8. according to claim 7 the anti-rollback system of the mobile terminal based on EMMC chip it is characterised in that it also includes:
Judge module, for when described first version information is not higher than second edition information, judging described first version information
Whether it is equal to second edition information;
Computing module, for being not equal to second edition information when described first version information, described second total degree is added 1 and obtains
The second new total degree;
Writing module, for writing RPMB Physical Extents by the second new total degree and second edition information.
9. according to claim 8 the anti-rollback system of the mobile terminal based on EMMC chip it is characterised in that it also includes:
Control module, if being equal to second edition information for described first version information, controls mobile terminal to start.
10. according to claim 6 the anti-rollback system of the mobile terminal based on EMMC chip it is characterised in that described acquisition
Module specifically for:
When mobile terminal starts, RPMB is accessed using the Key being burned onto in advance in EMMC chip by Bootloader process
Physical Extents, read the version information preserving in RPMB Physical Extents;Wherein, described Key is used for mobile terminal EMMC chip
RPMB Physical Extents be written and read operate unique mark.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610801835.6A CN106406939A (en) | 2016-09-05 | 2016-09-05 | EMMC chip-based mobile terminal rollback prevention method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610801835.6A CN106406939A (en) | 2016-09-05 | 2016-09-05 | EMMC chip-based mobile terminal rollback prevention method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106406939A true CN106406939A (en) | 2017-02-15 |
Family
ID=57998431
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610801835.6A Pending CN106406939A (en) | 2016-09-05 | 2016-09-05 | EMMC chip-based mobile terminal rollback prevention method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106406939A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108108631A (en) * | 2017-11-29 | 2018-06-01 | 晨星半导体股份有限公司 | A kind of root key processing method and relevant apparatus |
| CN108985049A (en) * | 2018-06-06 | 2018-12-11 | 晶晨半导体(上海)股份有限公司 | Anti- rollback method and system |
| CN109150534A (en) * | 2017-06-19 | 2019-01-04 | 华为技术有限公司 | terminal device and data processing method |
| CN109508534A (en) * | 2017-09-14 | 2019-03-22 | 厦门雅迅网络股份有限公司 | Prevent method, the embedded system attacked that degrade by software |
| WO2020118639A1 (en) * | 2018-12-13 | 2020-06-18 | 深圳市大疆软件科技有限公司 | Unmanned aerial vehicle and firmware upgrade method thereof |
| CN113486360A (en) * | 2021-07-14 | 2021-10-08 | 上海瓶钵信息科技有限公司 | RISC-V based safe starting method and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101763303A (en) * | 2008-12-25 | 2010-06-30 | 深圳富泰宏精密工业有限公司 | Software version verification system and method thereof |
| CN102105883A (en) * | 2008-06-23 | 2011-06-22 | Nxp股份有限公司 | Electronic device and method of software or firmware updating of an electronic device |
| CN104798040A (en) * | 2012-11-07 | 2015-07-22 | 高通股份有限公司 | Method for providing anti-rollback protection in device which has no internal non-volatile memory |
| CN104956374A (en) * | 2013-03-01 | 2015-09-30 | 意法爱立信有限公司 | A method for software anti-rollback recovery |
| CN105516300A (en) * | 2015-12-04 | 2016-04-20 | 上海斐讯数据通信技术有限公司 | Equipment version upgrading method and system |
-
2016
- 2016-09-05 CN CN201610801835.6A patent/CN106406939A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102105883A (en) * | 2008-06-23 | 2011-06-22 | Nxp股份有限公司 | Electronic device and method of software or firmware updating of an electronic device |
| CN101763303A (en) * | 2008-12-25 | 2010-06-30 | 深圳富泰宏精密工业有限公司 | Software version verification system and method thereof |
| CN104798040A (en) * | 2012-11-07 | 2015-07-22 | 高通股份有限公司 | Method for providing anti-rollback protection in device which has no internal non-volatile memory |
| CN104956374A (en) * | 2013-03-01 | 2015-09-30 | 意法爱立信有限公司 | A method for software anti-rollback recovery |
| CN105516300A (en) * | 2015-12-04 | 2016-04-20 | 上海斐讯数据通信技术有限公司 | Equipment version upgrading method and system |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109150534A (en) * | 2017-06-19 | 2019-01-04 | 华为技术有限公司 | terminal device and data processing method |
| CN109150534B (en) * | 2017-06-19 | 2021-10-01 | 华为技术有限公司 | Terminal device and data processing method |
| CN109508534A (en) * | 2017-09-14 | 2019-03-22 | 厦门雅迅网络股份有限公司 | Prevent method, the embedded system attacked that degrade by software |
| CN108108631A (en) * | 2017-11-29 | 2018-06-01 | 晨星半导体股份有限公司 | A kind of root key processing method and relevant apparatus |
| US11003781B2 (en) | 2017-11-29 | 2021-05-11 | Mediatek, Inc. | Root key processing method and associated device |
| CN108985049A (en) * | 2018-06-06 | 2018-12-11 | 晶晨半导体(上海)股份有限公司 | Anti- rollback method and system |
| WO2019233022A1 (en) * | 2018-06-06 | 2019-12-12 | 晶晨半导体(上海)股份有限公司 | Rollback prevention method and system |
| WO2020118639A1 (en) * | 2018-12-13 | 2020-06-18 | 深圳市大疆软件科技有限公司 | Unmanned aerial vehicle and firmware upgrade method thereof |
| CN111417926A (en) * | 2018-12-13 | 2020-07-14 | 深圳市大疆软件科技有限公司 | Unmanned aerial vehicle and firmware upgrading method thereof |
| CN113486360A (en) * | 2021-07-14 | 2021-10-08 | 上海瓶钵信息科技有限公司 | RISC-V based safe starting method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106406939A (en) | EMMC chip-based mobile terminal rollback prevention method and system | |
| CN109542518B (en) | Chip and method for starting chip | |
| EP3356986B1 (en) | Nand-based verified boot | |
| US9971895B2 (en) | Method and apparatus for supporting dynamic change of authentication means secure booting | |
| US20090193211A1 (en) | Software authentication for computer systems | |
| US20140250290A1 (en) | Method for Software Anti-Rollback Recovery | |
| US10437580B2 (en) | Software updating methods and systems | |
| US20050246701A1 (en) | Methods and systems for updating memory contents | |
| US11281454B2 (en) | Microcode update system | |
| CN104636171A (en) | Upgrading method and device and mobile device | |
| CN104298913A (en) | Universal safe intelligent terminal starting method | |
| EP1997083B1 (en) | Automatically configurable smart card and method of automatically configuring a smart card | |
| CN102298529A (en) | Providing silicon integrated code for a system | |
| CN108319520A (en) | Mobile device alternate operating system based on secure storage | |
| US9032540B2 (en) | Access system and method thereof | |
| CN114116305A (en) | BIOS firmware recovery method, system, terminal and storage medium based on PFR | |
| US8788800B2 (en) | OS processing method, system and non-transitory computer readable storage medium thereof | |
| CN101785239A (en) | Key based hidden partition system | |
| CN103455750B (en) | The high peace verification method of a kind of embedded device and device | |
| KR101575021B1 (en) | Mobile terminal for executing integrity verification and controll method thereof | |
| US8880826B2 (en) | System and method for write once read many (WORM) storage in an information handling system | |
| CN111857882B (en) | Extensible SSD card opening firmware loading method and device, computer equipment and storage medium | |
| CN117413267A (en) | Firmware policy enforcement via secure processor | |
| CN112650513B (en) | Program upgrading method, device, computer equipment and storage medium | |
| CN111258617A (en) | Electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170215 |
|
| RJ01 | Rejection of invention patent application after publication |