CN106650464A - Security detection method and terminal - Google Patents
Security detection method and terminal Download PDFInfo
- Publication number
- CN106650464A CN106650464A CN201611245906.5A CN201611245906A CN106650464A CN 106650464 A CN106650464 A CN 106650464A CN 201611245906 A CN201611245906 A CN 201611245906A CN 106650464 A CN106650464 A CN 106650464A
- Authority
- CN
- China
- Prior art keywords
- cpuid
- safety chip
- terminal
- stored
- sequence number
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Mathematical Physics (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a security detection method and a terminal. The method includes the steps that when the terminal is started, whether a serial number (CPUID) of a central processing unit is stored in a security chip or not, whether binding information of the CPUID and a security chip serial number is stored in an RPMB of an eMMC of the terminal or not, and whether a micro electrical solution eFuse of the CPU is burnt or not are judged; if no CPUID is stored in the security chip, no binding information of the CPUID and the security chip serial number is stored in the RPMB of the eMMC of the terminal, and no eFuse is burnt, it is determined that the security chip and the eMMC are abnormal. According to the method and the terminal, through start judgment, each time of replacement of terminal hardware can be detected, accuracy is enhanced, and the security of the terminal can be better protected. In addition, the method and the terminal can more accurately detect the situation that the security chip and the eMMC are abnormal at the same time.
Description
Technical field
The present invention relates to technical field of electronic equipment, more particularly to a kind of safety detection method and terminal.
Background technology
With the progressively popularization of smart mobile phone, increasing mobile phone safe event occurs.Mobile phone Primary Component CPU,
Terminal device is all saved in embedded multimedia card (Embedded Multi Media Card, eMMC), safety chip crucial
Information.Needs as preserved terminal device in safety chip authorize the encryption data that could be accessed, equivalent to terminal device can
Trust with once losing or maliciously being replaced, end-user listening data information will be abnormally dangerous.
The content of the invention
The invention provides a kind of safety detection method and terminal.
On the one hand, the invention provides a kind of method of safety detection, the method includes:
When starting up of terminal, sequence number (CPUID), the terminal of the central processing unit that judges whether to be stored with safety chip
EMMC playback protection memory block (Replay Protected Memory Block, RPMB) in whether be stored with CPUID with
The whether burning of the binding information of safety chip sequence number, the eFuse (eFuse) of CPU;
If do not store in safety chip that CPUID and safety chip sequence are not stored in CPUID, the RPMB of the eMMC of terminal
The binding information of row number, eFuse burnings, determine that safety chip and eMMC occur abnormal.
On the other hand, the invention provides a kind of terminal, the terminal includes:
Judging unit, for the CPUID that when starting up of terminal, judges whether to be stored with safety chip, the eMMC of terminal
Whether the eFuse whether burning of the binding information of CPUID and safety chip sequence number, CPU is had in RPMB;
Determining unit, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip
CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.
Method provided in an embodiment of the present invention and terminal, can judge whether deposited in safety chip when terminal is started shooting every time
Containing the binding information of whether be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number, eFuse is
No burning, rather than judged by switch control rule, it is to avoid the situation of error detection when turning off, enhance the protection work(of terminal
Can, can preferably protect the safety of terminal.In addition, the embodiment of the present invention more accurately detects safety chip and eMMC simultaneously
Occur abnormal.
Description of the drawings
In order to be illustrated more clearly that embodiment of the present invention technical scheme, below embodiment will be described needed for be used
Accompanying drawing is briefly described, it should be apparent that, drawings in the following description are some embodiments of the present invention, general for this area
For logical technical staff, on the premise of not paying creative work, can be with according to these other accompanying drawings of accompanying drawings acquisition.
Fig. 1 is a kind of schematic flow diagram of the method for safety detection provided in an embodiment of the present invention;
Fig. 2 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 3 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 4 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 5 is a kind of schematic flow diagram of the method for safety detection that further embodiment of this invention is provided;
Fig. 6 is a kind of schematic block diagram of terminal provided in an embodiment of the present invention;
Fig. 7 is a kind of terminal schematic block diagram that another embodiment of the present invention is provided;
Fig. 8 is a kind of terminal schematic block diagram that another embodiment of the present invention is provided;
Fig. 9 is a kind of terminal schematic block diagram that further embodiment of this invention is provided.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is a part of embodiment of the invention, rather than the embodiment of whole.Based on this
Embodiment in bright, the every other enforcement that those of ordinary skill in the art are obtained under the premise of creative work is not made
Example, belongs to the scope of protection of the invention.
It should be appreciated that when using in this specification and in the appended claims, term " including " and "comprising" are indicated
The presence of described feature, entirety, step, operation, element and/or component, but it is not precluded from one or more of the other feature, whole
The presence or addition of body, step, operation, element, component and/or its set.
It is also understood that referring in description of the invention and the term "and/or" used in appended claims related
Join any combinations of one or more in the item listed and be possible to combination, and including these combinations.
The eFuse of meeting burning CPU before dispatching from the factory after terminal device system test, eFuse is once programmed can not be more
Change, can not burning again, except the brand-new CPU of non-replaced.EMMC has multiple subregions, and RPMB is one of subregion, RPMB
Middle storage is to need to authorize the encryption data that could be accessed, because access needing key, it is possible to prevent undelegated visit
Ask.RPMB is the region that uniquely can not be at will rubbed off on eMMC, and CPUID is contained with peace in the designated storage area internal memory of RPMB
The binding information of full chip serial number.Wherein, CPUID is the sequence number of central processing unit, is the unique mark of central processing unit;
Safety chip sequence number is the unique mark of safety chip.It is without CPUID and safety chip sequence number in RPMB before dispatching from the factory
Binding information.Designated storage area internal memory contains the information of CPUID in safety chip.Before dispatching from the factory, safety chip is
The information of CPUID is not stored.The whole machine of terminal device dispatches from the factory before start for the first time, and designated area internal memory is contained in safety chip
The information of CPUID, the designated area internal memory in RPMB contains CPUID is with the binding information and eFuse of safety chip sequence number
The state of burning.
Fig. 1 is a kind of method flow schematic diagram of safety detection provided in an embodiment of the present invention.The method include S101~
S102。
Whether S101, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.Wherein, RPMB is a subregion of eMMC, should
Subregion employs the mechanism protection data for authorizing encryption.Binding information include CPUID and safety chip sequence number and CPUID with
The corresponding relation of safety chip sequence number.The eFuse of CPU understands burning, burning before dispatching from the factory after terminal device system test
After can not change, can not burning again.After starting up of terminal initialization, the CPUID that judges whether to be stored with safety chip,
Whether the binding information of CPUID and safety chip sequence number, eFuse whether burning, actually holding if being stored with the RPMB of eMMC
During row, can judge simultaneously, it is also possible to one judged followed by judge another, be not specifically limited here.
S102, if do not store in safety chip in CPUID, the RPMB of the eMMC of terminal not storing CPUID and safety
The binding information of chip serial number, eFuse burnings, determine that safety chip and eMMC occur abnormal.If there is exception, will not enter
Terminal system, prevents other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip,
The binding information of CPUID and safety chip sequence number is not stored in RPMB yet, but eFuse burnings, then it is determined that peace
Full chip and eMMC occur abnormal.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not
It is that every time start all can judge, will not judges when turning off.Terminal is judged by starting shooting, to each terminal hardware
Replacing can be detected, and enhance accuracy, can preferably protect the safety of terminal.In addition, the present embodiment can be more
Detect that abnormal situation occur simultaneously in safety chip and eMMC exactly.
A kind of method flow schematic diagram of safety detection that Fig. 2 is provided for another embodiment of the present invention.The method includes
S201~S203.
Whether S201, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S202, if do not store in safety chip in CPUID, the RPMB of the eMMC of terminal not storing CPUID and safety
The binding information of chip serial number, eFuse do not have burning, determine terminal to start shooting for the first time, obtain the CPUID and safety of terminal
Chip serial number.The binding without CPUID and safety chip sequence number in CPUID, RPMB is not stored in safety chip
Information, eFuse also without in the case of burning, determine that terminal is legal first time open state, obtain terminal CPUID and
Safety chip sequence number.
S203, CPUID is write in safety chip and the binding of CPUID and safety chip sequence number is write in RPMB
Information.CPUID is write in the designated storage area of safety chip, CPUID is write in the designated storage area of RPMB with peace
The binding information of full chip serial number.The binding information includes CPUID and safety chip sequence number and CPUID and safety chip
The corresponding relation of sequence number.In terminal for the first time legal start corresponding information is write, it is to avoid in plant produced, by phase
Answer instrument to write corresponding information.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip,
The binding information of CPUID and safety chip sequence number is not stored in RPMB, while eFuse does not have burning, then it is determined that eventually yet
Hold for first time start shooting, obtain terminal CPUID and safety chip sequence number, in safety chip write CPUID and
The binding information of CPUID and safety chip sequence number is write in RPMB.Corresponding information is write in terminal legal start for the first time,
Avoid in plant produced, by corresponding tool and threshold value be set writing corresponding information, cost when having saved production and
Time.
A kind of method flow schematic diagram of safety detection that Fig. 3 is provided for another embodiment of the present invention.The method includes
S301-S302。
Whether S301, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S302, if not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safe core in safety chip
The binding information of piece sequence number, eFuse burnings, determine that safety chip occurs abnormal.If there is exception, terminal system will not be entered
System, prevents other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip,
Be stored with CPUID and the binding information of safety chip sequence number, eFuse burnings, then determine that safety chip goes out in RPMB
It is now abnormal.Terminal is started shooting every time and judges rather than judged that (switch control rule judges to sentence when switch is turned off by switch control rule
It is disconnected), the replacing to each terminal hardware can be detected, and enhance accuracy, can preferably protect the safety of terminal.
In addition, the present embodiment can more accurately detect that abnormal situation occurs in safety chip.
A kind of method flow schematic diagram of safety detection that Fig. 4 is provided for another embodiment of the present invention.The method includes
S401-S402。
Whether S401, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S402, if not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safe core in safety chip
The binding information of piece sequence number, eFuse do not have burning, determine that safety chip and CPU occur abnormal.If there is exception, will not enter
Enter terminal system, prevent other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip,
Be stored with the binding information of CPUID and safety chip sequence number in RPMB, and eFuse does not have burning, then determine safety chip and
CPU occurs abnormal.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not to be start every time
Will judge, and will not judge when turning off.Terminal by detection of starting shooting, to the replacing of each terminal hardware all
Can detect, enhance accuracy, can preferably protect the safety of terminal.In addition, the present embodiment can be more accurately
Detect that abnormal situation occur simultaneously in safety chip and CPU.
A kind of method flow schematic diagram of safety detection that Fig. 5 is provided for further embodiment of this invention.The method includes
S501-S504。
Whether S501, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip
There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S502, if being stored with CPUID in safety chip, obtains the CPUID of terminal.
S503, judges whether the CPUID stored in safety chip matches with the CPUID of terminal.If mismatching, perform
S504;If matching, normal boot-strap.
S504, determines that safety chip occurs abnormal.I.e. in starting up of terminal, be stored with safety chip CPUID and should
CPUID is mismatched with the CPUID of terminal, then safety chip occurs abnormal.After there is exception, terminal system is not entered, prevented
Other disabled user's using terminal equipment.
Said method embodiment by starting up of terminal, judging the CPUID that whether is stored with safety chip, if being stored with
CPUID and mismatch with the CPUID of terminal, determine that safety chip occurs abnormal.The method judges when terminal is started shooting every time,
The safety chip is prevented the situation of user's using terminal after exception occur, it is to avoid to detect by switch control rule and leak through switch and close
There is abnormal possibility in safety chip when falling, and enhances the safeguard function of terminal, can preferably protect the safety of terminal.
In other examples, can also detect that eMMC abnormal, eMMC and CPU occurs and occurs while there is exception, CPU
Abnormal situations such as.
Fig. 6 is a kind of schematic block diagram of terminal provided in an embodiment of the present invention.The terminal 60 include judging unit 601,
Determining unit 602.
Judging unit 601, for the RPMB of when starting up of terminal, judge whether to be stored with safety chip CPUID, eMMC
In whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.Wherein, RPMB is the one of eMMC
Individual subregion, the subregion employs the mechanism protection data for authorizing encryption.Binding information include CPUID and safety chip sequence number with
And the corresponding relation of CPUID and safety chip sequence number.The eFuse of CPU can dispatch from the factory after terminal device system test before meeting
Burning, can not change after burning, can not burning again.After starting up of terminal initialization, judge whether stored in safety chip
There is the binding information of whether be stored with the RPMB of CPUID, eMMC CPUID and safety chip sequence number, eFuse whether burning.
Determining unit 602, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip
CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.If occurring different
Often, terminal system will not be entered, will prevent other disabled user's using terminal equipment after mobile phone is lost.
In other examples, determining unit 602, if be additionally operable to not stored in CPUID, RPMB in safety chip depositing
Binding information, the eFuse burning of CPUID and safety chip sequence number is contained, determines that safety chip occurs abnormal.It is determined that single
Unit 602, if being additionally operable in safety chip not store the binding of be stored with CPUID, RPMB CPUID and safety chip sequence number
Information, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
Whether whether above-described embodiment in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by depositing
The binding information of CPUID and safety chip sequence number, eFuse whether burning is contained, if not storing CPUID in safety chip,
The binding information of CPUID and safety chip sequence number, eFuse burnings, then determine safety chip are not stored in RPMB
Occur with eMMC abnormal;If not storing CPUID in safety chip, be stored with CPUID and safety chip sequence number in RPMB
Binding information, eFuse burnings determine that safety chip occurs abnormal;If CPUID is not stored in safety chip, in RPMB
CPUID be stored with the binding information of safety chip sequence number, eFuse does not have burning, determine that safety chip and CPU occur different
Often.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not to be that every time start all can judge,
Will not judge when turning off.Terminal judges that the replacing to each terminal hardware can be detected by starting shooting,
Accuracy is enhanced, the safeguard function of terminal is increased, the safety of terminal can be preferably protected.In addition, the present embodiment can be with
More accurately detect that safety chip abnormal, safety chip and eMMC occurs while there is exception, safety chip and CPU while going out
Now abnormal situation.
A kind of schematic block diagram of terminal that Fig. 7 is provided for another embodiment of the present invention.The terminal 70 includes judging unit
701st, acquiring unit 702, writing unit 703.
Judging unit 701, for the RPMB of when starting up of terminal, judge whether to be stored with safety chip CPUID, eMMC
In whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.
Acquiring unit 702, if for not storing in safety chip in CPUID, RPMB without CPUID and safety chip sequence
Binding information, the eFuse of row number determines terminal to start shooting for the first time also without burning, obtains the CPUID and safety chip of terminal
Sequence number.Do not store in safety chip binding information without CPUID and safety chip sequence number in CPUID, RPMB,
EFuse also without in the case of burning, determines that terminal is legal first time open state, obtains the CPUID and safety of terminal
Chip serial number.
Writing unit 703, CPUID and safety chip are write for the write CPUID in safety chip and in RPMB
The binding information of sequence number.CPUID is write in the designated storage area of safety chip, is write in the designated storage area of RPMB
Enter the binding information of CPUID and safety chip sequence number.The binding information include CPUID and safety chip sequence number and
The corresponding relation of CPUID and safety chip sequence number.In terminal for the first time legal start write corresponding information, it is to avoid in work
When factory produces, corresponding information is write by corresponding tool.
Whether whether above-described embodiment in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by depositing
The binding information of CPUID and safety chip sequence number, eFuse whether burning is contained, if not storing CPUID in safety chip,
The binding information of CPUID and safety chip sequence number is not stored in RPMB, while eFuse does not have burning, then it is determined that eventually yet
Hold for first time start shooting, obtain terminal CPUID and safety chip sequence number, in safety chip write CPUID and
The binding information of CPUID and safety chip sequence number is write in RPMB.Corresponding information is write in terminal legal start for the first time,
Avoid in plant produced, by corresponding tool and threshold value be set writing corresponding information, cost when having saved production and
Time.
A kind of schematic block diagram of terminal that Fig. 8 is provided for another embodiment of the present invention.The terminal 80 includes judging unit
801st, acquiring unit 802, determining unit 803.
Judging unit 801, when when starting up of terminal, judges whether be stored with the RPMB of CPUID, eMMC in safety chip
Whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.
Acquiring unit 802, if for the CPUID that is stored with safety chip, obtaining the CPUID of terminal.
Judging unit 801, is additionally operable to judge whether the CPUID stored in safety chip matches with the CPUID of terminal.If
Match somebody with somebody, then normal boot-strap.
Determining unit 803, if the CPUID and the CPUID of terminal for storing in safety chip is mismatched, determines safe core
Piece occurs abnormal.I.e. in starting up of terminal, the CPUID of be stored with safety chip CPUID and the CPUID and terminal is not
Match somebody with somebody, then safety chip occurs abnormal.After there is exception, terminal system is not entered, prevent other illegal use after lost terminal
Family using terminal equipment.
Said method embodiment by starting up of terminal, judging the CPUID that whether is stored with safety chip, if being stored with
CPUID and mismatch with the CPUID of terminal, determine that safety chip occurs abnormal.The embodiment is sentenced when terminal is started shooting every time
It is disconnected, it is therefore prevented that the situation of user's using terminal after exception occurs in safety chip, it is to avoid to be detected by switch control rule and leak through out
There is abnormal possibility in safety chip when turning off, and enhances the safeguard function of terminal, can preferably protect the peace of terminal
Entirely.
A kind of schematic block diagram of terminal that Fig. 9 is provided for further embodiment of this invention.The terminal 90 includes storage
Device 901, processor 902, above-mentioned memory 901, processor 902 are connected by bus 903.Wherein:
Memory 901, for routine data of the storage with various functions.Memory 901 is stored in the embodiment of the present invention
Data include safety chip in store CPUID, RPMB in store CPUID and safety chip sequence number binding information,
Sequence number, CPUID of safety chip etc., and other routine datas that can call and run.In implementing, the present invention is implemented
The memory 901 of example can be system storage, such as, volatile (such as RAM), non-volatile (such as ROM, flash memory
Deng), or both combination.In implementing, the memory 901 of the embodiment of the present invention can also be that the outside outside system is deposited
Reservoir, such as, and disk, CD, tape etc..
Processor 902, for calling memory 901 in the routine data that stores, and perform following operation:
When starting up of terminal, the sequence number (CPUID) of the central processing unit that judges whether to be stored with safety chip, terminal
Memory block (the Replay of the playback protection of embedded multimedia card (embedded Multi Media Card, eMMC)
Protected Memory Block, RPMB) in whether be stored with the binding information of CPUID and safety chip sequence number, CPU
EFuse (eFuse) whether burning;If not storing in safety chip in CPUID, the RPMB of the eMMC of terminal without storage
CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.
Processor 902, also performs following operation:
If do not store in safety chip that CPUID and safety chip sequence are not stored in CPUID, the RPMB of the eMMC of terminal
The binding information of row number, eFuse do not have burning, obtain the CPUID and safety chip sequence number of terminal;Write in safety chip
CPUID and the binding information of CPUID and safety chip sequence number is write in RPMB, the binding information includes CPUID, peace
The corresponding relation of full chip serial number, CPUID and safety chip sequence number.
Processor 902, also performs following operation:
If being stored with CPUID in safety chip, the CPUID of terminal is obtained;Judge CPUID and the end stored in safety chip
Whether the CPUID that end obtains matches;If the CPUID stored in safety chip is mismatched with the CPUID that terminal is obtained, it is determined that safety
Chip occurs abnormal.
In other examples, can also detect that eMMC abnormal, eMMC and CPU occurs and occurs while there is exception, CPU
Abnormal situations such as.
Those skilled in the art can be understood that, for convenience of description and succinctly, the end of foregoing description
End and the specific work process of unit, may be referred to the corresponding process in preceding method embodiment, will not be described here.This area
Those of ordinary skill it is to be appreciated that with reference to the embodiments described herein description each example unit and algorithm steps,
Can with electronic hardware, computer software or the two be implemented in combination in, can be mutual in order to clearly demonstrate hardware and software
It is transsexual, according to function generally describe the composition and step of each example in the above description.These functions actually with
Hardware or software mode are performing application-specific and design constraint depending on technical scheme.Professional and technical personnel can be with
Each specific application is used different methods to realize described function, but this realization it is not considered that beyond this
Bright scope.
In several embodiments provided herein, it should be understood that disclosed terminal and method, it can be passed through
Its mode is realized.For example, device embodiment described above is only schematic, for example, the division of the unit, and only
Only a kind of division of logic function, can there is other dividing mode when actually realizing, such as multiple units or component can be tied
Close or be desirably integrated into another system, or some features can be ignored, or do not perform.In addition, shown or discussed phase
Coupling or direct-coupling or communication connection between mutually can be INDIRECT COUPLING or the communication by some interfaces, device or unit
Connection, or electricity, machinery or other forms connections.
The unit as separating component explanation can be or may not be it is physically separate, it is aobvious as unit
The part for showing can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple
On NE.Some or all of unit therein can be according to the actual needs selected to realize embodiment of the present invention scheme
Purpose.
In addition, each functional unit in each embodiment of the invention can be integrated in a processing unit, it is also possible to
It is that unit is individually physically present, or two or more units are integrated in a unit.It is above-mentioned integrated
Unit both can be realized in the form of hardware, it would however also be possible to employ the form of SFU software functional unit is realized.
If the integrated unit is realized using in the form of SFU software functional unit and as independent production marketing or used
When, during a computer read/write memory medium can be stored in.Based on such understanding, technical scheme is substantially
Prior art is contributed part in other words, or all or part of the technical scheme can be in the form of software product
Embody, the computer software product is stored in a storage medium, including some instructions are used so that a computer
Equipment (can be personal computer, server, or network equipment etc.) performs the complete of each embodiment methods described of the invention
Portion or part steps.And aforesaid storage medium includes:USB flash disk, portable hard drive, read-only storage (ROM, Read-Only
Memory), random access memory (RAM, Random Access Memory), magnetic disc or CD etc. are various can store journey
The medium of sequence code.
The above, the only specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, any
Those familiar with the art the invention discloses technical scope in, various equivalent modifications can be readily occurred in or replaced
Change, these modifications or replacement all should be included within the scope of the present invention.Therefore, protection scope of the present invention should be with right
The protection domain of requirement is defined.
Claims (10)
1. a kind of safety detection method, it is characterised in that methods described includes:
When starting up of terminal, the sequence number (CPUID) of the central processing unit that judges whether to be stored with safety chip, terminal it is embedded
Memory block (the Replay Protected of the playback protection of formula multimedia card (embedded Multi Media Card, eMMC)
Memory Block, RPMB) in whether be stored with binding information, the eFuse of CPU of CPUID and safety chip sequence number
(eFuse) whether burning;
If do not store in safety chip that CPUID and safety chip sequence number are not stored in CPUID, the RPMB of the eMMC of terminal
Binding information, eFuse burnings, determine that safety chip and eMMC occur abnormal.
2. the method for claim 1, it is characterised in that methods described also includes:
If do not store in safety chip that CPUID and safety chip sequence number are not stored in CPUID, the RPMB of the eMMC of terminal
Binding information, eFuse there is no a burning, obtain the CPUID and safety chip sequence number of terminal;
CPUID is write in safety chip and the binding information of CPUID and safety chip sequence number is write in RPMB, it is described
Binding information includes the corresponding relation of CPUID, safety chip sequence number, CPUID and safety chip sequence number.
3. the method for claim 1, it is characterised in that methods described also includes:
If not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number in safety chip
Binding information, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
4. the method for claim 1, it is characterised in that methods described also includes:
If not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number in safety chip
Binding information, eFuse burnings, determine that safety chip occurs abnormal.
5. the method for claim 1, it is characterised in that methods described also includes:
If being stored with CPUID in safety chip, the CPUID of terminal is obtained;
Judge whether the CPUID that the CPUID stored in safety chip is obtained with terminal matches;
If the CPUID stored in safety chip is mismatched with the CPUID that terminal is obtained, determine that safety chip occurs abnormal.
6. a kind of terminal, it is characterised in that the terminal includes:
Judging unit, for when starting up of terminal, judging whether be stored with safety chip CPUID, the RPMB of the eMMC of terminal
In whether have the eFuse whether burnings of the binding information of CPUID and safety chip sequence number, CPU;
Determining unit, if for do not store during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip CPUID with
The binding information of safety chip sequence number, eFuse burnings, determine that safety chip and eMMC occur abnormal.
7. terminal as claimed in claim 6, it is characterised in that the terminal also includes acquiring unit, writing unit;
The acquiring unit, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip
The binding information of CPUID and safety chip sequence number, eFuse do not have burning, obtain the CPUID and safety chip sequence of terminal
Number;
Said write unit, CPUID and safety chip sequence are write for the write CPUID in safety chip and in RPMB
Number binding information, the binding information includes that CPUID, safety chip sequence number, CPUID are corresponding with safety chip sequence number
Relation.
8. terminal as claimed in claim 6, it is characterised in that:
The determining unit, if be additionally operable to not stored in safety chip being stored with CPUID, the RPMB of the eMMC of terminal
The binding information of CPUID and safety chip sequence number, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
9. terminal as claimed in claim 8, it is characterised in that:
The determining unit, if be additionally operable to not stored in safety chip being stored with CPUID, the RPMB of the eMMC of terminal
CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip occurs abnormal.
10. terminal as claimed in claim 6, it is characterised in that the terminal also includes acquiring unit:
The acquiring unit, if for the CPUID that is stored with safety chip, obtaining the CPUID of terminal;
The judging unit, is additionally operable to judge whether the CPUID that the CPUID stored in safety chip is obtained with terminal matches;
The determining unit, if the CPUID and CPUID that terminal is obtained for being additionally operable to be stored in safety chip is mismatched, it is determined that peace
Full chip occurs abnormal.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611245906.5A CN106650464A (en) | 2016-12-29 | 2016-12-29 | Security detection method and terminal |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611245906.5A CN106650464A (en) | 2016-12-29 | 2016-12-29 | Security detection method and terminal |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106650464A true CN106650464A (en) | 2017-05-10 |
Family
ID=58836011
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611245906.5A Withdrawn CN106650464A (en) | 2016-12-29 | 2016-12-29 | Security detection method and terminal |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106650464A (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107871090A (en) * | 2017-09-28 | 2018-04-03 | 努比亚技术有限公司 | A kind of terminal production method, terminal and computer-readable recording medium |
CN108229210A (en) * | 2017-12-26 | 2018-06-29 | 深圳市金立通信设备有限公司 | A kind of method, terminal and computer readable storage medium for protecting data |
CN110598384A (en) * | 2019-09-16 | 2019-12-20 | Oppo(重庆)智能科技有限公司 | Information protection method, information protection device and mobile terminal |
CN111031016A (en) * | 2019-11-29 | 2020-04-17 | 苏州浪潮智能科技有限公司 | Local area network management method, device, equipment and readable storage medium |
CN111061701A (en) * | 2019-11-27 | 2020-04-24 | Oppo(重庆)智能科技有限公司 | Information processing method, device, server and computer readable medium |
CN112133356A (en) * | 2020-09-11 | 2020-12-25 | 深圳市宏旺微电子有限公司 | Function test method and device for RPMB in eMMC and computer equipment |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102111265B (en) * | 2011-01-13 | 2014-03-26 | 中国电力科学研究院 | Method for encrypting secure chip of power system acquisition terminal |
CN106156827A (en) * | 2016-07-29 | 2016-11-23 | 福州瑞芯微电子股份有限公司 | A kind of chip information protection device and method |
CN106227503A (en) * | 2016-07-29 | 2016-12-14 | 苏州国芯科技有限公司 | Safety chip COS firmware update, service end, terminal and system |
-
2016
- 2016-12-29 CN CN201611245906.5A patent/CN106650464A/en not_active Withdrawn
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102111265B (en) * | 2011-01-13 | 2014-03-26 | 中国电力科学研究院 | Method for encrypting secure chip of power system acquisition terminal |
CN106156827A (en) * | 2016-07-29 | 2016-11-23 | 福州瑞芯微电子股份有限公司 | A kind of chip information protection device and method |
CN106227503A (en) * | 2016-07-29 | 2016-12-14 | 苏州国芯科技有限公司 | Safety chip COS firmware update, service end, terminal and system |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107871090A (en) * | 2017-09-28 | 2018-04-03 | 努比亚技术有限公司 | A kind of terminal production method, terminal and computer-readable recording medium |
CN107871090B (en) * | 2017-09-28 | 2020-11-27 | 泾县谷声信息科技有限公司 | Terminal production method, terminal and computer readable storage medium |
CN108229210A (en) * | 2017-12-26 | 2018-06-29 | 深圳市金立通信设备有限公司 | A kind of method, terminal and computer readable storage medium for protecting data |
CN110598384A (en) * | 2019-09-16 | 2019-12-20 | Oppo(重庆)智能科技有限公司 | Information protection method, information protection device and mobile terminal |
CN110598384B (en) * | 2019-09-16 | 2022-02-22 | Oppo(重庆)智能科技有限公司 | Information protection method, information protection device and mobile terminal |
CN111061701A (en) * | 2019-11-27 | 2020-04-24 | Oppo(重庆)智能科技有限公司 | Information processing method, device, server and computer readable medium |
CN111061701B (en) * | 2019-11-27 | 2023-08-29 | Oppo(重庆)智能科技有限公司 | Information processing method, device, server and computer readable medium |
CN111031016A (en) * | 2019-11-29 | 2020-04-17 | 苏州浪潮智能科技有限公司 | Local area network management method, device, equipment and readable storage medium |
CN112133356A (en) * | 2020-09-11 | 2020-12-25 | 深圳市宏旺微电子有限公司 | Function test method and device for RPMB in eMMC and computer equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106650464A (en) | Security detection method and terminal | |
EP1808770B1 (en) | Process for managing access to a memory by means of passwords | |
US8639946B2 (en) | System and method of using a protected non-volatile memory | |
CN105308609B (en) | The system and method for storing event data | |
CN113312676B (en) | Data access method and device, computer equipment and readable storage medium | |
AU2013270195B2 (en) | Mobile terminal detection method and mobile terminal | |
US20070297606A1 (en) | Multiple key security and method for electronic devices | |
US20180234455A1 (en) | Protection for computing systems from revoked system updates | |
US8195946B2 (en) | Protection of data of a memory associated with a microprocessor | |
CN104537295B (en) | A kind of method of computer system and management computer user authority | |
US20080072073A1 (en) | Portable storage device with encryption protection | |
US20160170644A1 (en) | Apparatus system and method for identification of memory | |
US6240493B1 (en) | Method and apparatus for performing access censorship in a data processing system | |
CN101888627B (en) | Mobile terminal and system data protection method thereof | |
CN102257506A (en) | Copy safe storage | |
EP3454216A1 (en) | Method for protecting unauthorized data access from a memory | |
CN108229210A (en) | A kind of method, terminal and computer readable storage medium for protecting data | |
CN107609427A (en) | EEPROM data storage method and system | |
US20140109234A1 (en) | Systems and methods for limiting the number of electronic devices accessing digital rights management (drm) content in a portable memory device | |
CN108830114B (en) | Data processing method and device of nonvolatile memory and storage medium | |
CN107704402A (en) | A kind of method, apparatus for protecting data, computer-readable recording medium | |
CN101403985A (en) | Software permission backup method for software protection apparatus | |
EP1679564A1 (en) | Programmable controller | |
CN106454802A (en) | Method and system for realizing virtual SIM card | |
CN108270735A (en) | A kind of data leakage prevention method and equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WW01 | Invention patent application withdrawn after publication |
Application publication date: 20170510 |
|
WW01 | Invention patent application withdrawn after publication |