CN107679424A - A kind of PCIE turns SATA cipher cards and system - Google Patents
A kind of PCIE turns SATA cipher cards and system Download PDFInfo
- Publication number
- CN107679424A CN107679424A CN201710875899.5A CN201710875899A CN107679424A CN 107679424 A CN107679424 A CN 107679424A CN 201710875899 A CN201710875899 A CN 201710875899A CN 107679424 A CN107679424 A CN 107679424A
- Authority
- CN
- China
- Prior art keywords
- data
- module
- pcie
- sata
- main frame
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/72—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Abstract
The present invention provides a kind of PCIE and turns SATA cipher cards and system, main frame is decomposed data file according to the quantity of encrypting module, resolve into the data block that quantity matches with encrypting module quantity, data block turns SATA bridge piece by PCIE and is transferred in encrypting module, makes each encrypting module that a data block be encrypted;Each encrypting module is respectively equipped with main control module, and PCIE turns to reserve encrypting module placement space on SATA cipher cards, and user can place the encrypting module of one and the above as needed, and the later stage also can be according to being actually needed increase corresponding encryption module.Because each encrypting module can be as independent arithmetic element, therefore when carrying out the encryption and decryption processing of data, it can coordinate with main frame, split data into multi-group data, and every group of data are individually delivered into an encrypting module and carry out computing, so as to when completing once-through operation, multi-group data parallel processing, improve data operation ability.
Description
Technical field
The present invention relates to encrypted card field, more particularly to a kind of PCIE to turn SATA cipher cards and system.
Background technology
Along with the increasingly innovation of information technology, various industries, such as financial industry, Enterprise's Electronic Commercial, government's electronics political affairs
The industry fields such as business all obtain rapid development on the basis of Internet technology development, the interaction of these industries and realm information
It is required for carrying out by network.Information data is easily illegally stolen or destroyed in network transmission process, in above-mentioned industry again
There are many sensitive informations and data, it is therefore desirable to which special protection is carried out to data.
The encrypted card mainly access host in the form of PCIE or pci interface at present, data communication only by PCIE or
PCIE interface channels are transmitted.Design principle used in the type encrypted card is that FPGA+DSP mode is realized, its
Middle DSP carries out the calculating operation of real data, and FPGA realizes PCIE datapath function and part auxiliary computing function.PCIE
Interface ciphering card shortcoming is that do not possess autgmentability, using the encrypted card of PCIE interfaces because of the limitation of its realization principle, can not be realized
100MB/S is demarcated as to the expansion of its performance, such as symmetrical encryption/decryption speed on single encrypted card, then when user needs plus solves
When close speed is 200MB/S, single encrypted card can not then be realized.Development difficulty is big, and the realization must connect to PCIE or pci bus
Mouth and FPGA have more deep understanding, but these technology specialty difficulty are higher, and development difficulty is larger.
The content of the invention
In order to overcome above-mentioned deficiency of the prior art, the present invention provides a kind of PCIE and turns SATA cipher cards, including:It is multiple
Encrypting module, PCIE turn SATA bridge piece;
Multiple encrypting modules turn the communication connection of SATA bridge piece with PCIE respectively, and PCIE turns SATA bridge piece and is connected with main frame, and main frame will
Data file is decomposed according to the quantity of encrypting module, resolves into the data block that quantity matches with encrypting module quantity, number
Turn SATA bridge piece by PCIE according to block to be transferred in encrypting module, make each encrypting module that a data block be encrypted;
Each encrypting module is respectively equipped with main control module, and main control module is used for the AES of predetermined encryption module, and controls respectively
Data are encrypted encrypting module processed.
Preferably, main control module includes:Primary processor, coprocessor, data buffer zone, with primary processor and coprocessor
The peripheral control circuits of connection;
Primary processor turns whether SATA bridge piece has main frame connection for detecting PCIE, is to have master when detecting that PCIE turns SATA bridge piece
When machine connects, the data block of main frame transmission is obtained, the data buffering of data block adds into data buffer zone, and by what main frame needed
Close algorithm notifies coprocessor, while data in data buffer zone are sent into coprocessor, and coprocessor is to reception
Data block carries out encryption and decryption computing, and after the completion of computing, to be placed into data buffer zone medium by encryption and decryption completion data for primary processor
Treat that main frame receives;After main frame sends reception request, data are sent to main frame from data buffer zone.
A kind of PCIE turns SATA cryptographic systems, including:Main frame and PCIE turn SATA cipher cards;
PCIE turns SATA cipher cards and turns SATA bridge piece by PCIE to be connected with main frame;
Main frame includes:Data disassemble module, data transmission blocks, data reception module;
Data reception module turns the encrypting module quantity in SATA cipher cards for the PCIE that acquisition is connected with main frame, receives encryption
Complete the data block after feedback signal and encryption;
Data disassemble module for the encrypting module quantity according to acquisition, and according to default isolation, data file is carried out
Decompose, resolve into the data block that quantity matches with encrypting module quantity;
Data transmission blocks are used to send the data block after decomposition to PCIE to turn SATA cipher cards;
One of data block is encrypted each encrypting module that PCIE turns SATA cipher cards.
Preferably, data transmission blocks are additionally operable to send data to PCIE and turn number in the encrypting module of SATA cipher cards
According to buffering area;
What data disassembled that module is additionally operable to cache in main frame treats encryption and decryption data, according to the encrypting module quantity of acquisition, will described in
Data file is decomposed, and resolves into the data block that quantity matches with encrypting module quantity;
PCIE turns the data block after the reception decomposition of SATA cipher cards, and each encryption/decryption module handles a data block;
Main frame also includes:Data read module;
Data read module is used for data buffer zone and the data buffering data of deciphering module for accessing encrypting module, reads respectively
The data block of encrypting module data buffer zone and the data block of decryption module data buffered data.
Preferably, main frame also includes:Data combination module;
Data combination module is used for according to default combination, the data block got is combined, by the data block
Recover to data file;And obtain and read the data block after being encrypted in data sector, according to default combination, will obtain
To data block be combined, the data block is recovered to raw data file.
Preferably, PCIE, which turns SATA cipher cards, also includes:Multiple deciphering modules;
Multiple deciphering modules turn the communication connection of SATA bridge piece with PCIE respectively;
Data disassemble module for the deciphering module quantity according to acquisition, according to default isolation, by data file encryption
Decomposed, resolve into the encrypted data chunk that quantity matches with deciphering module quantity;
Data transmission blocks are used to send encrypted data chunk to PCIE to turn SATA cipher cards;
One of encrypted data chunk is decrypted each deciphering module that PCIE turns SATA cipher cards;
Data reception module is used to obtain the block of unencrypted data after decryption.
Preferably, data combination module is additionally operable to according to default combination, and the block of unencrypted data got is carried out
Combination, the block of unencrypted data is recovered to raw data file.
Preferably, data transmission blocks are additionally operable to sending data file encryption into PCIE the storage fan for turning SATA cipher cards
Area, storage sector store the data file encryption;
Data disassemble the data file encryption that module is additionally operable to read the storage of storage sector, according to the deciphering module number of acquisition
Amount, the data file encryption is decomposed, and resolves into the encrypted data chunk that quantity matches with deciphering module quantity;
PCIE turns the encrypted data chunk received after the storage decomposition of data sector of SATA cipher cards, and each receives data sector storage
Deposit an encrypted data chunk;
Data read module, which is additionally operable to access, reads data sector, obtains the data block read after being decrypted in data sector, data
Composite module is combined to the data block after decryption according to default combination, is recovered to raw data file.
Preferably, each deciphering module is respectively equipped with decryption main control module,
Decryption main control module includes:Primary processor is decrypted, decrypts coprocessor, is connected with decryption primary processor and decryption coprocessor
The decryption peripheral control circuits connect;
Decryption primary processor is used to detect PCIE and turn whether SATA bridge piece has main frame connection, when detecting that PCIE turns SATA bridge piece and be
When having main frame connection, the data block of main frame transmission is obtained, and default decipherment algorithm is sent to decryption coprocessor, decryption association
Processor the data block of reception is decrypted computing, and after computing decryption, primary processor will decrypt completion signal and feed back to main frame.
As can be seen from the above technical solutions, the present invention has advantages below:
PCIE, which turns SATA cipher cards, has scalability, and PCIE turns to reserve encrypting module placement space, user on SATA cipher cards
The encrypting module of one and the above can be placed as needed, the later stage also can be according to being actually needed increase corresponding encryption module.Because each
Individual encrypting module can be as independent arithmetic element, therefore when carrying out the encryption and decryption processing of data, can coordinate with main frame, by number
According to being divided into multi-group data, and every group of data are individually delivered into an encrypting module and carry out computing, so as to when completing once-through operation,
Multi-group data parallel processing, improve data operation ability.
Encrypting module, which has used, has primary processor, the primary processor of coprocessor, it is only necessary to which MCU SATA controller is entered
Row easy configuration, you can complete the communication function between encrypting module and main frame, therefore for FPGA PCIE exploitations, open
Degree of raising difficult questions reduces.
Brief description of the drawings
In order to illustrate more clearly of technical scheme, the required accompanying drawing used in description will be made below simple
Ground introduction, it should be apparent that, drawings in the following description are only some embodiments of the present invention, for ordinary skill
For personnel, on the premise of not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
Fig. 1 is the overall schematic that PCIE turns SATA cipher cards;
Fig. 2 is the overall schematic that PCIE turns SATA cryptographic systems;
Fig. 3 is the embodiment schematic diagram that PCIE turns SATA cryptographic systems;
Fig. 4 is the embodiment schematic diagram that PCIE turns SATA cryptographic systems.
Embodiment
To enable goal of the invention, feature, the advantage of the present invention more obvious and understandable, will use below specific
Embodiment and accompanying drawing, the technical scheme protected to the present invention are clearly and completely described, it is clear that implementation disclosed below
Example is only part of the embodiment of the present invention, and not all embodiment.Based on the embodiment in this patent, the common skill in this area
All other embodiment that art personnel are obtained under the premise of creative work is not made, belong to the model of this patent protection
Enclose.
The present embodiment provides a kind of PCIE and turns SATA cipher cards, as shown in figure 1, including:Multiple encrypting modules 1, PCIE turn
SATA bridge piece 2;
Multiple encrypting modules 1 turn SATA bridge piece 2 with PCIE and communicated to connect respectively, and PCIE turns SATA bridge piece 2 and is connected with main frame, main frame
Data file is decomposed according to the quantity of encrypting module 1, resolves into the data that quantity matches with the quantity of encrypting module 1
Block, data block turn SATA bridge piece 2 by PCIE and are transferred in encrypting module 1, each encrypting module 1 is entered a data block
Row encryption;Each encrypting module 1 is respectively equipped with main control module, and main control module is used for the AES of predetermined encryption module 1, and divides
Not Kong Zhi encrypting module 1 data are encrypted.
PCIE is turned SATA bridge piece 2 and realized in the form of SATA interface.PCIE turns SATA cipher cards, and there is flexible communication to connect
Mouthful.Because each encrypting module is realized in the form of SATA interface, and SATA storage device is externally shown as, therefore work as and use householder
, which there are PCIE interfaces, in machine can remove and be placed on subscriber's main station SATA interface by the encrypting module, also may be used under service condition
Communication function is completed, completes encryption and decryption processing work.
In the present embodiment, main control module includes:Primary processor, coprocessor, data buffer zone, with primary processor and Xie Chu
Manage the peripheral control circuits of device connection;Primary processor is used to detect PCIE and turn whether SATA bridge piece has main frame connection, when detecting
PCIE turns SATA bridge piece, obtains the data block of main frame transmission, the data buffering of data block to data buffering
Qu Zhong, and the AES that main frame needs is notified into coprocessor, while data in data buffer zone are sent to association and handled
In device, coprocessor carries out encryption and decryption computing to the data block of reception, and after the completion of computing, encryption and decryption is completed data by primary processor
Being placed into data buffer zone waits main frame to receive;After main frame sends reception request, data are sent to master from data buffer zone
Machine.
The present invention also provides a kind of PCIE and turns SATA cryptographic systems, as shown in Figure 2 and Figure 3, including:It is close that main frame 4 and PCIE turn SATA
Code card;PCIE turns SATA cipher cards and turns SATA bridge piece 2 by PCIE to be connected with main frame 4;
Main frame 4 includes:Data disassemble module 13, data transmission blocks 12, data reception module 11;Data reception module 11 is used for
The PCIE that acquisition is connected with main frame turns the encrypting module quantity in SATA cipher cards, receives encryption and completes feedback signal and encryption
Data block afterwards;Data disassemble module 13 for the encrypting module quantity according to acquisition, according to default isolation, by data
File is decomposed, and resolves into the data block that quantity matches with encrypting module quantity;Data transmission blocks 12 are used to decompose
Data block afterwards, which is sent to PCIE, turns SATA cipher cards;PCIE turns each encrypting module of SATA cipher cards to one of number
It is encrypted according to block.
This mode is that data reception module first obtains encrypting module quantity, and data disassemble encryption mould of the module according to acquisition
Number of blocks, according to default isolation, data file is decomposed, resolve into what quantity matched with encrypting module quantity
Data block;Data transmission blocks, which send the data block after decomposition to PCIE, turns SATA cipher cards;PCIE turns SATA cipher cards
One of data block is encrypted each encrypting module.
Wherein, the primary processor detection PCIE of encrypting module turns whether SATA bridge piece 2 has main frame connection, when detecting PCIE
It is when having main frame connection to turn SATA bridge piece 2, obtains the data block of main frame transmission, and default AES 1 is sent to association
Device is managed, coprocessor carries out computing encryption to the data block of reception, and after computing encryption, primary processor will encrypt completion signal and feed back
To main frame.
Also a kind of embodiment is, data transmission blocks be additionally operable to send data to PCIE turn SATA cipher cards plus
Data buffer zone in close module;What data disassembled that module is additionally operable to cache in main frame treats encryption and decryption data, according to acquisition plus
Close module number, the data file is decomposed, resolve into the data block that quantity matches with encrypting module quantity;PCIE
Turn the data block after the reception decomposition of SATA cipher cards, each encryption/decryption module handles a data block;
Main frame also includes:Data read module;Data read module is used for the data buffer zone for accessing encrypting module and decryption mould
The data buffering data of block, the data block of encrypting module data buffer zone and the number of decryption module data buffered data are read respectively
According to block.
Namely data transmission blocks send data file to PCIE the data buffer zone for turning SATA cipher cards, and data are delayed
Rush area and store the data;Data disassemble the data that module reads data buffer zone storage, according to the encrypting module of acquisition
Quantity, according to default isolation, the data are decomposed, resolve into the number that quantity matches with encrypting module quantity
According to block;PCIE turns the data block after the reception data buffer storage decomposition of SATA cipher cards, each reception data buffer
Store a data block;Data read module, which accesses, reads data buffer zone, obtains the data block after being encrypted in data buffer zone.
Data buffer zone will not be actively accessed, and can only be conducted interviews operation by the main frame of connection.Data are carried out every time
During encryption and decryption processing, by data packet into data buffer zone, it is issued to the write-in sector of agreement and reads sector, such master control
Module can receive the data sent by main frame and be handled;When reading operation result, the reading of main frame active access constraints
Sector, main control module send ready result to main frame.Each data communication process is completed in operation more than, from
And complete encryption and decryption processing procedure.
In the present embodiment, main frame also includes:Data combination module;Data combination module is used for according to default combination side
Formula, the data block got is combined, the data block is recovered to data file;And obtain and read in data sector
Data block after encryption, according to default combination, the data block got is combined, by the data block recover to
Raw data file.
In the present embodiment, also include as shown in figure 4, PCIE turns SATA cipher cards:Multiple deciphering modules 5;Multiple decryption moulds
Block 5 turns SATA bridge piece 2 with PCIE and communicated to connect respectively;
Data disassemble module 13 for the deciphering module quantity according to acquisition, according to default isolation, by encryption data text
Part is decomposed, and resolves into the encrypted data chunk that quantity matches with deciphering module quantity;Data transmission blocks 12 are used to add
Ciphertext data block, which is sent to PCIE, turns SATA cipher cards;PCIE turns each deciphering module of SATA cipher cards to one of encryption
Data block is decrypted;Data reception module 11 is used to obtain the block of unencrypted data after decryption.
Data combination module is additionally operable to, according to default combination, the block of unencrypted data got is combined, will
The block of unencrypted data is recovered to raw data file.
In the present embodiment, data transmission blocks are additionally operable to sending data file encryption into PCIE the storage for turning SATA cipher cards
Sector is deposited, storage sector stores the data file encryption;Data disassemble module and are additionally operable to read the described of storage sector storage
Data file encryption, according to the deciphering module quantity of acquisition, the data file encryption is decomposed, resolve into quantity and solution
The encrypted data chunk that close module number matches;PCIE turns the encryption number received after the storage decomposition of data sector of SATA cipher cards
According to block, each receives data sector and stores an encrypted data chunk;Data read module, which is additionally operable to access, reads data sector,
Obtain and read the data block after being decrypted in data sector, data combination module is to the data block after decryption according to default group
Conjunction mode is combined, and is recovered to raw data file.
In the present embodiment, each deciphering module is respectively equipped with decryption main control module, and decryption main control module includes:Decrypt main place
Device is managed, decrypts coprocessor, the decryption peripheral control circuits being connected with decryption primary processor and decryption coprocessor;Decrypt main place
Reason device turns whether SATA bridge piece has main frame connection for detecting PCIE, is to have main frame connection when detecting that PCIE turns SATA bridge piece
When, the data block of main frame transmission is obtained, and default decipherment algorithm is sent to decryption coprocessor, decryption coprocessor docking
Computing is decrypted in the data block of receipts, and after computing decryption, primary processor will decrypt completion signal and feed back to main frame.
Each embodiment is described by the way of progressive in this specification, what each embodiment stressed be and other
The difference of embodiment, identical similar portion refers to mutually between each embodiment.
The foregoing description of the disclosed embodiments, professional and technical personnel in the field are enable to realize or using the present invention.
A variety of modifications to these embodiments will be apparent for those skilled in the art, as defined herein
General Principle can be realized in other embodiments without departing from the spirit or scope of the present invention.Therefore, it is of the invention
The embodiments shown herein is not intended to be limited to, and is to fit to and principles disclosed herein and features of novelty phase one
The most wide scope caused.
Claims (9)
1. a kind of PCIE turns SATA cipher cards, it is characterised in that including:Multiple encrypting modules, PCIE turn SATA bridge piece;
Multiple encrypting modules turn the communication connection of SATA bridge piece with PCIE respectively, and PCIE turns SATA bridge piece and is connected with main frame, and main frame will
Data file is decomposed according to the quantity of encrypting module, resolves into the data block that quantity matches with encrypting module quantity, number
Turn SATA bridge piece by PCIE according to block to be transferred in encrypting module, make each encrypting module that a data block be encrypted;
Each encrypting module is respectively equipped with main control module, and main control module is used for the AES of predetermined encryption module, and controls respectively
Data are encrypted encrypting module processed.
2. PCIE according to claim 1 turns SATA cipher cards, it is characterised in that
Main control module includes:Primary processor, coprocessor, data buffer zone, the periphery being connected with primary processor and coprocessor
Control circuit;
Primary processor turns whether SATA bridge piece has main frame connection for detecting PCIE, is to have master when detecting that PCIE turns SATA bridge piece
When machine connects, the data block of main frame transmission is obtained, the data buffering of data block adds into data buffer zone, and by what main frame needed
Close algorithm notifies coprocessor, while data in data buffer zone are sent into coprocessor, and coprocessor is to reception
Data block carries out encryption and decryption computing, and after the completion of computing, to be placed into data buffer zone medium by encryption and decryption completion data for primary processor
Treat that main frame receives;After main frame sends reception request, data are sent to main frame from data buffer zone.
3. a kind of PCIE turns SATA cryptographic systems, it is characterised in that including:Main frame and PCIE turn SATA cipher cards;
PCIE turns SATA cipher cards and turns SATA bridge piece by PCIE to be connected with main frame;
Main frame includes:Data disassemble module, data transmission blocks, data reception module;
Data reception module turns the encrypting module quantity in SATA cipher cards for the PCIE that acquisition is connected with main frame, receives encryption
Complete the data block after feedback signal and encryption;
Data disassemble module for the encrypting module quantity according to acquisition, and according to default isolation, data file is carried out
Decompose, resolve into the data block that quantity matches with encrypting module quantity;
Data transmission blocks are used to send the data block after decomposition to PCIE to turn SATA cipher cards;
One of data block is encrypted each encrypting module that PCIE turns SATA cipher cards.
4. PCIE according to claim 3 turns SATA cryptographic systems, it is characterised in that
Data transmission blocks are additionally operable to send data to PCIE and turn data buffer zone in the encrypting module of SATA cipher cards;
What data disassembled that module is additionally operable to cache in main frame treats encryption and decryption data, according to the encrypting module quantity of acquisition, will described in
Data file is decomposed, and resolves into the data block that quantity matches with encrypting module quantity;
PCIE turns the data block after the reception decomposition of SATA cipher cards, and each encryption/decryption module handles a data block;
Main frame also includes:Data read module;
Data read module is used for data buffer zone and the data buffering data of deciphering module for accessing encrypting module, reads respectively
The data block of encrypting module data buffer zone and the data block of decryption module data buffered data.
5. the PCIE according to claim 3 or 4 turns SATA cryptographic systems, it is characterised in that
Main frame also includes:Data combination module;
Data combination module is used for according to default combination, the data block got is combined, by the data block
Recover to data file;And obtain and read the data block after being encrypted in data sector, according to default combination, will obtain
To data block be combined, the data block is recovered to raw data file.
6. the PCIE according to claim 3 or 4 turns SATA cryptographic systems, it is characterised in that
PCIE, which turns SATA cipher cards, also to be included:Multiple deciphering modules;
Multiple deciphering modules turn the communication connection of SATA bridge piece with PCIE respectively;
Data disassemble module for the deciphering module quantity according to acquisition, according to default isolation, by data file encryption
Decomposed, resolve into the encrypted data chunk that quantity matches with deciphering module quantity;
Data transmission blocks are used to send encrypted data chunk to PCIE to turn SATA cipher cards;
One of encrypted data chunk is decrypted each deciphering module that PCIE turns SATA cipher cards;
Data reception module is used to obtain the block of unencrypted data after decryption.
7. PCIE according to claim 6 turns SATA cryptographic systems, it is characterised in that
Data combination module is additionally operable to, according to default combination, the block of unencrypted data got is combined, by described in
Block of unencrypted data is recovered to raw data file.
8. PCIE according to claim 4 turns SATA cryptographic systems, it is characterised in that
Data transmission blocks are additionally operable to sending data file encryption into PCIE the storage sector for turning SATA cipher cards, store sector
Store the data file encryption;
Data disassemble the data file encryption that module is additionally operable to read the storage of storage sector, according to the deciphering module number of acquisition
Amount, the data file encryption is decomposed, and resolves into the encrypted data chunk that quantity matches with deciphering module quantity;
PCIE turns the encrypted data chunk received after the storage decomposition of data sector of SATA cipher cards, and each receives data sector storage
Deposit an encrypted data chunk;
Data read module, which is additionally operable to access, reads data sector, obtains the data block read after being decrypted in data sector, data
Composite module is combined to the data block after decryption according to default combination, is recovered to raw data file.
9. PCIE according to claim 6 turns SATA cryptographic systems, it is characterised in that
Each deciphering module is respectively equipped with decryption main control module,
Decryption main control module includes:Primary processor is decrypted, decrypts coprocessor, is connected with decryption primary processor and decryption coprocessor
The decryption peripheral control circuits connect;
Decryption primary processor is used to detect PCIE and turn whether SATA bridge piece has main frame connection, when detecting that PCIE turns SATA bridge piece and be
When having main frame connection, the data block of main frame transmission is obtained, and default decipherment algorithm is sent to decryption coprocessor, decryption association
Processor the data block of reception is decrypted computing, and after computing decryption, primary processor will decrypt completion signal and feed back to main frame.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710875899.5A CN107679424A (en) | 2017-09-25 | 2017-09-25 | A kind of PCIE turns SATA cipher cards and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710875899.5A CN107679424A (en) | 2017-09-25 | 2017-09-25 | A kind of PCIE turns SATA cipher cards and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107679424A true CN107679424A (en) | 2018-02-09 |
Family
ID=61137930
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710875899.5A Pending CN107679424A (en) | 2017-09-25 | 2017-09-25 | A kind of PCIE turns SATA cipher cards and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107679424A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111159731A (en) * | 2019-12-16 | 2020-05-15 | 合肥大唐存储科技有限公司 | Password device and data processing method |
| CN112685352A (en) * | 2020-12-31 | 2021-04-20 | 深圳安捷丽新技术有限公司 | Bridging chip for PCIE-SATA protocol and operation method thereof |
| CN116366206A (en) * | 2023-06-01 | 2023-06-30 | 三未信安科技股份有限公司 | Method and system for enhancing reliability of password card |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101290569A (en) * | 2008-05-06 | 2008-10-22 | 国网南京自动化研究院 | Method for parallel data processing adopting multi- password chip |
| CN101854353A (en) * | 2010-04-28 | 2010-10-06 | 国网电力科学研究院 | Multi-chip parallel encryption method based on FPGA |
| CN102073808A (en) * | 2010-11-17 | 2011-05-25 | 北京曙光天演信息技术有限公司 | Method for encrypting and storing information through SATA interface and encryption card |
| CN203720848U (en) * | 2014-03-07 | 2014-07-16 | 山东超越数控电子有限公司 | Hard disk encryption device based on AES (advanced encryption standard) algorithm |
| CN105335326A (en) * | 2015-10-10 | 2016-02-17 | 广州慧睿思通信息科技有限公司 | PCIE-SATA interface array device based on FPGA |
-
2017
- 2017-09-25 CN CN201710875899.5A patent/CN107679424A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101290569A (en) * | 2008-05-06 | 2008-10-22 | 国网南京自动化研究院 | Method for parallel data processing adopting multi- password chip |
| CN101854353A (en) * | 2010-04-28 | 2010-10-06 | 国网电力科学研究院 | Multi-chip parallel encryption method based on FPGA |
| CN102073808A (en) * | 2010-11-17 | 2011-05-25 | 北京曙光天演信息技术有限公司 | Method for encrypting and storing information through SATA interface and encryption card |
| CN203720848U (en) * | 2014-03-07 | 2014-07-16 | 山东超越数控电子有限公司 | Hard disk encryption device based on AES (advanced encryption standard) algorithm |
| CN105335326A (en) * | 2015-10-10 | 2016-02-17 | 广州慧睿思通信息科技有限公司 | PCIE-SATA interface array device based on FPGA |
Non-Patent Citations (1)
| Title |
|---|
| 任华峰 等: "一种基于PCIe固态硬盘存储系统的设计和实现", 《电子产品世界》 * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111159731A (en) * | 2019-12-16 | 2020-05-15 | 合肥大唐存储科技有限公司 | Password device and data processing method |
| CN111159731B (en) * | 2019-12-16 | 2023-08-08 | 合肥大唐存储科技有限公司 | Password equipment and data processing method |
| CN112685352A (en) * | 2020-12-31 | 2021-04-20 | 深圳安捷丽新技术有限公司 | Bridging chip for PCIE-SATA protocol and operation method thereof |
| CN116366206A (en) * | 2023-06-01 | 2023-06-30 | 三未信安科技股份有限公司 | Method and system for enhancing reliability of password card |
| CN116366206B (en) * | 2023-06-01 | 2023-08-25 | 三未信安科技股份有限公司 | Method and system for enhancing reliability of password card |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11664990B2 (en) | Method and system for distributed cryptographic key provisioning and storage via elliptic curve cryptography | |
| US9954826B2 (en) | Scalable and secure key management for cryptographic data processing | |
| CN107103472B (en) | Algorithm processing module for block chain | |
| CN102073808B (en) | Method for encrypting and storing information through SATA interface and encryption card | |
| CN109145568A (en) | A kind of full algorithm cipher card and its encryption method based on PCI-E interface | |
| US10943020B2 (en) | Data communication system with hierarchical bus encryption system | |
| CN106022080A (en) | Cipher card based on PCIe (peripheral component interface express) interface and data encryption method of cipher card | |
| CN102737270B (en) | A kind of bank intelligent card chip secure coprocessor based on domestic algorithm | |
| CN104160407A (en) | Using storage controller bus interfaces to secure data transfer between storage devices and hosts | |
| CN105099711A (en) | ZYNQ-based small-sized cipher machine and data encryption method | |
| CN105871902A (en) | Data encryption and isolation system | |
| CN107679424A (en) | A kind of PCIE turns SATA cipher cards and system | |
| CN206611427U (en) | A kind of key storage management system based on trust computing device | |
| CN107092835A (en) | The computer data enciphering device and method of a kind of virtual memory disk | |
| CN101996285B (en) | Electronic equipment | |
| CN201051744Y (en) | A secure encryption network card device | |
| US20200143067A1 (en) | Ssd content encryption and authentication | |
| CN103729324A (en) | Security protection device of cloud storage file based on USB3.0 interface | |
| CN101349999A (en) | Safe adapter apparatus for mobile storage and operation method thereof | |
| CN104283868A (en) | Encryption method for internet of things and cloud computing secure storage distributed file system | |
| CN113158203A (en) | SOC chip, circuit and external data reading and writing method of SOC chip | |
| CN103780377B (en) | A kind of method and system that data are carried out with secrecy processing | |
| CN115001735B (en) | Power system data security processing method and system | |
| CN102055887A (en) | Network camera and data management and control method thereof | |
| CN115357951A (en) | Dual-core encryption bridge for converting multi-host interface into SATA bridge and encryption and decryption transmission method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180209 |