CN106815531A - The treating method and apparatus of equipment identification information - Google Patents
The treating method and apparatus of equipment identification information Download PDFInfo
- Publication number
- CN106815531A CN106815531A CN201510872470.1A CN201510872470A CN106815531A CN 106815531 A CN106815531 A CN 106815531A CN 201510872470 A CN201510872470 A CN 201510872470A CN 106815531 A CN106815531 A CN 106815531A
- Authority
- CN
- China
- Prior art keywords
- identification information
- equipment
- bios
- operating system
- updated
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/572—Secure firmware programming, e.g. of basic input output system [BIOS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind for the treatment of method and apparatus of equipment identification information, wherein, the identification information of the equipment that is stored with respectively in the BIOS and CMOS chip of equipment, method is comprised the following steps:During BIOS starts, the first identification information in BIOS is read, and read the second identification information in CMOS chip;Judge whether the first identification information is consistent with the second identification information;If the first identification information is inconsistent with the second identification information, it is determined that the identification information being updated;The identification information being updated is covered using the identification information not being updated.The processing method of the equipment identification information of the embodiment of the present invention, can effectively prevent the random modification to the identification information of equipment, maintain and the identification of machine is safeguarded, improve the security of facility information.
Description
Technical field
The present invention relates to field of terminal technology, more particularly to a kind for the treatment of method and apparatus of equipment identification information.
Background technology
Most of equipment are owned by being capable of the identification code and some special information of unique mark equipment.At present, hard disk is computer
And the main storage medium of mobile device, therefore, the identification code of equipment is stored in a hard disk mostly, such as EMMC of solid state hard disc
(Embedded Multi Media Card, a kind of embedded memory standard specification for products such as mobile phone or panel computers)
In.
The identification code and specific information of equipment are not intended to by malicious modification.But, due to the system increasingly prevailing, user of virus
Voluntarily the phenomenon of brush machine is very various, is thus stored in these information in the EMMC of hard disk easily by virus or brush machine side
Formula is changed.As can be seen here, at present, the loss and being tampered of the information for being stored in hard disk has become one and increasingly serious shows
As the safety of hard-disc storage is difficult to be effectively protected.
The content of the invention
It is contemplated that at least solving one of technical problem in correlation technique to a certain extent.Therefore, one of the invention
Purpose is to propose a kind of processing method of equipment identification information, can effectively prevent the random modification to the identification information of equipment.
Second object of the present invention is to propose a kind of processing unit of equipment identification information.
It is that up to above-mentioned purpose, embodiment proposes a kind of processing method of equipment identification information according to a first aspect of the present invention, its
In, the identification information of the equipment that is stored with respectively in the BIOS and CMOS chip of the equipment, methods described includes following
Step:During the BIOS starts, the first identification information in the BIOS is read, and read the CMOS cores
The second identification information in piece;Judge whether first identification information is consistent with second identification information;If described
One identification information is inconsistent with second identification information, it is determined that the identification information being updated;Use the mark not being updated
The identification information being updated described in information can be caused to cover.
The processing method of equipment identification information according to embodiments of the present invention, by the identification information storage of equipment in BIOS, and
The identification information of an alternate device is also stored in CMOS simultaneously, and when equipment starts, is stored in inspection BIOS and CMOS
Identification information it is whether consistent, if identification information is inconsistent, using the identification information not being updated cover described in be updated
Identification information, so as to by above-mentioned multiple protective, the storage of security information is lifted to BIOS chip layers from hard pan,
And virus is difficult to go deep into BIOS chips and goes the illegal operations such as modification information, brush machine information will not also lost, therefore, it is possible to effective
The random modification to the identification information of equipment is prevented, is maintained and the identification of machine is safeguarded, improve the safety of facility information
Property.
Second aspect present invention embodiment provide a kind of processing unit of equipment identification information, the BIOS of the equipment and
The identification information of the equipment that is stored with respectively in CMOS chip, described device includes:Read module, in the BIOS
During startup, the first identification information in the BIOS is read, and read the second mark letter in the CMOS chip
Breath;Judge module, it is whether consistent with second identification information for judging first identification information;Determining module, uses
If inconsistent with second identification information in first identification information, it is determined that the identification information being updated;Treatment mould
Block, for using the identification information being updated described in the identification information covering not being updated.
The processing unit of the equipment identification information of the embodiment of the present invention, by the identification information storage of equipment in BIOS, and simultaneously
The identification information of an alternate device is also stored in CMOS, and when equipment starts, the mark stored in inspection BIOS and CMOS
Whether knowledge information is consistent, if identification information is inconsistent, uses the mark being updated described in the identification information covering not being updated
Knowledge information, so that by above-mentioned multiple protective, the storage of security information is lifted to BIOS chip layers from hard pan, and it is sick
Poison is difficult to go deep into BIOS chips and goes the illegal operations such as modification information, brush machine information will not also lost, therefore, it is possible to effectively prevent
Random modification to the identification information of equipment, maintains and the identification of machine is safeguarded, improves the security of facility information.
Brief description of the drawings
Fig. 1 is the flow chart of the processing method of the equipment identification information according to one embodiment of the invention;
Fig. 2 is the flow chart of the processing method of the equipment identification information according to another embodiment of the present invention;
Fig. 3 is the flow chart of the modification equipment identification information according to one embodiment of the invention;
Fig. 4 is the structural representation of the processing unit of the equipment identification information according to one embodiment of the invention;
Fig. 5 is the structural representation of the processing unit of the equipment identification information according to another embodiment of the present invention.
Specific embodiment
Embodiments of the invention are described below in detail, the example of the embodiment is shown in the drawings, wherein identical from start to finish
Or similar label represents same or similar element or the element with same or like function.Retouched below with reference to accompanying drawing
The embodiment stated is exemplary, it is intended to for explaining the present invention, and be not considered as limiting the invention.
Below with reference to the accompanying drawings the treating method and apparatus of equipment identification information according to embodiments of the present invention are described.
It should be appreciated that the identification information of the equipment in the embodiment of the present invention is the information for unique mark equipment.For example,
The IMEI (International Mobile Equipment Identity, be mobile device international identity code) of mobile phone, the sequence of equipment
Row number etc..
Fig. 1 is the flow chart of the processing method of the equipment identification information according to one embodiment of the invention.
Wherein, the BIOS (Basic Input Output System, basic input output system) and CMOS of equipment
Stored respectively in (Complementary Metal Oxide Semiconductor, mos memory) chip
There is the identification information of equipment.
BIOS chips are the chip pieces on computer motherboard, the in store most important basic input/output routine of computer, are
System configuration information, enters self-check program and self-triggered program after start.Its major function is for computer provides bottom, safety
Hardware setting and control.
Specifically, before each equipment is dispatched from the factory, can be by the identification information storage of equipment in the BIOS of equipment.And by equipment
A storage of identification information copy is in CMOS chip.So as to for each equipment, in BIOS and CMOS chip
The identification information of the middle equipment that is stored with respectively.
The identification information for storing the equipment in BIOS can be described as the first identification information.Store the mark of the equipment in CMOS
Information can be described as the second identification information.
Wherein, the first identification information can be stored in nonvolatile random access memory (NVRAM, Video in BIOS
Random Access Memory) equipment management interface (DMI, Desktop Management Interface) position.
That is, the identification information storage in BIOS is stored BIOS's in the special field for meeting DMI specifications, that is,
In NVRAM.
Due to DMI positions and CMOS positions be all not to disclosed in user, therefore, by the identification information storage of equipment at this
Two positions, are difficult to be distorted by virus, are not easy to be modified by brush machine mode, and security is stronger.
As shown in figure 1, the processing method of equipment identification information according to embodiments of the present invention, including:
S101, during BIOS starts, reads the first identification information in BIOS, and read in CMOS chip the
Two identification informations.
Specifically, when equipment is in starting up, BIOS is started first.BIOS can read the of storage in its NVRAM
One identification information, and read second identification information of the storage in CMOS.
S102, judges whether the first identification information is consistent with the second identification information.
S103, if the first identification information is inconsistent with the second identification information, it is determined that the identification information being updated.
In one embodiment of the invention, the identification information of equipment has more new logo, can determine first according to more new logo
The identification information being updated in identification information and the second identification information.
For example, more new logo can be a flag identifier.By the identification information storage of equipment in BIOS or
Can be that the first identification information and the second identification information are respectively provided with a flag identifier when in CMOS.Flag identifiers have
Initial default state, if the corresponding identification information of flag identifiers is updated (such as changed), flag identifiers are by initial
Default conditions are changed to more new state.Therefore, can be according to the condition adjudgement of flag identifiers its corresponding identification information whether by more
Newly.That is, if the flag identifiers of the first identification information are more new state, the first identification information is the mark being updated
Knowledge information, the second identification information is the identification information not being updated, i.e. the first identification information is the identification information illegally distorted;
Conversely, then the second identification information is the identification information being updated, the first identification information is the identification information not being updated, i.e.,
Two identification informations are the identification information illegally distorted.
S104, the identification information being updated is covered using the identification information not being updated.
If the first identification information is the identification information being updated, the second identification information is the identification information not being updated, then use
Second identification information covers the first identification information, will the value of the first identification information be revised as the value of the second identification information.If
Second identification information is the identification information being updated, and the first identification information is the identification information not being updated, then with the first mark
The identification information of information can be caused to cover second, will the value of the second identification information be revised as the value of the first identification information.
So as to after starting every time, BIOS can ensure that the identification information in BIOS is consistent with the identification information in CMOS.
Even if the identification information of one of storage is tampered, the identification information that can be still tampered by another identification information pair is carried out
Recover.
In an embodiment of the present invention, after the completion of covering marking information, it is legal that the identification information being tampered has been reverted to
Identification information, therefore, the state of flag identifiers corresponding to the identification information that will can be updated reverts to initial default state.
The processing method of the equipment identification information of the embodiment of the present invention, by the identification information storage of equipment in BIOS, and simultaneously
The identification information of an alternate device is also stored in CMOS, and when equipment starts, the mark stored in inspection BIOS and CMOS
Whether knowledge information is consistent, if identification information is inconsistent, the mark being updated is covered using the identification information not being updated and is believed
Breath, so that by above-mentioned multiple protective, the storage of security information is lifted to BIOS chip layers from hard pan, and virus is difficult
Go the illegal operations such as modification information, brush machine information will not also lost to go deep into BIOS chips, therefore, it is possible to effectively prevent from pair setting
The random modification of standby identification information, maintains and the identification of machine is safeguarded, improves the security of facility information.
Fig. 2 is the flow chart of the processing method of the equipment identification information according to another embodiment of the present invention.
As shown in Fig. 2 the processing method of equipment identification information according to embodiments of the present invention, including:
S201, during BIOS starts, reads the first identification information in BIOS, and read in CMOS chip the
Two identification informations.
Specifically, when equipment is in starting up, BIOS is started first.BIOS can read the of storage in its NVRAM
One identification information, and read second identification information of the storage in CMOS.
S202, judges whether the first identification information is consistent with the second identification information.
S203, if the first identification information is inconsistent with the second identification information, it is determined that the identification information being updated.
In one embodiment of the invention, the identification information of equipment has more new logo, can determine first according to more new logo
The identification information being updated in identification information and the second identification information.
For example, more new logo can be a flag identifier.By the identification information storage of equipment in BIOS or
Can be that the first identification information and the second identification information are respectively provided with a flag identifier when in CMOS.Flag identifiers have
Initial default state, if the corresponding identification information of flag identifiers is updated (such as changed), flag identifiers are by initial
Default conditions are changed to more new state.Therefore, can be according to the condition adjudgement of flag identifiers its corresponding identification information whether by more
Newly.That is, if the flag identifiers of the first identification information are more new state, the first identification information is the mark being updated
Knowledge information, the second identification information is the identification information not being updated, i.e. the first identification information is the identification information illegally distorted;
Conversely, then the second identification information is the identification information being updated, the first identification information is the identification information not being updated, i.e.,
Two identification informations are the identification information illegally distorted.
S204, the identification information being updated is covered using the identification information not being updated.
If the first identification information is the identification information being updated, the second identification information is the identification information not being updated, then use
Second identification information covers the first identification information, will the value of the first identification information be revised as the value of the second identification information.If
Second identification information is the identification information being updated, and the first identification information is the identification information not being updated, then with the first mark
The identification information of information can be caused to cover second, will the value of the second identification information be revised as the value of the first identification information.
So as to after starting every time, BIOS can ensure that the identification information in BIOS is consistent with the identification information in CMOS.
Even if the identification information of one of storage is tampered, the identification information that can be still tampered by another identification information pair is carried out
Recover.
In an embodiment of the present invention, after the completion of covering marking information, it is legal that the identification information being tampered has been reverted to
Identification information, therefore, the state of flag identifiers corresponding to the identification information that will can be updated reverts to initial default state.
S205, if the first identification information is consistent with the second identification information, checks the legitimacy of the operating system of equipment.
That is, if the first identification information is consistent with the second identification information, i.e. the identification information of equipment is not tampered with, or
Person has been resumed after finding to distort, then can perform EFI (Extensible Firmware Interface, Extensible Firmware Interface)
Whether the credible startup and the certification of digital signature added in standard, the signature of checkout operating system are legal.
Specifically, BIOS starts credible startup and digital signature identification, obtains the kernel of operating system first after self-inspection startup
The ciphering signature of code.Then by the access to NVRAM to obtain the private key stored in NVRAM, using the private key pair
The ciphering signature of the kernel code of operating system is decrypted.If the signature after decryption is trusty, BIOS judges to set
Standby operating system is legal, can give operating system control, i.e., normal start-up operation system (performing S206);
Otherwise, control device shutdown (performing S207).
S206, if the operating system of equipment is legal, start-up operation system.
S207, if the operating system of equipment is illegal, control device shutdown.
In one embodiment of the invention, if the operating system of equipment is legal, BIOS opens mark letter to operating system
Breath modification authority.That is, only legal operating system can change the identification information of equipment, for illegal
Operating system, then without the authority of modified logo information.It is illegally modified therefore, it is possible to be prevented effectively from identification information.
Fig. 3 is the flow chart of the modification equipment identification information according to one embodiment of the invention.
Such as Fig. 3, modification equipment identification information according to embodiments of the present invention may include:
S301, checks the legitimacy of the operating system of equipment.
S302, if the operating system of equipment is legal, BIOS opens identification information modification authority to operating system.
S303, operating system receives identification information modification instruction, wherein, identification information modification instruction includes target identification information.
The first identification information in BIOS is revised as target identification information by S304, operating system, and by CMOS chip
Second identification information is revised as target identification information.
Thus, BIOS only opens identification information modification authority to legal operating system, can be prevented effectively from because brush machine etc. is illegal
The installed system of operation is modified to the identification information of equipment.Further increase the security of information.
Even additionally, legal operating system, in the identification information of the equipment of modification, in should changing the DMI of BIOS
Identification information, will also change the identification information in CMOS, and otherwise, when equipment starts, BIOS can judge that the modification is operated
It is illegal modifications, and starts replacement, i.e., the identification information changed is covered using the identification information do not changed.Thus, lead to
The random modification that multiple protective can effectively prevent to the identification information of equipment is crossed, is maintained and the identification of machine is safeguarded, carried
The security of facility information high.
In order to realize above-described embodiment, the present invention also proposes a kind of processing unit of equipment identification information.
Fig. 4 is the structural representation of the processing unit of the equipment identification information according to one embodiment of the invention.
Wherein, the BIOS (Basic Input Output System, basic input output system) and CMOS of equipment
Stored respectively in (Complementary Metal Oxide Semiconductor, mos memory) chip
There is the identification information of equipment.
BIOS chips are the chip pieces on computer motherboard, the in store most important basic input/output routine of computer, are
System configuration information, enters self-check program and self-triggered program after start.Its major function is for computer provides bottom, safety
Hardware setting and control.
Specifically, before each equipment is dispatched from the factory, can be by the identification information storage of equipment in the BIOS of equipment.And by equipment
A storage of identification information copy is in CMOS chip.So as to for each equipment, in BIOS and CMOS chip
The identification information of the middle equipment that is stored with respectively.
The identification information for storing the equipment in BIOS can be described as the first identification information.Store the mark of the equipment in CMOS
Information can be described as the second identification information.
Wherein, the first identification information can be stored in nonvolatile random access memory (NVRAM, Video in BIOS
Random Access Memory) equipment management interface (DMI, Desktop Management Interface) position.
That is, the identification information storage in BIOS is stored BIOS's in the special field for meeting DMI specifications, that is,
In NVRAM.
Due to DMI positions and CMOS positions be all not to disclosed in user, therefore, by the identification information storage of equipment at this
Two positions, are difficult to be distorted by virus, are not easy to be modified by brush machine mode, and security is stronger.
As shown in figure 4, the processing unit of equipment identification information according to embodiments of the present invention, including:Read module 10, judgement
Module 20, determining module 30 and processing module 40.
Specifically, read module 10 is used to during BIOS starts, read the first identification information in BIOS, and read
The second identification information in CMOS chip.
More specifically, when equipment is in starting up, read module 10 can read first mark of the storage in its NVRAM
Information, and read second identification information of the storage in CMOS.
Judge module 20 is used to judge whether the first identification information is consistent with the second identification information.
If it is inconsistent with the second identification information that determining module 30 is used for the first identification information, it is determined that the identification information being updated.
In one embodiment of the invention, the identification information of equipment has more new logo, and determining module 30 can be marked according to updating
Know the identification information for determining to be updated in the first identification information and the second identification information.
For example, more new logo can be a flag identifier.By the identification information storage of equipment in BIOS or
Can be that the first identification information and the second identification information are respectively provided with a flag identifier when in CMOS.Flag identifiers have
Initial default state, if the corresponding identification information of flag identifiers is updated (such as changed), flag identifiers are by initial
Default conditions are changed to more new state.Accordingly, it is determined that module 30 its corresponding mark can be believed according to the condition adjudgement of flag identifiers
Whether breath is updated.That is, if the flag identifiers of the first identification information are more new state, the first identification information is
The identification information being updated, the second identification information is the identification information not being updated, i.e. the first identification information is illegally to be distorted
Identification information;Conversely, then the second identification information is the identification information being updated, the first identification information is the mark not being updated
Knowledge information, i.e. the second identification information are the identification information illegally distorted.
Processing module 40 is used to be covered using the identification information not being updated the identification information being updated.
If the first identification information is the identification information being updated, the second identification information is the identification information not being updated, then locate
Reason module 40 second identification information the first identification information of covering, will the value of the first identification information be revised as the second identification information
Value.If the second identification information is the identification information being updated, the first identification information is the identification information not being updated, then
Processing module 40 with the first identification information cover the second identification information, will the second identification information value be revised as the first mark letter
The value of breath.
So as to after starting every time, BIOS can ensure that the identification information in BIOS is consistent with the identification information in CMOS.
Even if the identification information of one of storage is tampered, the identification information that can be still tampered by another identification information pair is carried out
Recover.
In an embodiment of the present invention, after the completion of covering marking information, it is legal that the identification information being tampered has been reverted to
Identification information, therefore, the state of flag identifiers corresponding to the identification information that will can be updated reverts to initial default state.
The processing unit of the equipment identification information of the embodiment of the present invention, by the identification information storage of equipment in BIOS, and simultaneously
The identification information of an alternate device is also stored in CMOS, and when equipment starts, the mark stored in inspection BIOS and CMOS
Whether knowledge information is consistent, if identification information is inconsistent, the mark being updated is covered using the identification information not being updated and is believed
Breath, so that by above-mentioned multiple protective, the storage of security information is lifted to BIOS chip layers from hard pan, and virus is difficult
Go the illegal operations such as modification information, brush machine information will not also lost to go deep into BIOS chips, therefore, it is possible to effectively prevent from pair setting
The random modification of standby identification information, maintains and the identification of machine is safeguarded, improves the security of facility information.
Fig. 5 is the structural representation of the processing unit of the equipment identification information according to another embodiment of the present invention.
As shown in figure 5, the processing unit of equipment identification information according to embodiments of the present invention, including:Read module 10, judgement
Module 20, determining module 30, processing module 40, inspection module 50 and control module 60.
Specifically, read module 10, judge module 20, determining module 30 and processing module 40 can refer to embodiment illustrated in fig. 4.
Inspection module 50 is used to be checked when the first identification information is consistent with the second identification information the legal of the operating system of equipment
Property.
That is, if the first identification information is consistent with the second identification information, i.e. the identification information of equipment is not tampered with, or
Person has been resumed after finding to distort, then inspection module 50 can perform EFI (Extensible Firmware Interface, can expand
Exhibition firmware interface) the credible startup that adds in standard and the certification of digital signature, whether the signature of checkout operating system legal.
Specifically, BIOS starts credible startup and digital signature identification, and after self-inspection startup, inspection module 50 is grasped first
Make the ciphering signature of the kernel code of system.Then by the access to NVRAM to obtain the private key stored in NVRAM,
The ciphering signature of the kernel code of operating system is decrypted using the private key.If the signature after decryption is trusty,
Then BIOS judges that the operating system of equipment is legal, and otherwise, the operating system for judging equipment is illegal.
Control module 60 be used for when the operating system of equipment is legal, start-up operation system, and equipment operating system not
When legal, control device shutdown.
If the operating system of equipment is legal, control module 60 can give operating system control, i.e., normal start-up operation
System;If the operating system of equipment is illegal, the shutdown of the control device of control module 60.
In one embodiment of the invention, if the operating system of equipment is legal, BIOS opens mark letter to operating system
Breath modification authority.That is, only legal operating system can change the identification information of equipment, for illegal
Operating system, then without the authority of modified logo information.It is illegally modified therefore, it is possible to be prevented effectively from identification information.
In one embodiment of the invention, operating system can receive identification information modification instruction, wherein, identification information modification
Instruction includes target identification information;Then the first identification information in BIOS can be revised as target identification information by operating system,
And the second identification information in CMOS chip is revised as target identification information.
Thus, BIOS only opens identification information modification authority to legal operating system, can be prevented effectively from because brush machine etc. is illegal
The installed system of operation is modified to the identification information of equipment.Further increase the security of information.
Even additionally, legal operating system, in the identification information of the equipment of modification, in should changing the DMI of BIOS
Identification information, will also change the identification information in CMOS, and otherwise, when equipment starts, BIOS can judge that the modification is operated
It is illegal modifications, and starts replacement, i.e., the identification information changed is covered using the identification information do not changed.Thus, lead to
The random modification that multiple protective can effectively prevent to the identification information of equipment is crossed, is maintained and the identification of machine is safeguarded, carried
The security of facility information high.
In the description of the invention, it is to be understood that term " " center ", " longitudinal direction ", " transverse direction ", " length ", " width ",
" thickness ", " on ", D score, "front", "rear", "left", "right", " vertical ", " level ", " top ", " bottom " " interior ", " outward ",
The orientation or position relationship of the instruction such as " clockwise ", " counterclockwise ", " axial direction ", " radial direction ", " circumference " are based on shown in the drawings
Orientation or position relationship, are for only for ease of the description present invention and simplify and describe, rather than indicate or imply signified device or
Element with specific orientation, with specific azimuth configuration and operation, therefore must be not considered as limiting the invention.
Additionally, term " first ", " second " be only used for describe purpose, and it is not intended that indicate or imply relative importance or
Person implies the quantity of the technical characteristic for indicating indicated.Thus, define " first ", the feature of " second " can express or
Implicitly include at least one this feature.In the description of the invention, " multiple " is meant that at least two, such as two,
Three etc., unless otherwise expressly limited specifically.
In the present invention, unless otherwise clearly defined and limited, the art such as term " installation ", " connected ", " connection ", " fixation "
Language should be interpreted broadly, for example, it may be fixedly connected, or be detachably connected, or integrally;Can be machinery
Connection, or electrical connection;Can be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two units
Connection or two interaction relationships of element inside part, unless otherwise clearly restriction.For the ordinary skill of this area
For personnel, above-mentioned term concrete meaning in the present invention can be as the case may be understood.
In the present invention, unless otherwise clearly defined and limited, fisrt feature second feature " on " or D score can be
One and second feature directly contact, or the first and second features pass through intermediary mediate contact.And, fisrt feature is
Two features " on ", " top " and " above " but fisrt feature are directly over second feature or oblique upper, or are merely representative of first
Characteristic level is highly higher than second feature.Fisrt feature second feature " under ", " lower section " and " below " can be fisrt feature
Immediately below second feature or obliquely downward, or fisrt feature level height is merely representative of less than second feature.
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specific example ",
Or the description of " some examples " etc. means to combine specific features, structure, material or feature bag that the embodiment or example are described
It is contained at least one embodiment of the invention or example.In this manual, to the schematic representation of above-mentioned term necessarily
It is directed to identical embodiment or example.And, the specific features of description, structure, material or feature can be any
Combined in an appropriate manner in individual or multiple embodiments or example.Additionally, in the case of not conflicting, the skill of this area
Can be combined for the feature of the different embodiments or example described in this specification and different embodiments or example by art personnel
And combination.
Although embodiments of the invention have been shown and described above, it is to be understood that above-described embodiment be it is exemplary,
It is not considered as limiting the invention, one of ordinary skill in the art within the scope of the invention can be to above-described embodiment
It is changed, changes, replacing and modification.
Claims (12)
1. a kind of processing method of equipment identification information, it is characterised in that in the BIOS and CMOS chip of the equipment respectively
The identification information of the equipment that is stored with, the described method comprises the following steps:
During the BIOS starts, the first identification information in the BIOS is read, and read the CMOS chip
In the second identification information;
Judge whether first identification information is consistent with second identification information;
If first identification information is inconsistent with second identification information, it is determined that the identification information being updated;
Use the identification information being updated described in the identification information covering not being updated.
2. the processing method of equipment identification information as claimed in claim 1, it is characterised in that wherein, the mark of the equipment
Knowledge information has more new logo, determines first identification information with quilt in second identification information according to the more new logo
The identification information of renewal.
3. the processing method of equipment identification information as claimed in claim 1, it is characterised in that also include:
If first identification information is consistent with second identification information, check the equipment operating system it is legal
Property;
If the operating system of the equipment is legal, start the operating system;
If the operating system of the equipment is illegal, the equipment is controlled to shut down.
4. the processing method of equipment identification information as claimed in claim 3, it is characterised in that also include:
If the operating system of the equipment is legal, the BIOS opens identification information modification authority to the operating system.
5. the processing method of equipment identification information as claimed in claim 4, it is characterised in that also include:
The operating system receives identification information modification instruction, wherein, the identification information modification instruction includes that target identification is believed
Breath;
The first identification information in the BIOS is revised as the target identification information by the operating system, and will be described
The second identification information in CMOS chip is revised as the target identification information.
6. the processing method of the equipment identification information as described in claim any one of 1-5, it is characterised in that first mark
Know the equipment management interface DMI positions of nonvolatile random access memory NVRAM of the information Store in the BIOS.
7. a kind of processing unit of equipment identification information, it is characterised in that in the BIOS and CMOS chip of the equipment respectively
The identification information of the equipment that is stored with, described device includes:
Read module, during starting in the BIOS, reads the first identification information in the BIOS, and read
The second identification information in the CMOS chip;
Judge module, it is whether consistent with second identification information for judging first identification information;
Determining module, if inconsistent with second identification information for first identification information, it is determined that be updated
Identification information;
Processing module, for using the identification information being updated described in the identification information covering not being updated.
8. the processing unit of equipment identification information as claimed in claim 7, it is characterised in that wherein, the mark of the equipment
Knowledge information has more new logo, and the determining module more new logo according to determines first identification information and described second
The identification information being updated in identification information.
9. the processing unit of equipment identification information as claimed in claim 7, it is characterised in that also include:
Inspection module, for when first identification information is consistent with second identification information, checking the behaviour of the equipment
Make the legitimacy of system;
Control module, for the operating system in the equipment it is legal when, start the operating system, and in the equipment
Operating system it is illegal when, control equipment shutdown.
10. the processing unit of equipment identification information as claimed in claim 9, it is characterised in that
If the operating system of the equipment is legal, the BIOS opens identification information modification authority to the operating system.
The processing unit of 11. equipment identification informations as claimed in claim 10, it is characterised in that
The operating system receives identification information modification instruction, wherein, the identification information modification instruction includes that target identification is believed
Breath;
The first identification information in the BIOS is revised as the target identification information by the operating system, and will be described
The second identification information in CMOS chip is revised as the target identification information.
The processing unit of 12. equipment identification information as described in claim any one of 7-11, it is characterised in that described first
Equipment management interface DMI of nonvolatile random access memory NVRAM of the identification information storage in the BIOS
Put.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510872470.1A CN106815531A (en) | 2015-12-02 | 2015-12-02 | The treating method and apparatus of equipment identification information |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510872470.1A CN106815531A (en) | 2015-12-02 | 2015-12-02 | The treating method and apparatus of equipment identification information |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106815531A true CN106815531A (en) | 2017-06-09 |
Family
ID=59108687
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510872470.1A Pending CN106815531A (en) | 2015-12-02 | 2015-12-02 | The treating method and apparatus of equipment identification information |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106815531A (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111159717A (en) * | 2019-12-25 | 2020-05-15 | 合肥联宝信息技术有限公司 | Starting method and device for electronic equipment |
CN112311751A (en) * | 2020-03-23 | 2021-02-02 | 尼尔森网联媒介数据服务有限公司 | Method and device for verifying terminal, storage medium and electronic equipment |
CN112448819A (en) * | 2020-11-06 | 2021-03-05 | 支付宝(杭州)信息技术有限公司 | Method and device for generating verification and signature files of Internet of things equipment |
CN113127844A (en) * | 2021-03-24 | 2021-07-16 | 山东英信计算机技术有限公司 | Variable access method, device, system, equipment and medium |
CN113360165A (en) * | 2021-05-28 | 2021-09-07 | 浪潮电子信息产业股份有限公司 | BIOS updating method and device |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101165696A (en) * | 2006-10-16 | 2008-04-23 | 中国长城计算机深圳股份有限公司 | Safety identification method based on safe computer |
CN101464933A (en) * | 2007-12-18 | 2009-06-24 | 中国长城计算机深圳股份有限公司 | BIOS write protection method and system |
CN102855421A (en) * | 2011-06-30 | 2013-01-02 | 研祥智能科技股份有限公司 | Method for protecting BIOS (basic input and output system) program from being embezzled, basic input and output system and computing device |
CN103106083A (en) * | 2011-11-09 | 2013-05-15 | 北京市三希电子科技开发公司 | Loading method and loading device of firmware |
CN104424047A (en) * | 2013-08-20 | 2015-03-18 | 研祥智能科技股份有限公司 | NVRAM data recovery method and NVRAM data recovery device |
CN104572168A (en) * | 2014-09-10 | 2015-04-29 | 中电科技(北京)有限公司 | BIOS (Basic Input/Output System) self-updating protection system and BIOS self-updating protection method |
-
2015
- 2015-12-02 CN CN201510872470.1A patent/CN106815531A/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101165696A (en) * | 2006-10-16 | 2008-04-23 | 中国长城计算机深圳股份有限公司 | Safety identification method based on safe computer |
CN101464933A (en) * | 2007-12-18 | 2009-06-24 | 中国长城计算机深圳股份有限公司 | BIOS write protection method and system |
CN102855421A (en) * | 2011-06-30 | 2013-01-02 | 研祥智能科技股份有限公司 | Method for protecting BIOS (basic input and output system) program from being embezzled, basic input and output system and computing device |
CN103106083A (en) * | 2011-11-09 | 2013-05-15 | 北京市三希电子科技开发公司 | Loading method and loading device of firmware |
CN104424047A (en) * | 2013-08-20 | 2015-03-18 | 研祥智能科技股份有限公司 | NVRAM data recovery method and NVRAM data recovery device |
CN104572168A (en) * | 2014-09-10 | 2015-04-29 | 中电科技(北京)有限公司 | BIOS (Basic Input/Output System) self-updating protection system and BIOS self-updating protection method |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111159717A (en) * | 2019-12-25 | 2020-05-15 | 合肥联宝信息技术有限公司 | Starting method and device for electronic equipment |
CN112311751A (en) * | 2020-03-23 | 2021-02-02 | 尼尔森网联媒介数据服务有限公司 | Method and device for verifying terminal, storage medium and electronic equipment |
CN112448819A (en) * | 2020-11-06 | 2021-03-05 | 支付宝(杭州)信息技术有限公司 | Method and device for generating verification and signature files of Internet of things equipment |
CN113127844A (en) * | 2021-03-24 | 2021-07-16 | 山东英信计算机技术有限公司 | Variable access method, device, system, equipment and medium |
CN113360165A (en) * | 2021-05-28 | 2021-09-07 | 浪潮电子信息产业股份有限公司 | BIOS updating method and device |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100514344C (en) | Safety identification method based on safe computer | |
CN106815531A (en) | The treating method and apparatus of equipment identification information | |
KR101888712B1 (en) | Protecting operating system configuration values | |
KR102183852B1 (en) | Method for integrity verification of electronic device, machine-readable storage medium and electronic device | |
US20090288161A1 (en) | Method for establishing a trusted running environment in the computer | |
CN101458743A (en) | Method for protecting computer system | |
US20090193211A1 (en) | Software authentication for computer systems | |
US20040003273A1 (en) | Sleep protection | |
EP2926249B1 (en) | Preboot environment with system security check | |
US20030196100A1 (en) | Protection against memory attacks following reset | |
US20080278285A1 (en) | Recording device | |
CN102630320A (en) | Information processing device and method for preventing unauthorized application cooperation | |
TW201500960A (en) | Detection of secure variable alteration in a computing device equipped with unified extensible firmware interface (UEFI)-compliant firmware | |
US10742412B2 (en) | Separate cryptographic keys for multiple modes | |
CN111159762B (en) | Subject credibility verification method and system under mandatory access control | |
JP2007034875A (en) | Use management method for peripheral, electronic system and constituent device therefor | |
CN104834840B (en) | Cipher code protection method based on mapping drift technology | |
US20120284499A1 (en) | Method and apparatus with chipset-based protection for local and remote authentication of booting from peripheral devices | |
CN100504897C (en) | Method for starting protected partition | |
CN105678162A (en) | TPM-based operating system secure boot control method | |
CN103914664A (en) | Controller and control method having interior memory bank protecting function | |
JP2008192126A (en) | Information processor and program | |
US8375460B2 (en) | Electronic device and method of protecting software | |
CN104361280B (en) | A kind of method realizing carrying out authentic authentication to USB storage device by SMI interrupt | |
JP2007148762A (en) | External storage device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170609 |
|
RJ01 | Rejection of invention patent application after publication |