CN107590383A - A kind of main password protecting System and method for based on SOC - Google Patents
A kind of main password protecting System and method for based on SOC Download PDFInfo
- Publication number
- CN107590383A CN107590383A CN201710760275.9A CN201710760275A CN107590383A CN 107590383 A CN107590383 A CN 107590383A CN 201710760275 A CN201710760275 A CN 201710760275A CN 107590383 A CN107590383 A CN 107590383A
- Authority
- CN
- China
- Prior art keywords
- password
- main
- soc
- main frame
- usb interface
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 14
- 238000012545 processing Methods 0.000 claims abstract description 10
- 230000005540 biological transmission Effects 0.000 claims description 4
- 238000012986 modification Methods 0.000 claims description 3
- 230000004048 modification Effects 0.000 claims description 3
- 238000004891 communication Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000009738 saturating Methods 0.000 description 1
Abstract
A kind of main password protecting system and method based on SOC, the guard system is connected between main frame and keyboard, the guard system includes guard system hardware components and guard system software section, the guard system hardware components include SOC, front end USB interface, PS/2 interfaces, the SD card and rear end USB interface of encryption storage account password file, the SOC connects front end USB interface, PS/2 interfaces, SD card and rear end USB interface respectively, the front end USB interface, PS/2 interfaces connection keyboard, the rear end USB interface connect main frame.Compared with prior art, input through keyboard is will not to be sent to main frame by independent hardware system processing, input master key in the present invention, and main frame can not obtain main password, even if attacker's control main frame system, can not also obtain main password;Account password file is to be stored in an encrypted form in SD card, and attacker can not obtain main password, it is ensured that the various accounts and the security of password stored in Password Management instrument, so that it cannot decryption file.
Description
Technical field
The present invention relates to Host Security technical field, more particularly to a kind of main password protecting System and method for based on SOC.
Background technology
With the development of internet, user has various account numbers and password on the different website in internet, in order to effectively manage
These accounts and password are managed, usually using Password Management tool management account number and password.Password Management instrument provides account and close
Code management function, user can add all kinds account and password, to encrypt document form storage in systems, these passwords
By a main cryptoguard, if attacker grasps this main password, it is possible to access the various passwords of user, therefore master is close
The security of code is most important.
Attacker obtains main password, and main attack meanses are the hidden installation key logging programs on main frame, and record is used
The main password of family input through keyboard, by main password, decryption obtains other accounts and password.It is existing close after attacker's control main frame
Code management tool is unable to reach the various accounts of protection storage and the needs of password.
The content of the invention
Present invention aims at a kind of main password protecting System and method for based on SOC is provided, to solve in the prior art
The master key of main frame it is under attack it is decrypted after, the various accounts and password of Password Management instrument protection storage can not be ensured
The technical bug of safety.
The technical proposal of the invention is realized in this way:
A kind of main password protecting system based on SOC, the guard system are connected between main frame and keyboard, the protection system
System includes guard system hardware components and guard system software section, and the guard system hardware components include SOC, front end
USB interface, PS/2 interfaces, the SD card and rear end USB interface of encryption storage account password file, the SOC connect respectively
Front end USB interface, PS/2 interfaces, SD card and rear end USB interface are connect, the front end USB interface, PS/2 interfaces connect keyboard,
The rear end USB interface connects main frame, the SOC be integrated with CPU module, FLASH modules, RAM module, RTC block,
RS232 modules, USB HOST modules and USB SLAVE modules.
Preferably, the guard system software section include main program module, message processing module, interface administration module and
Password Management module, the main program module realize guard system initialization, task poll and pattern switching;At the message
Reason module realizes key information parsing, modification and forwarding capability;Interface administration module realizes USB, PS/2 and SD card interface number
According to reception, transmission and processing;The Password Management module realizes that main password sets, updates and verified and decrypts account password
File.
Preferably, the pattern switching includes normal mode and protected mode, and the normal mode is:Input through keyboard is saturating
Pass, all input through keyboard are forwarded directly to host USB interface;The protected mode refers to that input through keyboard is not forwarded to main frame USB,
Input content is handled by SOC, is prompted to input main cryptographic processes, is judged the master key correctness of input, it is close to decrypt account
Code file, obtains various accounts and password, is pushed to main frame input frame, selects to input for user.
Present invention also offers a kind of main password protecting method based on SOC, comprise the following steps:
1) main password protecting system is serially accessed between keyboard and main frame, pattern switching is normal mode, all keyboards
Input is forwarded directly to host USB interface;
2) when entering main frame and accessing different internet sites, account and password need to be inputted, mouse picking is to inputting text
This frame;
3) protected mode is switched to using main program module;
4) main frame pop-up dialogue box, prompts input master key, and user inputs master key;
5) after judging that master key is correct, the account password file in SD card is decrypted by SOC, obtaining needs what is accessed
Internet sites account password;
6) account password is pushed to main frame inputting display interface, confirms that selection needs the internet site accessed by button
Point;
7) after being successfully entered the internet sites of access, it is switched to normal mode.
Compared with prior art, the present invention has following beneficial effect:
The cipher key service System and method for based on multiple terminals communication of the present invention, USB interface-based main password protecting system
System, input through keyboard are will not to be sent to main frame by independent hardware system processing, input master key, and it is close that main frame can not obtain master
Code, even if attacker's control main frame system, can not also obtain main password;Account password file is to be stored in SD card in an encrypted form
In, attacker can not obtain main password, it is ensured that the various accounts and the security of password stored in Password Management instrument, so that
In file can not be decrypted;In addition, guard system is serially connected between keyboard and main frame, in the normal mode, for the various operations of main frame
There is no any influence.
Brief description of the drawings
Fig. 1 is the theory diagram of the main password protecting system of the invention based on SOC;
Fig. 2 is the structure diagram of the main password protecting system of the invention based on SOC;
Fig. 3 is the flow chart of the main password protecting method of the invention based on SOC.
In figure:Guard system 100, main frame 200, keyboard 300, guard system hardware components 310, guard system software section
320。
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the present invention is clearly and completely described.
As shown in Figure 1 and Figure 2, a kind of main password protecting system based on SOC, the guard system 100 are connected to main frame
Between 200 and keyboard 300, the guard system 100 includes guard system hardware components 310 and guard system software section 320, institute
State guard system hardware components 310 and store account password file including SOC, front end USB interface, PS/2 interfaces, encryption
SD card and rear end USB interface, the SOC connect front end USB interface, PS/2 interfaces, SD card and rear end USB and connect respectively
Mouthful, the front end USB interface, PS/2 interfaces connection keyboard, the rear end USB interface connect main frame, and the SOC is integrated with
CPU module, FLASH modules, RAM module, RTC block, RS232 modules, USB HOST modules and USB SLAVE modules.Institute
State guard system 100 and the uclinux operating systems cut can be selected, operating system is in SOC.
The guard system software section 320 includes main program module, message processing module, interface administration module and password
Management module, the main program module realize guard system initialization, task poll and pattern switching;The Message Processing mould
Block realizes key information parsing, modification and forwarding capability;Interface administration module realizes that USB, PS/2 and SD card interface data connect
Sending and receiving are sent and handled;The Password Management module realizes that main password sets, updates and verified and decryption account password is literary
Part.
The pattern switching includes normal mode and protected mode, and the normal mode is:Input through keyboard transparent transmission, own
Input through keyboard is forwarded directly to host USB interface;The protected mode refers to that input through keyboard is not forwarded to main frame USB, in input
Appearance is handled by SOC, is prompted to input main cryptographic processes, is judged the master key correctness of input, decrypts account password file,
Various accounts and password are obtained, is pushed to main frame input frame, selects to input for user.
As shown in figure 3, present invention also offers a kind of main password protecting method based on SOC, comprise the following steps:
1) main password protecting system is serially accessed between keyboard and main frame, pattern switching is normal mode, all keyboards
Input is forwarded directly to host USB interface;
2) when entering main frame and accessing different internet sites, account and password need to be inputted, mouse picking is to inputting text
This frame;
3) protected mode is switched to using main program module;
4) main frame pop-up dialogue box, prompts input master key, and user inputs master key;
5) after judging that master key is correct, the account password file in SD card is decrypted by SOC, obtaining needs what is accessed
Internet sites account password;
6) account password is pushed to main frame inputting display interface, confirms that selection needs the internet site accessed by button
Point;
7) after being successfully entered the internet sites of access, it is switched to normal mode.
Knowable to the structure and principle of the comprehensive present invention, cipher key service system and side of the invention based on multiple terminals communication
Method, USB interface-based main password protecting system, input through keyboard are that input master key will not by independent hardware system processing
Main frame is sent to, main frame can not obtain main password, even if attacker's control main frame system, can not also obtain main password;Account is close
Code file is to be stored in an encrypted form in SD card, and attacker can not obtain main password, it is ensured that be stored in Password Management instrument
Various accounts and password security, so that it cannot decryption file;In addition, guard system is serially connected between keyboard and main frame,
In the normal mode, for the various no any influences of operation of main frame.
Claims (4)
- A kind of 1. main password protecting system based on SOC, it is characterised in that the guard system be connected to main frame and keyboard it Between, the guard system includes guard system hardware components and guard system software section, and the guard system hardware components include SOC, front end USB interface, PS/2 interfaces, the SD card and rear end USB interface of encryption storage account password file, it is described SOC connects front end USB interface, PS/2 interfaces, SD card and rear end USB interface, the front end USB interface, PS/2 respectively Interface connects keyboard, and the rear end USB interface connects main frame, and the SOC is integrated with CPU module, FLASH modules, RAM moulds Block, RTC block, RS232 modules, USB HOST modules and USB SLAVE modules.
- 2. the main password protecting system based on SOC as claimed in claim 1, it is characterised in that the guard system software portion Dividing includes main program module, message processing module, interface administration module and Password Management module, and the main program module is realized anti- Protecting system initialization, task poll and pattern switching;The message processing module is realized key information parsing, modification and turned Send out function;Interface administration module realizes USB, PS/2 and SD card interface data receiver, transmission and processing;The Password Management mould Block realizes that main password sets, updates and verified and decrypts account password file.
- 3. the main password protecting system based on SOC as claimed in claim 2, it is characterised in that the pattern switching is included just Norm formula and protected mode, the normal mode are:Input through keyboard transparent transmission, all input through keyboard are forwarded directly to main frame USB Interface;The protected mode refers to that input through keyboard is not forwarded to main frame USB, and input content is handled by SOC, prompts input master Cryptographic processes, judge the master key correctness of input, decrypt account password file, obtain various accounts and password, be pushed to Main frame input frame, select to input for user.
- A kind of 4. main password protecting method based on SOC, it is characterised in that comprise the following steps:1) main password protecting system is serially accessed between keyboard and main frame, pattern switching is normal mode, all input through keyboard It is forwarded directly to host USB interface;2) when entering main frame and accessing different internet sites, account and password need to be inputted, mouse picking is to inputting text box;3) protected mode is switched to using main program module;4) main frame pop-up dialogue box, prompts input master key, and user inputs master key;5) after judging that master key is correct, the account password file in SD card is decrypted by SOC, obtains the interconnection for needing to access Web site account password;6) account password is pushed to main frame inputting display interface, confirms that selection needs the internet sites accessed by button;7) after being successfully entered the internet sites of access, it is switched to normal mode.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710760275.9A CN107590383A (en) | 2017-08-30 | 2017-08-30 | A kind of main password protecting System and method for based on SOC |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710760275.9A CN107590383A (en) | 2017-08-30 | 2017-08-30 | A kind of main password protecting System and method for based on SOC |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107590383A true CN107590383A (en) | 2018-01-16 |
Family
ID=61051365
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710760275.9A Pending CN107590383A (en) | 2017-08-30 | 2017-08-30 | A kind of main password protecting System and method for based on SOC |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107590383A (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101236591A (en) * | 2007-01-31 | 2008-08-06 | 联想(北京)有限公司 | Method, terminal and safe chip for guaranteeing critical data safety |
| CN101593254A (en) * | 2008-05-26 | 2009-12-02 | 联想(北京)有限公司 | A kind of notebook computer secured inputting method and system |
| CN101933315A (en) * | 2007-08-08 | 2010-12-29 | 黄金富 | The keyboard for encrypting and authenticating against trojan horse with one time key |
| CN102201044A (en) * | 2011-04-08 | 2011-09-28 | 山东华芯半导体有限公司 | Universal serial bus (USB) security key |
| CN102419805A (en) * | 2011-11-22 | 2012-04-18 | 中兴通讯股份有限公司 | Terminal equipment and method for encrypting user information |
| CN104636682A (en) * | 2015-02-09 | 2015-05-20 | 上海瀚银信息技术有限公司 | Password management system and method based on hardware device |
-
2017
- 2017-08-30 CN CN201710760275.9A patent/CN107590383A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101236591A (en) * | 2007-01-31 | 2008-08-06 | 联想(北京)有限公司 | Method, terminal and safe chip for guaranteeing critical data safety |
| CN101933315A (en) * | 2007-08-08 | 2010-12-29 | 黄金富 | The keyboard for encrypting and authenticating against trojan horse with one time key |
| CN101593254A (en) * | 2008-05-26 | 2009-12-02 | 联想(北京)有限公司 | A kind of notebook computer secured inputting method and system |
| CN102201044A (en) * | 2011-04-08 | 2011-09-28 | 山东华芯半导体有限公司 | Universal serial bus (USB) security key |
| CN102419805A (en) * | 2011-11-22 | 2012-04-18 | 中兴通讯股份有限公司 | Terminal equipment and method for encrypting user information |
| CN104636682A (en) * | 2015-02-09 | 2015-05-20 | 上海瀚银信息技术有限公司 | Password management system and method based on hardware device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108322461B (en) | Method, system, device, equipment and medium for automatically logging in application program | |
| US20210377038A1 (en) | Method and apparatus for processing privacy data of block chain, device, and storage medium | |
| US7587608B2 (en) | Method and apparatus for storing data on the application layer in mobile devices | |
| CN111737366B (en) | Private data processing method, device, equipment and storage medium of block chain | |
| US7366916B2 (en) | Method and apparatus for an encrypting keyboard | |
| CN101051904B (en) | Method for landing by account number cipher for protecting network application sequence | |
| CN109921894B (en) | Data transmission encryption method and device, storage medium and server | |
| CN101072100B (en) | Authenticating system and method utilizing reliable platform module | |
| CN107615294A (en) | A kind of identifying code short message display method and mobile terminal | |
| TW201539247A (en) | Password input and verification method and system thereof | |
| US10291599B2 (en) | Systems, methods and apparatus for keystroke encryption | |
| CN111178884A (en) | Information processing method, device, equipment and readable storage medium | |
| KR102490490B1 (en) | Method and device for magnetic disk encryption protection | |
| CN101593252A (en) | Control method and system that a kind of computing machine conducts interviews to USB device | |
| CN100334519C (en) | Method for establishing credible input-output channels | |
| CN104573591A (en) | Safe card reader and working method thereof | |
| US10735409B2 (en) | Authenication stick | |
| CN104933361A (en) | Device and method for protecting login password | |
| US10878114B2 (en) | Software handling device, server system and methods thereof | |
| CN207458059U (en) | A kind of main password protecting system based on SOC | |
| CN107590383A (en) | A kind of main password protecting System and method for based on SOC | |
| CN102664887A (en) | Input information protecting method, device and system | |
| US9477822B1 (en) | Secure password entry for accessing remote online services | |
| CN103810596A (en) | Identification of reserved verification information | |
| CN103179088A (en) | Protection method and protection system of common gateway interface business |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180116 |