CN108255750B - Method for realizing cipher module interface based on domestic embedded platform - Google Patents
Method for realizing cipher module interface based on domestic embedded platform Download PDFInfo
- Publication number
- CN108255750B CN108255750B CN201810102579.0A CN201810102579A CN108255750B CN 108255750 B CN108255750 B CN 108255750B CN 201810102579 A CN201810102579 A CN 201810102579A CN 108255750 B CN108255750 B CN 108255750B
- Authority
- CN
- China
- Prior art keywords
- cryptographic module
- module
- domestic
- loongson
- initializing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F13/00—Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
- G06F13/10—Program control for peripheral devices
- G06F13/102—Program control for peripheral devices where the programme performs an interfacing function, e.g. device driver
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Computer And Data Communications (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a realization method of a cryptographic module interface based on a domestic embedded platform, which takes a handheld computer of a domestic loongson 1A processor as a hardware platform, uses a UART bus of the loongson 1A processor under a domestic embedded operating system ReWorks, realizes a standard SDIO interface through an STM32F103 microprocessor, and realizes the communication between the loongson 1A and the cryptographic module by solidifying the standard SDIO interface into the STM32F103 processor.
Description
Technical Field
The invention relates to a realization method of a cryptographic module interface based on a domestic embedded platform.
Background
At present, the security and confidentiality of information are more and more concerned by people, particularly in the field of military computers, under certain special conditions, a handheld computer needs to be used for data encryption and decryption, an SD card type encryption module is adopted, and the SD card type encryption module has the advantages of simplicity in use, convenience in replacement and the like, and is more and more widely applied.
Therefore, the cryptographic module interface implementation method based on the domestic embedded platform has wide market application value. The Loongson series processor is a general CPU which is independently researched and developed in the Loongson department, wherein a 32-bit processor core, a 2D GPU, a VGA and an LCD display interface are integrated in a Loongson 1 series processor chip, and the requirements in the fields of ultra-low price cloud terminals, industrial control, handheld devices and the like can be met.
The ReWorks embedded operating system is an embedded real-time operating system which is self-developed by the 32 th electronic technology group of China and has all source codes, and is suitable for various target hardware. The ReWorks operating system is developed by adopting an object-oriented and micro-kernel technology, has strong real-time performance, tailorability and scalability, and provides a VxWorks compatible layer.
Disclosure of Invention
Aiming at the defects of the prior art, the invention provides a method for realizing a cryptographic module interface based on a domestic embedded platform. The invention aims to solve the problems that: a hand-held computer based on a domestic Loongson 1A processor is used as a hardware platform, and a hardware interface and software driving of the hand-held computer are realized for an SD card type password module under a domestic embedded operating system ReWorks.
The technical scheme of the invention is as follows:
a realization method of a cryptographic module interface based on a domestic embedded platform comprises the following steps:
the hand-held computer based on the domestic Loongson 1A processor is used as a hardware platform, under the domestic embedded operating system ReWorks, the UART bus of the Loongson 1A is used, a standard SD card interface is realized through an STM32F103 microprocessor, wherein the STM32F103 microprocessor is a 32-bit processor with high performance and low power consumption, a nonvolatile program and a data memory are self-contained in the chip, and the read-write of a cryptographic module is realized by solidifying a standard SD card interface driving program into a program memory of the STM32F 103:
initializing an STM32F103 microprocessor;
initializing a UART;
configuring a GPIO;
configuring an interrupt controller;
initializing an SDIO interface;
the serial port receives the command mark;
judging the type of the command;
resetting the SD password module;
reading the state of the SD cryptographic module;
writing data to the SD cryptographic module;
and reading data from the SD password module.
In order to explain the method of the present invention, the program code corresponding to the read-write of the cryptographic module is specifically shown as follows:
according to the preferred embodiment of the present invention, the implementation method of the cryptographic module interface based on the domestic embedded platform further includes a cryptographic module authentication method, as follows:
opening the serial port 2;
sending an authentication command to the password module;
reading a return value from the cryptographic module;
and comparing the return values and returning an authentication result.
In order to explain the method of the present invention, the program code corresponding to the above method for authenticating a cryptographic module is specifically shown as follows:
the invention has the technical advantages that:
the invention takes a handheld computer based on a domestic Loongson 1A processor as a hardware platform, and realizes hardware interface and software drive aiming at an SD card type password module under a domestic embedded operating system ReWorks. Compared with the mode of simulating an SDIO interface by using a GPIO (general purpose input/output) interface, the invention enriches the external interfaces of the Loongson 1A processor, realizes the communication with the cryptographic module by using the STM32 processor, can flexibly and conveniently realize a communication protocol, can greatly reduce the load of the Loongson 1A, and improves the performance of the whole machine.
Drawings
FIG. 1 is a schematic diagram of SD card type cryptographic module interface hardware.
Detailed Description
The invention is described in detail below with reference to the following examples and the accompanying drawings of the specification, but is not limited thereto.
Examples 1,
A realization method of a cryptographic module interface based on a domestic embedded platform comprises the following steps:
the hand-held computer based on the domestic Loongson 1A processor is used as a hardware platform, under the domestic embedded operating system ReWorks, the UART bus of the Loongson 1A is used, a standard SD card interface is realized through an STM32F103 microprocessor, wherein the STM32F103 microprocessor is a 32-bit processor with high performance and low power consumption, a nonvolatile program and a data memory are self-contained in the chip, and the read-write of a cryptographic module is realized by solidifying a standard SD card interface driving program into a program memory of the STM32F 103:
initializing an STM32F103 microprocessor;
initializing a UART;
configuring a GPIO;
configuring an interrupt controller;
initializing an SDIO interface;
the serial port receives the command mark;
judging the type of the command;
resetting the SD password module;
reading the state of the SD cryptographic module;
writing data to the SD cryptographic module;
and reading data from the SD password module.
In order to explain the method of the present invention, the program code corresponding to the read-write of the cryptographic module is specifically shown as follows:
examples 2,
The implementation method of the cryptographic module interface based on the domestic embedded platform according to embodiment 1 further includes a cryptographic module authentication method, as follows:
opening the serial port 2;
sending an authentication command to the password module;
reading a return value from the cryptographic module;
and comparing the return values and returning an authentication result.
In order to explain the method of the present invention, the program code corresponding to the above method for authenticating a cryptographic module is specifically shown as follows:
under the ReWorks operating system, the following codes are applied to authenticate the password module, and whether the password module can be normally used is confirmed:
Claims (2)
1. a realization method of cryptographic module interface based on domestic embedded platform is characterized in that the realization method comprises: the hand-held computer based on the domestic Loongson 1A processor is used as a hardware platform, under the domestic embedded operating system ReWorks, the UART bus of the Loongson 1A is used, a standard SD card interface is realized through an STM32F103 microprocessor, wherein the STM32F103 microprocessor is a 32-bit processor with high performance and low power consumption, a nonvolatile program and a data memory are self-contained in the chip, and the read-write of an SD crypto module is realized by solidifying a standard SD card interface driving program into a program memory of the STM32F 103: initializing an STM32F103 microprocessor; initializing a UART; configuring a GPIO; configuring an interrupt controller; initializing an SDIO interface; initializing a UART serial port to receive a command mark; judging the type of the command; resetting the SD password module; reading the state of the SD cryptographic module; writing data to the SD cryptographic module; and reading data from the SD password module.
2. The method for implementing the cryptographic module interface based on the domestic embedded platform according to claim 1, further comprising a cryptographic module authentication method, as follows: opening the serial port 2; sending an authentication command to the password module; reading a return value from the cryptographic module; and comparing the return values and returning an authentication result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810102579.0A CN108255750B (en) | 2018-02-01 | 2018-02-01 | Method for realizing cipher module interface based on domestic embedded platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810102579.0A CN108255750B (en) | 2018-02-01 | 2018-02-01 | Method for realizing cipher module interface based on domestic embedded platform |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108255750A CN108255750A (en) | 2018-07-06 |
| CN108255750B true CN108255750B (en) | 2021-04-13 |
Family
ID=62743364
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810102579.0A Active CN108255750B (en) | 2018-02-01 | 2018-02-01 | Method for realizing cipher module interface based on domestic embedded platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108255750B (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101661444A (en) * | 2008-08-29 | 2010-03-03 | 智微科技股份有限公司 | Method and system for dynamically managing push-pull device |
| CN103279441A (en) * | 2013-05-21 | 2013-09-04 | 山东超越数控电子有限公司 | USB-to-CF/SD driving method based on domestic embedded type operation system |
| CN105573940A (en) * | 2014-10-11 | 2016-05-11 | 航天信息股份有限公司 | Automatic detection method and device of SDIO interface peripheral |
| CN106936767A (en) * | 2015-12-29 | 2017-07-07 | 北京大唐高鸿数据网络技术有限公司 | Secure communication terminal and its communication means |
| WO2018005479A1 (en) * | 2016-06-30 | 2018-01-04 | General Electric Company | Secure industrial control platform |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4538027B2 (en) * | 2007-08-22 | 2010-09-08 | 株式会社東芝 | Semiconductor device |
-
2018
- 2018-02-01 CN CN201810102579.0A patent/CN108255750B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101661444A (en) * | 2008-08-29 | 2010-03-03 | 智微科技股份有限公司 | Method and system for dynamically managing push-pull device |
| CN103279441A (en) * | 2013-05-21 | 2013-09-04 | 山东超越数控电子有限公司 | USB-to-CF/SD driving method based on domestic embedded type operation system |
| CN105573940A (en) * | 2014-10-11 | 2016-05-11 | 航天信息股份有限公司 | Automatic detection method and device of SDIO interface peripheral |
| CN106936767A (en) * | 2015-12-29 | 2017-07-07 | 北京大唐高鸿数据网络技术有限公司 | Secure communication terminal and its communication means |
| WO2018005479A1 (en) * | 2016-06-30 | 2018-01-04 | General Electric Company | Secure industrial control platform |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108255750A (en) | 2018-07-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101770386B (en) | Safe startup method for Linux embedded system | |
| US8322610B2 (en) | Secure access module for integrated circuit card applications | |
| CN101551784B (en) | Method and device for encrypting data in ATA memory device with USB interface | |
| US8516232B2 (en) | Method and memory device for performing an operation on data | |
| EP2839689B1 (en) | Scalable secure execution | |
| JP4279856B2 (en) | Information transfer method and computer | |
| WO2006131069A1 (en) | A separate encryption/decryption equipment for plentiful data and a implementing method thereof | |
| CN102129592B (en) | Contact smart card | |
| US10303880B2 (en) | Security device having indirect access to external non-volatile memory | |
| CN102136046B (en) | High-speed low-power consumption safe secure digital (SD) card communicating method | |
| CN103268206B (en) | A kind of seal equipment based on printing technique | |
| CN101266590A (en) | Method and system for dynamically switching equipment arrangement | |
| TW201342115A (en) | Using a trusted platform module for boot policy and secure firmware | |
| CN103679037A (en) | Asymmetric encryption authentication method and embedded device based on asymmetric encryption authentication | |
| WO2022271222A1 (en) | Trusted memory sharing mechanism | |
| CN201716733U (en) | USB safe storage crypto card | |
| CN102136082B (en) | High-speed and low-power-consumption SD (Secure Digital) card | |
| CN108255750B (en) | Method for realizing cipher module interface based on domestic embedded platform | |
| CN2771935Y (en) | Smart card for digital input-output interface | |
| CN203057169U (en) | Network cipher machine based on FPGA (Field Programmable Gate Array) | |
| WO2011094959A1 (en) | Electronic device with dual-role | |
| KR100426302B1 (en) | Smart card included an usb interface function | |
| CN212749835U (en) | Safe credible computer based on domestic TPM encryption module | |
| CN201247464Y (en) | Data encrypt device for ATA genus memory apparatus of USB interface | |
| CN201289645Y (en) | Information safety equipment capable of invoking safety authentication encryption and decryption digital signature function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 250000 No. 2877 Kehang Road, Suncun Town, Jinan High-tech District, Shandong Province Applicant after: Chaoyue Technology Co.,Ltd. Address before: 250000 No. 2877 Kehang Road, Suncun Town, Jinan High-tech District, Shandong Province Applicant before: SHANDONG CHAOYUE DATA CONTROL ELECTRONICS Co.,Ltd. |
|
| CB02 | Change of applicant information | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: An implementation method of cryptographic module interface based on domestic embedded platform Effective date of registration: 20211104 Granted publication date: 20210413 Pledgee: China Merchants Bank Co.,Ltd. Jinan Branch Pledgor: Chaoyue Technology Co.,Ltd. Registration number: Y2021370000126 |
|
| PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
| PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20230413 Granted publication date: 20210413 Pledgee: China Merchants Bank Co.,Ltd. Jinan Branch Pledgor: Chaoyue Technology Co.,Ltd. Registration number: Y2021370000126 |
|
| PC01 | Cancellation of the registration of the contract for pledge of patent right |