CN106650464A - Security detection method and terminal - Google Patents

Security detection method and terminal Download PDF

Info

Publication number
CN106650464A
CN106650464A CN201611245906.5A CN201611245906A CN106650464A CN 106650464 A CN106650464 A CN 106650464A CN 201611245906 A CN201611245906 A CN 201611245906A CN 106650464 A CN106650464 A CN 106650464A
Authority
CN
China
Prior art keywords
cpuid
safety chip
terminal
stored
sequence number
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201611245906.5A
Other languages
Chinese (zh)
Inventor
魏为
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Jinli Communication Equipment Co Ltd
Original Assignee
Shenzhen Jinli Communication Equipment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Jinli Communication Equipment Co Ltd filed Critical Shenzhen Jinli Communication Equipment Co Ltd
Priority to CN201611245906.5A priority Critical patent/CN106650464A/en
Publication of CN106650464A publication Critical patent/CN106650464A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)

Abstract

The invention provides a security detection method and a terminal. The method includes the steps that when the terminal is started, whether a serial number (CPUID) of a central processing unit is stored in a security chip or not, whether binding information of the CPUID and a security chip serial number is stored in an RPMB of an eMMC of the terminal or not, and whether a micro electrical solution eFuse of the CPU is burnt or not are judged; if no CPUID is stored in the security chip, no binding information of the CPUID and the security chip serial number is stored in the RPMB of the eMMC of the terminal, and no eFuse is burnt, it is determined that the security chip and the eMMC are abnormal. According to the method and the terminal, through start judgment, each time of replacement of terminal hardware can be detected, accuracy is enhanced, and the security of the terminal can be better protected. In addition, the method and the terminal can more accurately detect the situation that the security chip and the eMMC are abnormal at the same time.

Description

A kind of safety detection method and terminal
Technical field
The present invention relates to technical field of electronic equipment, more particularly to a kind of safety detection method and terminal.
Background technology
With the progressively popularization of smart mobile phone, increasing mobile phone safe event occurs.Mobile phone Primary Component CPU, Terminal device is all saved in embedded multimedia card (Embedded Multi Media Card, eMMC), safety chip crucial Information.Needs as preserved terminal device in safety chip authorize the encryption data that could be accessed, equivalent to terminal device can Trust with once losing or maliciously being replaced, end-user listening data information will be abnormally dangerous.
The content of the invention
The invention provides a kind of safety detection method and terminal.
On the one hand, the invention provides a kind of method of safety detection, the method includes:
When starting up of terminal, sequence number (CPUID), the terminal of the central processing unit that judges whether to be stored with safety chip EMMC playback protection memory block (Replay Protected Memory Block, RPMB) in whether be stored with CPUID with The whether burning of the binding information of safety chip sequence number, the eFuse (eFuse) of CPU;
If do not store in safety chip that CPUID and safety chip sequence are not stored in CPUID, the RPMB of the eMMC of terminal The binding information of row number, eFuse burnings, determine that safety chip and eMMC occur abnormal.
On the other hand, the invention provides a kind of terminal, the terminal includes:
Judging unit, for the CPUID that when starting up of terminal, judges whether to be stored with safety chip, the eMMC of terminal Whether the eFuse whether burning of the binding information of CPUID and safety chip sequence number, CPU is had in RPMB;
Determining unit, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.
Method provided in an embodiment of the present invention and terminal, can judge whether deposited in safety chip when terminal is started shooting every time Containing the binding information of whether be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number, eFuse is No burning, rather than judged by switch control rule, it is to avoid the situation of error detection when turning off, enhance the protection work(of terminal Can, can preferably protect the safety of terminal.In addition, the embodiment of the present invention more accurately detects safety chip and eMMC simultaneously Occur abnormal.
Description of the drawings
In order to be illustrated more clearly that embodiment of the present invention technical scheme, below embodiment will be described needed for be used Accompanying drawing is briefly described, it should be apparent that, drawings in the following description are some embodiments of the present invention, general for this area For logical technical staff, on the premise of not paying creative work, can be with according to these other accompanying drawings of accompanying drawings acquisition.
Fig. 1 is a kind of schematic flow diagram of the method for safety detection provided in an embodiment of the present invention;
Fig. 2 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 3 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 4 is a kind of schematic flow diagram of the method for safety detection that another embodiment of the present invention is provided;
Fig. 5 is a kind of schematic flow diagram of the method for safety detection that further embodiment of this invention is provided;
Fig. 6 is a kind of schematic block diagram of terminal provided in an embodiment of the present invention;
Fig. 7 is a kind of terminal schematic block diagram that another embodiment of the present invention is provided;
Fig. 8 is a kind of terminal schematic block diagram that another embodiment of the present invention is provided;
Fig. 9 is a kind of terminal schematic block diagram that further embodiment of this invention is provided.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation is described, it is clear that described embodiment is a part of embodiment of the invention, rather than the embodiment of whole.Based on this Embodiment in bright, the every other enforcement that those of ordinary skill in the art are obtained under the premise of creative work is not made Example, belongs to the scope of protection of the invention.
It should be appreciated that when using in this specification and in the appended claims, term " including " and "comprising" are indicated The presence of described feature, entirety, step, operation, element and/or component, but it is not precluded from one or more of the other feature, whole The presence or addition of body, step, operation, element, component and/or its set.
It is also understood that referring in description of the invention and the term "and/or" used in appended claims related Join any combinations of one or more in the item listed and be possible to combination, and including these combinations.
The eFuse of meeting burning CPU before dispatching from the factory after terminal device system test, eFuse is once programmed can not be more Change, can not burning again, except the brand-new CPU of non-replaced.EMMC has multiple subregions, and RPMB is one of subregion, RPMB Middle storage is to need to authorize the encryption data that could be accessed, because access needing key, it is possible to prevent undelegated visit Ask.RPMB is the region that uniquely can not be at will rubbed off on eMMC, and CPUID is contained with peace in the designated storage area internal memory of RPMB The binding information of full chip serial number.Wherein, CPUID is the sequence number of central processing unit, is the unique mark of central processing unit; Safety chip sequence number is the unique mark of safety chip.It is without CPUID and safety chip sequence number in RPMB before dispatching from the factory Binding information.Designated storage area internal memory contains the information of CPUID in safety chip.Before dispatching from the factory, safety chip is The information of CPUID is not stored.The whole machine of terminal device dispatches from the factory before start for the first time, and designated area internal memory is contained in safety chip The information of CPUID, the designated area internal memory in RPMB contains CPUID is with the binding information and eFuse of safety chip sequence number The state of burning.
Fig. 1 is a kind of method flow schematic diagram of safety detection provided in an embodiment of the present invention.The method include S101~ S102。
Whether S101, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.Wherein, RPMB is a subregion of eMMC, should Subregion employs the mechanism protection data for authorizing encryption.Binding information include CPUID and safety chip sequence number and CPUID with The corresponding relation of safety chip sequence number.The eFuse of CPU understands burning, burning before dispatching from the factory after terminal device system test After can not change, can not burning again.After starting up of terminal initialization, the CPUID that judges whether to be stored with safety chip, Whether the binding information of CPUID and safety chip sequence number, eFuse whether burning, actually holding if being stored with the RPMB of eMMC During row, can judge simultaneously, it is also possible to one judged followed by judge another, be not specifically limited here.
S102, if do not store in safety chip in CPUID, the RPMB of the eMMC of terminal not storing CPUID and safety The binding information of chip serial number, eFuse burnings, determine that safety chip and eMMC occur abnormal.If there is exception, will not enter Terminal system, prevents other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip, The binding information of CPUID and safety chip sequence number is not stored in RPMB yet, but eFuse burnings, then it is determined that peace Full chip and eMMC occur abnormal.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not It is that every time start all can judge, will not judges when turning off.Terminal is judged by starting shooting, to each terminal hardware Replacing can be detected, and enhance accuracy, can preferably protect the safety of terminal.In addition, the present embodiment can be more Detect that abnormal situation occur simultaneously in safety chip and eMMC exactly.
A kind of method flow schematic diagram of safety detection that Fig. 2 is provided for another embodiment of the present invention.The method includes S201~S203.
Whether S201, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S202, if do not store in safety chip in CPUID, the RPMB of the eMMC of terminal not storing CPUID and safety The binding information of chip serial number, eFuse do not have burning, determine terminal to start shooting for the first time, obtain the CPUID and safety of terminal Chip serial number.The binding without CPUID and safety chip sequence number in CPUID, RPMB is not stored in safety chip Information, eFuse also without in the case of burning, determine that terminal is legal first time open state, obtain terminal CPUID and Safety chip sequence number.
S203, CPUID is write in safety chip and the binding of CPUID and safety chip sequence number is write in RPMB Information.CPUID is write in the designated storage area of safety chip, CPUID is write in the designated storage area of RPMB with peace The binding information of full chip serial number.The binding information includes CPUID and safety chip sequence number and CPUID and safety chip The corresponding relation of sequence number.In terminal for the first time legal start corresponding information is write, it is to avoid in plant produced, by phase Answer instrument to write corresponding information.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip, The binding information of CPUID and safety chip sequence number is not stored in RPMB, while eFuse does not have burning, then it is determined that eventually yet Hold for first time start shooting, obtain terminal CPUID and safety chip sequence number, in safety chip write CPUID and The binding information of CPUID and safety chip sequence number is write in RPMB.Corresponding information is write in terminal legal start for the first time, Avoid in plant produced, by corresponding tool and threshold value be set writing corresponding information, cost when having saved production and Time.
A kind of method flow schematic diagram of safety detection that Fig. 3 is provided for another embodiment of the present invention.The method includes S301-S302。
Whether S301, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S302, if not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safe core in safety chip The binding information of piece sequence number, eFuse burnings, determine that safety chip occurs abnormal.If there is exception, terminal system will not be entered System, prevents other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip, Be stored with CPUID and the binding information of safety chip sequence number, eFuse burnings, then determine that safety chip goes out in RPMB It is now abnormal.Terminal is started shooting every time and judges rather than judged that (switch control rule judges to sentence when switch is turned off by switch control rule It is disconnected), the replacing to each terminal hardware can be detected, and enhance accuracy, can preferably protect the safety of terminal. In addition, the present embodiment can more accurately detect that abnormal situation occurs in safety chip.
A kind of method flow schematic diagram of safety detection that Fig. 4 is provided for another embodiment of the present invention.The method includes S401-S402。
Whether S401, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S402, if not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safe core in safety chip The binding information of piece sequence number, eFuse do not have burning, determine that safety chip and CPU occur abnormal.If there is exception, will not enter Enter terminal system, prevent other disabled user's using terminal equipment after lost terminal.
Whether whether said method in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by storing There is the binding information of CPUID and safety chip sequence number, eFuse whether burning, if not storing CPUID in safety chip, Be stored with the binding information of CPUID and safety chip sequence number in RPMB, and eFuse does not have burning, then determine safety chip and CPU occurs abnormal.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not to be start every time Will judge, and will not judge when turning off.Terminal by detection of starting shooting, to the replacing of each terminal hardware all Can detect, enhance accuracy, can preferably protect the safety of terminal.In addition, the present embodiment can be more accurately Detect that abnormal situation occur simultaneously in safety chip and CPU.
A kind of method flow schematic diagram of safety detection that Fig. 5 is provided for further embodiment of this invention.The method includes S501-S504。
Whether S501, when starting up of terminal, store in the RPMB of CPUID, eMMC that judges whether to be stored with safety chip There is the binding information of CPUID and safety chip sequence number, eFuse whether burning.
S502, if being stored with CPUID in safety chip, obtains the CPUID of terminal.
S503, judges whether the CPUID stored in safety chip matches with the CPUID of terminal.If mismatching, perform S504;If matching, normal boot-strap.
S504, determines that safety chip occurs abnormal.I.e. in starting up of terminal, be stored with safety chip CPUID and should CPUID is mismatched with the CPUID of terminal, then safety chip occurs abnormal.After there is exception, terminal system is not entered, prevented Other disabled user's using terminal equipment.
Said method embodiment by starting up of terminal, judging the CPUID that whether is stored with safety chip, if being stored with CPUID and mismatch with the CPUID of terminal, determine that safety chip occurs abnormal.The method judges when terminal is started shooting every time, The safety chip is prevented the situation of user's using terminal after exception occur, it is to avoid to detect by switch control rule and leak through switch and close There is abnormal possibility in safety chip when falling, and enhances the safeguard function of terminal, can preferably protect the safety of terminal.
In other examples, can also detect that eMMC abnormal, eMMC and CPU occurs and occurs while there is exception, CPU Abnormal situations such as.
Fig. 6 is a kind of schematic block diagram of terminal provided in an embodiment of the present invention.The terminal 60 include judging unit 601, Determining unit 602.
Judging unit 601, for the RPMB of when starting up of terminal, judge whether to be stored with safety chip CPUID, eMMC In whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.Wherein, RPMB is the one of eMMC Individual subregion, the subregion employs the mechanism protection data for authorizing encryption.Binding information include CPUID and safety chip sequence number with And the corresponding relation of CPUID and safety chip sequence number.The eFuse of CPU can dispatch from the factory after terminal device system test before meeting Burning, can not change after burning, can not burning again.After starting up of terminal initialization, judge whether stored in safety chip There is the binding information of whether be stored with the RPMB of CPUID, eMMC CPUID and safety chip sequence number, eFuse whether burning.
Determining unit 602, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.If occurring different Often, terminal system will not be entered, will prevent other disabled user's using terminal equipment after mobile phone is lost.
In other examples, determining unit 602, if be additionally operable to not stored in CPUID, RPMB in safety chip depositing Binding information, the eFuse burning of CPUID and safety chip sequence number is contained, determines that safety chip occurs abnormal.It is determined that single Unit 602, if being additionally operable in safety chip not store the binding of be stored with CPUID, RPMB CPUID and safety chip sequence number Information, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
Whether whether above-described embodiment in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by depositing The binding information of CPUID and safety chip sequence number, eFuse whether burning is contained, if not storing CPUID in safety chip, The binding information of CPUID and safety chip sequence number, eFuse burnings, then determine safety chip are not stored in RPMB Occur with eMMC abnormal;If not storing CPUID in safety chip, be stored with CPUID and safety chip sequence number in RPMB Binding information, eFuse burnings determine that safety chip occurs abnormal;If CPUID is not stored in safety chip, in RPMB CPUID be stored with the binding information of safety chip sequence number, eFuse does not have burning, determine that safety chip and CPU occur different Often.Terminal is started shooting every time and judges rather than judged by switch control rule.Switch control rule judges not to be that every time start all can judge, Will not judge when turning off.Terminal judges that the replacing to each terminal hardware can be detected by starting shooting, Accuracy is enhanced, the safeguard function of terminal is increased, the safety of terminal can be preferably protected.In addition, the present embodiment can be with More accurately detect that safety chip abnormal, safety chip and eMMC occurs while there is exception, safety chip and CPU while going out Now abnormal situation.
A kind of schematic block diagram of terminal that Fig. 7 is provided for another embodiment of the present invention.The terminal 70 includes judging unit 701st, acquiring unit 702, writing unit 703.
Judging unit 701, for the RPMB of when starting up of terminal, judge whether to be stored with safety chip CPUID, eMMC In whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.
Acquiring unit 702, if for not storing in safety chip in CPUID, RPMB without CPUID and safety chip sequence Binding information, the eFuse of row number determines terminal to start shooting for the first time also without burning, obtains the CPUID and safety chip of terminal Sequence number.Do not store in safety chip binding information without CPUID and safety chip sequence number in CPUID, RPMB, EFuse also without in the case of burning, determines that terminal is legal first time open state, obtains the CPUID and safety of terminal Chip serial number.
Writing unit 703, CPUID and safety chip are write for the write CPUID in safety chip and in RPMB The binding information of sequence number.CPUID is write in the designated storage area of safety chip, is write in the designated storage area of RPMB Enter the binding information of CPUID and safety chip sequence number.The binding information include CPUID and safety chip sequence number and The corresponding relation of CPUID and safety chip sequence number.In terminal for the first time legal start write corresponding information, it is to avoid in work When factory produces, corresponding information is write by corresponding tool.
Whether whether above-described embodiment in starting up of terminal, judge to be stored with safety chip CPUID, RPMB by depositing The binding information of CPUID and safety chip sequence number, eFuse whether burning is contained, if not storing CPUID in safety chip, The binding information of CPUID and safety chip sequence number is not stored in RPMB, while eFuse does not have burning, then it is determined that eventually yet Hold for first time start shooting, obtain terminal CPUID and safety chip sequence number, in safety chip write CPUID and The binding information of CPUID and safety chip sequence number is write in RPMB.Corresponding information is write in terminal legal start for the first time, Avoid in plant produced, by corresponding tool and threshold value be set writing corresponding information, cost when having saved production and Time.
A kind of schematic block diagram of terminal that Fig. 8 is provided for another embodiment of the present invention.The terminal 80 includes judging unit 801st, acquiring unit 802, determining unit 803.
Judging unit 801, when when starting up of terminal, judges whether be stored with the RPMB of CPUID, eMMC in safety chip Whether be stored with the binding information of CPUID and safety chip sequence number, eFuse whether burning.
Acquiring unit 802, if for the CPUID that is stored with safety chip, obtaining the CPUID of terminal.
Judging unit 801, is additionally operable to judge whether the CPUID stored in safety chip matches with the CPUID of terminal.If Match somebody with somebody, then normal boot-strap.
Determining unit 803, if the CPUID and the CPUID of terminal for storing in safety chip is mismatched, determines safe core Piece occurs abnormal.I.e. in starting up of terminal, the CPUID of be stored with safety chip CPUID and the CPUID and terminal is not Match somebody with somebody, then safety chip occurs abnormal.After there is exception, terminal system is not entered, prevent other illegal use after lost terminal Family using terminal equipment.
Said method embodiment by starting up of terminal, judging the CPUID that whether is stored with safety chip, if being stored with CPUID and mismatch with the CPUID of terminal, determine that safety chip occurs abnormal.The embodiment is sentenced when terminal is started shooting every time It is disconnected, it is therefore prevented that the situation of user's using terminal after exception occurs in safety chip, it is to avoid to be detected by switch control rule and leak through out There is abnormal possibility in safety chip when turning off, and enhances the safeguard function of terminal, can preferably protect the peace of terminal Entirely.
A kind of schematic block diagram of terminal that Fig. 9 is provided for further embodiment of this invention.The terminal 90 includes storage Device 901, processor 902, above-mentioned memory 901, processor 902 are connected by bus 903.Wherein:
Memory 901, for routine data of the storage with various functions.Memory 901 is stored in the embodiment of the present invention Data include safety chip in store CPUID, RPMB in store CPUID and safety chip sequence number binding information, Sequence number, CPUID of safety chip etc., and other routine datas that can call and run.In implementing, the present invention is implemented The memory 901 of example can be system storage, such as, volatile (such as RAM), non-volatile (such as ROM, flash memory Deng), or both combination.In implementing, the memory 901 of the embodiment of the present invention can also be that the outside outside system is deposited Reservoir, such as, and disk, CD, tape etc..
Processor 902, for calling memory 901 in the routine data that stores, and perform following operation:
When starting up of terminal, the sequence number (CPUID) of the central processing unit that judges whether to be stored with safety chip, terminal Memory block (the Replay of the playback protection of embedded multimedia card (embedded Multi Media Card, eMMC) Protected Memory Block, RPMB) in whether be stored with the binding information of CPUID and safety chip sequence number, CPU EFuse (eFuse) whether burning;If not storing in safety chip in CPUID, the RPMB of the eMMC of terminal without storage CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip and eMMC occur abnormal.
Processor 902, also performs following operation:
If do not store in safety chip that CPUID and safety chip sequence are not stored in CPUID, the RPMB of the eMMC of terminal The binding information of row number, eFuse do not have burning, obtain the CPUID and safety chip sequence number of terminal;Write in safety chip CPUID and the binding information of CPUID and safety chip sequence number is write in RPMB, the binding information includes CPUID, peace The corresponding relation of full chip serial number, CPUID and safety chip sequence number.
Processor 902, also performs following operation:
If being stored with CPUID in safety chip, the CPUID of terminal is obtained;Judge CPUID and the end stored in safety chip Whether the CPUID that end obtains matches;If the CPUID stored in safety chip is mismatched with the CPUID that terminal is obtained, it is determined that safety Chip occurs abnormal.
In other examples, can also detect that eMMC abnormal, eMMC and CPU occurs and occurs while there is exception, CPU Abnormal situations such as.
Those skilled in the art can be understood that, for convenience of description and succinctly, the end of foregoing description End and the specific work process of unit, may be referred to the corresponding process in preceding method embodiment, will not be described here.This area Those of ordinary skill it is to be appreciated that with reference to the embodiments described herein description each example unit and algorithm steps, Can with electronic hardware, computer software or the two be implemented in combination in, can be mutual in order to clearly demonstrate hardware and software It is transsexual, according to function generally describe the composition and step of each example in the above description.These functions actually with Hardware or software mode are performing application-specific and design constraint depending on technical scheme.Professional and technical personnel can be with Each specific application is used different methods to realize described function, but this realization it is not considered that beyond this Bright scope.
In several embodiments provided herein, it should be understood that disclosed terminal and method, it can be passed through Its mode is realized.For example, device embodiment described above is only schematic, for example, the division of the unit, and only Only a kind of division of logic function, can there is other dividing mode when actually realizing, such as multiple units or component can be tied Close or be desirably integrated into another system, or some features can be ignored, or do not perform.In addition, shown or discussed phase Coupling or direct-coupling or communication connection between mutually can be INDIRECT COUPLING or the communication by some interfaces, device or unit Connection, or electricity, machinery or other forms connections.
The unit as separating component explanation can be or may not be it is physically separate, it is aobvious as unit The part for showing can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple On NE.Some or all of unit therein can be according to the actual needs selected to realize embodiment of the present invention scheme Purpose.
In addition, each functional unit in each embodiment of the invention can be integrated in a processing unit, it is also possible to It is that unit is individually physically present, or two or more units are integrated in a unit.It is above-mentioned integrated Unit both can be realized in the form of hardware, it would however also be possible to employ the form of SFU software functional unit is realized.
If the integrated unit is realized using in the form of SFU software functional unit and as independent production marketing or used When, during a computer read/write memory medium can be stored in.Based on such understanding, technical scheme is substantially Prior art is contributed part in other words, or all or part of the technical scheme can be in the form of software product Embody, the computer software product is stored in a storage medium, including some instructions are used so that a computer Equipment (can be personal computer, server, or network equipment etc.) performs the complete of each embodiment methods described of the invention Portion or part steps.And aforesaid storage medium includes:USB flash disk, portable hard drive, read-only storage (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CD etc. are various can store journey The medium of sequence code.
The above, the only specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, any Those familiar with the art the invention discloses technical scope in, various equivalent modifications can be readily occurred in or replaced Change, these modifications or replacement all should be included within the scope of the present invention.Therefore, protection scope of the present invention should be with right The protection domain of requirement is defined.

Claims (10)

1. a kind of safety detection method, it is characterised in that methods described includes:
When starting up of terminal, the sequence number (CPUID) of the central processing unit that judges whether to be stored with safety chip, terminal it is embedded Memory block (the Replay Protected of the playback protection of formula multimedia card (embedded Multi Media Card, eMMC) Memory Block, RPMB) in whether be stored with binding information, the eFuse of CPU of CPUID and safety chip sequence number (eFuse) whether burning;
If do not store in safety chip that CPUID and safety chip sequence number are not stored in CPUID, the RPMB of the eMMC of terminal Binding information, eFuse burnings, determine that safety chip and eMMC occur abnormal.
2. the method for claim 1, it is characterised in that methods described also includes:
If do not store in safety chip that CPUID and safety chip sequence number are not stored in CPUID, the RPMB of the eMMC of terminal Binding information, eFuse there is no a burning, obtain the CPUID and safety chip sequence number of terminal;
CPUID is write in safety chip and the binding information of CPUID and safety chip sequence number is write in RPMB, it is described Binding information includes the corresponding relation of CPUID, safety chip sequence number, CPUID and safety chip sequence number.
3. the method for claim 1, it is characterised in that methods described also includes:
If not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number in safety chip Binding information, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
4. the method for claim 1, it is characterised in that methods described also includes:
If not storing be stored with CPUID, the RPMB of the eMMC of terminal CPUID and safety chip sequence number in safety chip Binding information, eFuse burnings, determine that safety chip occurs abnormal.
5. the method for claim 1, it is characterised in that methods described also includes:
If being stored with CPUID in safety chip, the CPUID of terminal is obtained;
Judge whether the CPUID that the CPUID stored in safety chip is obtained with terminal matches;
If the CPUID stored in safety chip is mismatched with the CPUID that terminal is obtained, determine that safety chip occurs abnormal.
6. a kind of terminal, it is characterised in that the terminal includes:
Judging unit, for when starting up of terminal, judging whether be stored with safety chip CPUID, the RPMB of the eMMC of terminal In whether have the eFuse whether burnings of the binding information of CPUID and safety chip sequence number, CPU;
Determining unit, if for do not store during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip CPUID with The binding information of safety chip sequence number, eFuse burnings, determine that safety chip and eMMC occur abnormal.
7. terminal as claimed in claim 6, it is characterised in that the terminal also includes acquiring unit, writing unit;
The acquiring unit, if for no storage during CPUID, the RPMB of the eMMC of terminal are not stored in safety chip The binding information of CPUID and safety chip sequence number, eFuse do not have burning, obtain the CPUID and safety chip sequence of terminal Number;
Said write unit, CPUID and safety chip sequence are write for the write CPUID in safety chip and in RPMB Number binding information, the binding information includes that CPUID, safety chip sequence number, CPUID are corresponding with safety chip sequence number Relation.
8. terminal as claimed in claim 6, it is characterised in that:
The determining unit, if be additionally operable to not stored in safety chip being stored with CPUID, the RPMB of the eMMC of terminal The binding information of CPUID and safety chip sequence number, eFuse do not have burning, determine that safety chip and CPU occur abnormal.
9. terminal as claimed in claim 8, it is characterised in that:
The determining unit, if be additionally operable to not stored in safety chip being stored with CPUID, the RPMB of the eMMC of terminal CPUID and binding information, the eFuse burnings of safety chip sequence number, determine that safety chip occurs abnormal.
10. terminal as claimed in claim 6, it is characterised in that the terminal also includes acquiring unit:
The acquiring unit, if for the CPUID that is stored with safety chip, obtaining the CPUID of terminal;
The judging unit, is additionally operable to judge whether the CPUID that the CPUID stored in safety chip is obtained with terminal matches;
The determining unit, if the CPUID and CPUID that terminal is obtained for being additionally operable to be stored in safety chip is mismatched, it is determined that peace Full chip occurs abnormal.
CN201611245906.5A 2016-12-29 2016-12-29 Security detection method and terminal Withdrawn CN106650464A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611245906.5A CN106650464A (en) 2016-12-29 2016-12-29 Security detection method and terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611245906.5A CN106650464A (en) 2016-12-29 2016-12-29 Security detection method and terminal

Publications (1)

Publication Number Publication Date
CN106650464A true CN106650464A (en) 2017-05-10

Family

ID=58836011

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611245906.5A Withdrawn CN106650464A (en) 2016-12-29 2016-12-29 Security detection method and terminal

Country Status (1)

Country Link
CN (1) CN106650464A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107871090A (en) * 2017-09-28 2018-04-03 努比亚技术有限公司 A kind of terminal production method, terminal and computer-readable recording medium
CN108229210A (en) * 2017-12-26 2018-06-29 深圳市金立通信设备有限公司 A kind of method, terminal and computer readable storage medium for protecting data
CN110598384A (en) * 2019-09-16 2019-12-20 Oppo(重庆)智能科技有限公司 Information protection method, information protection device and mobile terminal
CN111031016A (en) * 2019-11-29 2020-04-17 苏州浪潮智能科技有限公司 Local area network management method, device, equipment and readable storage medium
CN111061701A (en) * 2019-11-27 2020-04-24 Oppo(重庆)智能科技有限公司 Information processing method, device, server and computer readable medium
CN112133356A (en) * 2020-09-11 2020-12-25 深圳市宏旺微电子有限公司 Function test method and device for RPMB in eMMC and computer equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102111265B (en) * 2011-01-13 2014-03-26 中国电力科学研究院 Method for encrypting secure chip of power system acquisition terminal
CN106156827A (en) * 2016-07-29 2016-11-23 福州瑞芯微电子股份有限公司 A kind of chip information protection device and method
CN106227503A (en) * 2016-07-29 2016-12-14 苏州国芯科技有限公司 Safety chip COS firmware update, service end, terminal and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102111265B (en) * 2011-01-13 2014-03-26 中国电力科学研究院 Method for encrypting secure chip of power system acquisition terminal
CN106156827A (en) * 2016-07-29 2016-11-23 福州瑞芯微电子股份有限公司 A kind of chip information protection device and method
CN106227503A (en) * 2016-07-29 2016-12-14 苏州国芯科技有限公司 Safety chip COS firmware update, service end, terminal and system

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107871090A (en) * 2017-09-28 2018-04-03 努比亚技术有限公司 A kind of terminal production method, terminal and computer-readable recording medium
CN107871090B (en) * 2017-09-28 2020-11-27 泾县谷声信息科技有限公司 Terminal production method, terminal and computer readable storage medium
CN108229210A (en) * 2017-12-26 2018-06-29 深圳市金立通信设备有限公司 A kind of method, terminal and computer readable storage medium for protecting data
CN110598384A (en) * 2019-09-16 2019-12-20 Oppo(重庆)智能科技有限公司 Information protection method, information protection device and mobile terminal
CN110598384B (en) * 2019-09-16 2022-02-22 Oppo(重庆)智能科技有限公司 Information protection method, information protection device and mobile terminal
CN111061701A (en) * 2019-11-27 2020-04-24 Oppo(重庆)智能科技有限公司 Information processing method, device, server and computer readable medium
CN111061701B (en) * 2019-11-27 2023-08-29 Oppo(重庆)智能科技有限公司 Information processing method, device, server and computer readable medium
CN111031016A (en) * 2019-11-29 2020-04-17 苏州浪潮智能科技有限公司 Local area network management method, device, equipment and readable storage medium
CN112133356A (en) * 2020-09-11 2020-12-25 深圳市宏旺微电子有限公司 Function test method and device for RPMB in eMMC and computer equipment

Similar Documents

Publication Publication Date Title
CN106650464A (en) Security detection method and terminal
EP1808770B1 (en) Process for managing access to a memory by means of passwords
US8639946B2 (en) System and method of using a protected non-volatile memory
CN105308609B (en) The system and method for storing event data
CN113312676B (en) Data access method and device, computer equipment and readable storage medium
AU2013270195B2 (en) Mobile terminal detection method and mobile terminal
US20070297606A1 (en) Multiple key security and method for electronic devices
US20180234455A1 (en) Protection for computing systems from revoked system updates
US8195946B2 (en) Protection of data of a memory associated with a microprocessor
CN104537295B (en) A kind of method of computer system and management computer user authority
US20080072073A1 (en) Portable storage device with encryption protection
US20160170644A1 (en) Apparatus system and method for identification of memory
US6240493B1 (en) Method and apparatus for performing access censorship in a data processing system
CN101888627B (en) Mobile terminal and system data protection method thereof
CN102257506A (en) Copy safe storage
EP3454216A1 (en) Method for protecting unauthorized data access from a memory
CN108229210A (en) A kind of method, terminal and computer readable storage medium for protecting data
CN107609427A (en) EEPROM data storage method and system
US20140109234A1 (en) Systems and methods for limiting the number of electronic devices accessing digital rights management (drm) content in a portable memory device
CN108830114B (en) Data processing method and device of nonvolatile memory and storage medium
CN107704402A (en) A kind of method, apparatus for protecting data, computer-readable recording medium
CN101403985A (en) Software permission backup method for software protection apparatus
EP1679564A1 (en) Programmable controller
CN106454802A (en) Method and system for realizing virtual SIM card
CN108270735A (en) A kind of data leakage prevention method and equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20170510

WW01 Invention patent application withdrawn after publication