CN110489357A - A kind of method and system of the hiding data on movable memory equipment - Google Patents
A kind of method and system of the hiding data on movable memory equipment Download PDFInfo
- Publication number
- CN110489357A CN110489357A CN201910853849.6A CN201910853849A CN110489357A CN 110489357 A CN110489357 A CN 110489357A CN 201910853849 A CN201910853849 A CN 201910853849A CN 110489357 A CN110489357 A CN 110489357A
- Authority
- CN
- China
- Prior art keywords
- application software
- storage equipment
- data
- hidden partition
- subregion
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/06—Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
- G06F3/0601—Interfaces specially adapted for storage systems
- G06F3/0602—Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
- G06F3/062—Securing storage systems
- G06F3/0622—Securing storage systems in relation to access
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F12/00—Accessing, addressing or allocating within memory systems or architectures
- G06F12/14—Protection against unauthorised use of memory or access to memory
- G06F12/1416—Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights
- G06F12/1425—Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F12/00—Accessing, addressing or allocating within memory systems or architectures
- G06F12/14—Protection against unauthorised use of memory or access to memory
- G06F12/1458—Protection against unauthorised use of memory or access to memory by checking the subject access rights
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/06—Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
- G06F3/0601—Interfaces specially adapted for storage systems
- G06F3/0628—Interfaces specially adapted for storage systems making use of a particular technique
- G06F3/0629—Configuration or reconfiguration of storage systems
- G06F3/0637—Permissions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/06—Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
- G06F3/0601—Interfaces specially adapted for storage systems
- G06F3/0628—Interfaces specially adapted for storage systems making use of a particular technique
- G06F3/0638—Organizing or formatting or addressing of data
- G06F3/0644—Management of space entities, e.g. partitions, extents, pools
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Abstract
The method and system of the invention discloses a kind of on movable memory equipment hiding data, its key points of the technical solution are that including the following steps: to carry out subregion to storage equipment in advance to form display subregion and hidden partition, wherein, it shows and is written with the mapping table based on subregion capacity generation logical address to physical address in subregion and hidden partition;Display subregion is reported when storing device power only to be identified by the operating system of host;Privately owned order is sent to equipment is stored by file application software, determines that there are hidden partitions in storage equipment, are shown and are operated to the data in hidden partition based on file application software.The present invention has the characteristics that Information Security is high.
Description
Technical field
The present invention relates to technical field of memory, in particular to a kind of method of the hiding data on movable memory equipment
And system.
Background technique
NAND Flash(flash memory) be current most mainstream non-volatile memory medium, because having high-performance, low-power consumption, preventing
The advantages that shake, longer life, is widely used in mobile USB flash disk, solid state hard disk (Solid State Drivers, SSD), movement
In the common storage product such as storage card.
The hard disk that storage equipment such as solid state hard disk is made of control unit and solid state storage elements (NAND Flash).Gu
State hard disk uses NAND Flash chip storing data, needs to carry out erasing behaviour to NAND Flash chip before data write-in
Make, the basic unit of erasing operation is block (Block), and each Block includes several pages (Page), and Page is reading and writing data behaviour
The basic unit of work.
When storage equipment establishes connection by USB interface and computer, device power, the operating system energy of computer are stored
It enough identifies the data in storage equipment, and then the data in storage equipment can be written and read, so that storage
Equipment can be suitable for every computer and use, and the following problem of data safety is also increasingly by the attention of user.
Therefore, existing storage device side improves the safety of data to needing information to be protected not accessed by other people
And there are improvements.
Summary of the invention
It is a kind of for hidden on movable memory equipment in view of the deficiencies of the prior art, the present invention intends to provide
The method for hiding data has the characteristics that improve Information Security.
Above-mentioned technical purpose of the invention has the technical scheme that
A method of the hiding data on movable memory equipment includes the following steps:
Subregion is carried out to form display subregion and hidden partition to storage equipment in advance, wherein in display subregion and hidden partition
It is written with the mapping table based on subregion capacity generation logical address to physical address;
Display subregion is reported when storing device power only to be identified by the operating system of host;
Sending privately owned order by file application software, to determine, there are hidden partitions in storage equipment to storage equipment, based on text
Part application software is shown and is operated to the data in hidden partition.
Preferably, the file application software be stored in be connected with host other storage equipment in or file application
Software is stored in the display subregion of storage equipment.
Preferably, it is only reported when electric on a storage device in showing subregion to be identified by the operating system of host, including such as
Lower step:
The display subregion of storage equipment is provided with multiple, is stored in each display subregion and is adapted to different host operating system types
File application software;
Host operating system type is identified when storing device power;
Intrusion Detection based on host OS Type reports the display subregion for being stored with the file application software being adapted to therewith.
Preferably, privately owned order is sent by file application software to hide to storage equipment to determine to exist in storage equipment
Subregion is shown and is operated to the data in hidden partition based on file application software, included the following steps:
File application software determines that file application software receives the hidden of storage equipment feedback there are after hidden partition in storage equipment
Hide corresponding logical address in subregion mapping table;
File application software is based on the corresponding physical address of logical address in hidden partition mapping table, reads the number of hidden partition
According to;
File application software parses the catalogue and file structure of hidden partition data by its nested Virtual File System, will solve
Data after analysis are shown with document form;
File application software is written and read the hidden partition data after display.
Preferably, the file application software can issue switching command into storage equipment, and storage equipment is in response to switching
Instruction on hidden partition will respond with by the operating system identification of host.
In view of the deficienciess of the prior art, another object of the present invention is to provide one kind to be used for movable memory equipment
The system of upper hiding data has the characteristics that improve Information Security.
Above-mentioned technical purpose of the invention has the technical scheme that
A kind of system of the hiding data on movable memory equipment, comprising:
Division module, for carrying out subregion to storage equipment in advance to form display subregion and hidden partition, wherein display subregion
Be written in hidden partition based on subregion capacity generate logical address to physical address mapping table;
Reporting module, for only reporting display subregion when electricity on a storage device to be identified by the operating system of host;
File application software, for sending privately owned order, to storage equipment, to determine, there are hidden partitions in storage equipment, with right
Data in hidden partition are shown and are operated.
Preferably, file application software be stored in be connected with host other storage equipment in or file application software
It is stored in the display subregion of storage equipment.
Preferably, the reporting module includes:
Configuration module, the display subregion for storing equipment is provided with multiple, and adaptation different hosts behaviour is stored in each display subregion
Make the file application software of system type;
Identification module identifies host operating system type when storing device power;
Matching module, Intrusion Detection based on host OS Type report the display subregion for being stored with the file application software being adapted to therewith.
Preferably, file application software includes:
Identification module, for determining, there are the hidden partition mappings for after hidden partition, receiving storage equipment feedback in storage equipment
Corresponding logical address in table;
Read module reads the data of hidden partition based on the corresponding physical address of logical address in hidden partition mapping table;
Display module, for parsing the catalogue and file structure of hidden partition data by Virtual File System, after parsing
Data are shown with document form;
Operation module, for being written and read to the hidden partition data after display.
Preferably, the file application software further include:
Switching module, for issuing switching command into storage equipment, storage equipment is in response to switching command with by hidden partition
On respond with by host operating system identification.
In conclusion the present invention having the beneficial effect that in contrast to the prior art
Storage equipment has just carried out subregion when default setting, is respectively formed display subregion and hidden partition, stores equipment
When connection host powers on, storage equipment only reports display subregion to be identified that therefore, host operating system is only by host operating system
Data in display subregion can be written and read;
And then file application software can skip over host operating system directly to number in the hidden partition of storage equipment in the application
According to identification is read out, user, which only passes through file application software, can be entered in the hidden partition of storage equipment, so that
Data in hidden partition are shown in file application software with document form, facilitate user directly to the data in hidden partition
It is written and read;
To could only be read in hidden partition by way of data matched file application software, to improve storage equipment
The safety of middle data.
Detailed description of the invention
Fig. 1 is the structural schematic diagram that equipment is stored in technical solution of the present invention;
Fig. 2 is the interaction schematic diagram that equipment and host are stored in technical solution of the present invention;
Fig. 3 is the flow diagram of hiding data method in technical solution of the present invention;
Fig. 4 is the flow diagram that file application software is adapted to host operating system type in technical solution of the present invention;
Fig. 5 is the flow diagram of the read-write of file application software and display hidden partition data in technical solution of the present invention;
Fig. 6 is the system block diagram of hiding data system in technical solution of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is
A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art
Every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
Storing equipment includes mobile USB flash disk, solid state hard disk (Solid State Drivers, SSD), mobile memory card.Such as
Shown in Fig. 1, storage equipment includes control unit, flash chip and cache unit, and control unit is electrically connected in flash memory core
Piece and cache unit, control unit are used to realize data interaction, the order that control unit receiving host is sent, control list with host
Member is responsible for parsing Host Command, distribution cache unit, the mapping for realizing logical address and physical address, coordinates garbage reclamation and master
Machine business etc..
Cache unit can with temporal data (such as host read-write data, the intermediate data in garbage collection procedure) and
(mapping relations of such as logical address and physical address, data block is worn and use information, block level chain for various list item informations
Table etc.).Usual cache unit is by control unit plug-in high-speed memory (such as SDRAM, DDR.) realize, in high performance enterprise-level
Buffer memory capacity can reach hundreds of MB in SSD.
Wherein, storage equipment has the characteristics that the moveable scene for being widely used in file copy transmission, therefore existing
In the use process for having storage equipment, we can be frequently found storage equipment and be connected to computer (also referred to as by USB interface
Host, Host) in when, host will be appreciated that all data cases in storage equipment, any thus in file copy transmission
As long as people will store equipment and connect upper host, data in storage equipment can be copied, so as to cause number in storage equipment
According to safety it is lower.
Therefore reply has carried out subregion to storage equipment in advance, has been respectively formed display point in above-mentioned technical problem, the application
Area and hidden partition, display subregion can be used to save foundation class data, and hidden partition can be used to save significant data, therefore, In
For storage equipment when connection host powers on, storage equipment only reports display subregion to be identified by host operating system, therefore, host behaviour
Make system only can to display subregion in data be written and read, and host operating system can not recognize storage equipment it is hidden
The data in subregion are hidden, and then the data in hidden partition can not be also written and read.
And then the file application software of adaptation host operating system, file application software energy can be developed in the application in advance
It enough skips over host operating system and identification directly is read out to data in the hidden partition of storage equipment, user only passes through file
Application software can enter in the hidden partition of storage equipment, so that the data in hidden partition are with document form in file
It is shown in application software, user is facilitated directly to be written and read to the data in hidden partition, therefore only by matched
File application software could read the mode of data in hidden partition, to improve the safety of data in storage equipment.
Embodiment one
It is directed to above content, as shown in figure 3, the side of the present invention provides a kind of on movable memory equipment hiding data
Method includes the following steps:
Step S100 carries out subregion to storage equipment in advance to form display subregion and hidden partition, wherein display subregion and hidden
The mapping table based on subregion capacity generation logical address to physical address is written in hiding subregion.
According to technical solution defined by step S100, specifically, when storing equipment factory, by storage equipment
An embedded program is configured in control unit, subregion can be carried out to storage equipment by embedded program, so that storage
Equipment, which is formed, shows subregion and hidden partition, in the present embodiment, shows that the quantity of subregion and hidden partition is not particularly limited, root
According to practical situations actual setting, but show that subregion and hidden partition set at least to one.
The mode for storing equipment progress subregion is specific as follows:
Referring to figs. 1 and 2, embedded program is first passed through in advance and issues user setting instruction, stores equipment according to user setting
Instruction carries out subregion, and setting shows the quantity of subregion and hidden partition and shows the subregion capacity of subregion and hidden partition, such as
The total capacity for storing equipment is 4G, and storage equipment is divided into display two subregions of subregion and hidden partition, settable display subregion
Subregion capacity be 1G, the subregion capacity of hidden partition is 3G.
Corresponding logical address is generated according to the subregion capacity of display subregion and hidden partition, display subregion is read and hides
The physical address of subregion, logic-based address and physical address generate the mapping table of corresponding display subregion and hidden partition, and will
Above-mentioned mapping table is written in corresponding display subregion and hidden partition, therefore, is shown in subregion and hidden partition and is written with
Mapping table based on subregion capacity generation logical address to physical address.
Logical address refers to relative address used in application program, and physical address refers to the absolute address in flash chip, reflects
The content stored in firing table is mapping relations of the logical address to physical address, inquires mapping table by logical address, can look for
Read and write access is done to corresponding physical address, then to the data in flash chip.
It is usually all to send an object run when host service function storage equipment carries out data write-in or reading data
Logical address is converted into corresponding physical address on flash chip, then data are write after storage equipment receives the logical address
Enter or therefrom read data, the above-mentioned basic procedure that equipment read-write is stored for host service function.
Therefore, how explicit data to write flash chip which physical address or data from flash chip that
A physical address is read out, the conversion of all logical addresses to physical address, is all by the FTL of control unit in storage equipment
Algorithm in conversion layer manages, i.e. management logical address is realized to the mapping table of physical address.
Step S200 reports display subregion only to be identified by the operating system of host when storing device power.
According to technical solution defined by step S200, specifically, storing to generate in equipment in the prior art has a Zhang Ying
Firing table, mapping of the corresponding storage entire physical address of equipment of mapping table to logical address, when electric on a storage device, stores equipment
Entire mapping table will be reported into host, host identification mapping table obtains the logical address for entirely storing equipment, either
(SuSE) Linux OS or Windows operating system, it is only necessary to which the file system for storing equipment can be identified by host, be stored
Data are fully visible in host operating system in equipment.
And in the application, it is shown in storage equipment and has been written into mapping table in subregion and hidden partition, host service function system
Application software and file system driver layer are configured in system, storage equipment will only report subregion capacity, the Yi Jiying of display subregion
The logical address of firing table is into host, after application software gets the logical address for the display subregion that storage equipment reports, application
Software is read out logical address to identify the data in display subregion, will be shown in subregion by file system driver layer
Data shown with document form.
And store equipment and do not report to the logical address of hidden partition mapping table in host, so that host can not will be hidden
Hiding subregion identified, the data in hidden partition can not also be carried out display and read-write operation, therefore hidden partition for
It is for invisible mode for family.Wherein, the file system of the display subregion and hidden partition that store equipment be configured to
Host operating system matches.
Show that subregion is as it can be seen that still hidden partition is for host operating system for host operating system
Sightless, the application is to achieve the purpose that open hidden partition in storage equipment, develops file application software and is applied.
File application software is adapted with host operating system, and file application software can operate under host operating system, In
File application software is opened under host operating system can identify the data of hidden partition in storage equipment and be written and read.
In one embodiment, file application software is stored in the display subregion of storage equipment.In another implementation
In example, file application software is stored in host, that is, is stored in other storage equipment being connected with host.But storage is set
Standby to be often connected the host of different operating system due to moveable characteristic, file application software can adapt to Linux operation
System, but do not adapt to Windows operating system, it is therefore desirable to configure two sets of file application software carry out exclusively with.
It is only reported when electric on a storage device in showing subregion to be identified by the operating system of host, as shown in figure 4, including
Following steps:
Step S210, the display subregion for storing equipment is provided with multiple, and adaptation different hosts behaviour is stored in each display subregion
Make the file application software of system type;
Step S220 identifies host operating system type when storing device power;
Step S230, Intrusion Detection based on host OS Type report the display subregion for being stored with the file application software being adapted to therewith.
According to technical solution defined by step S210 ~ step S230, specifically, storage equipment is just established when leaving the factory
Multiple display subregions, so that the file application software for being adapted to different host operating system types to be stored in different display subregions
In.In one embodiment, storage equipment is configured with the first display subregion, the second display subregion and hidden partition, first
It is stored with the file application software of adaptation (SuSE) Linux OS in display subregion, is stored with adaptation in the second display subregion
The file application software of Windows operating system.
Therefore when electric on a storage device, storage equipment can identify the type of host operating system, store device power
When host operating system will carry out data interaction with storage equipment, different host operating systems will issue difference in data interaction
Data interaction instruction, pass through the data interaction instruction i.e. can recognize host operating system type.It such as stores equipment and recognizes master
Machine OS Type is (SuSE) Linux OS, and storage equipment will report the first display subregion, so that the only first display point
Area is identified by the operating system of host.Such as storing equipment and recognizing host operating system type is Windows operating system, storage
Equipment will report the second display subregion, so that the only second display subregion is identified by the operating system of host.
By the above-mentioned means, can adapt to multiple main frames operating system to reach the file application software in storage equipment
Purpose.
The data in storage equipment hidden partition are opened to file application software below to do as described below:
Step S300 sends privately owned order extremely storage equipment by file application software and is divided with determining to exist to hide in storage equipment
Area is shown and is operated to the data in hidden partition based on file application software.
According to technical solution defined by step S300, specifically, after storing device power, host and storage equipment are established
Connection, and then file application software and storage equipment establish connection.
File application software determines that detailed process is as follows with the presence or absence of hidden partition in storage equipment: user is in host service function
File application software is opened in system, file application software will send privately owned order into storage equipment, and carry in privately owned order
There is an authentication secret, after storage equipment receives privately owned order, the authentication secret in privately owned order can be obtained, and then by privately owned life
The authentication secret of order is matched with preset-key, and after authentication secret and preset-key successful match, storage equipment will be returned
The subregion capacity of the corresponding logical address of hidden partition mapping table and hidden partition is into file application software, to determine storage
There are hidden partition in equipment, allow users to that data in hidden partition are shown and read by file application software
It writes.
Conversely, storage equipment will not return to hidden partition mapping table after in authentication secret and preset-key, it fails to match
Corresponding logical address, to indicate in storage equipment without hidden partition.
To improve the uniqueness that file application software uses, it is also configured with login page in file application software, is needed
Account and password are inputted in login page can enter in file application software, and then determine hidden partition in storage equipment
Presence.
It is deposited it is worth noting that sending privately owned order by file application software to storage equipment with determining in storage equipment
In hidden partition, the data in hidden partition are shown and operated based on file application software, as shown in figure 5, including such as
Lower step:
Step S310, file application software determine that file application software receives storage and sets there are after hidden partition in storage equipment
Corresponding logical address in the hidden partition mapping table of standby feedback;
Step S320, file application software are based on the corresponding physical address of logical address in hidden partition mapping table, read and hide
The data of subregion;
Step S330, file application software parse the catalogue and file of hidden partition data by its nested Virtual File System
Structure shows the data after parsing with document form;
Step S340, file application software are written and read the hidden partition data after display.
According to technical solution defined by step S310 ~ S340, specifically, file application software gets hidden partition
After the logical address of mapping table, identifies the subregion capacity initial logical address for corresponding to hidden partition in mapping table and terminate logically
Location, and then the subregion capacity of hidden partition accordingly is obtained, and then corresponding physical address is obtained by logical address, thus file
Application software can read the data in hidden partition.
Wherein, nested configuration has Virtual File System in file application software, if file application software directly read it is hiding
Data in subregion, the form that data are presented are that " 010101 ... " binary code repressentation will be unable to be formed effectively to be shown to and give use
Family is checked, therefore Virtual File System can parse the catalogue and file structure of hidden partition data, by the data after parsing with
Document form is shown.The pattern that document form is shown will be defined by the interface UI of file application software.
Virtual File System configuration is entered in file application software as a result, so that file application software is configured to
Data and the global procedures shown in hidden partition are opened, without calling the file system driver layer of host operating system, from
And file application software can directly read the data in hidden partition, to skip over host operating system, directly by hidden partition
In data shown with document form at the interface UI of file application software.Therefore, file application software is opened to hide and be divided
The safety of data is higher in area.
File application software is written and read the hidden partition data after display.Specifically, file application software pair
When data carry out read operation in hidden partition, file application software can issue the privately owned order of read operation to storing equipment, private
There are the logical address and private cipher key for carrying read operation instruction in order, reading file, storage equipment receives privately owned life
When enabling, preset private cipher key is matched first with preset-key, carry out read operation after successful match again, stores equipment base
The physical address that file is located in flash chip is found in the mapping table in logical address, and then reads the data in flash chip
File application software is fed back to, file application software shows the data of feedback after Virtual File System.
Similarly, when file application software system is to write operation is carried out in hidden partition, file application software issues write operation
Privately owned order to equipment is stored, write operation instruction, the write-in logical address of file and privately owned close are carried in privately owned order
Key first matches preset private cipher key with preset-key, after successful match when storage equipment receives privately owned order
Write operation, the physical address and logical address that storage equipment writes data into flash chip, and file will be written are carried out again
Phase mapping, and then the mapping table of hidden partition is updated, and mapping table is accordingly fed back into file application software.
When user will store the data copy in equipment into host by file application software.User is answered by file
File or catalogue in storage equipment are selected with software, and is copied to the operation of host, file application software passes through virtual text
Part system obtains user's the file information to be copied and the relevant all logical addresses of file content, file application software issue private
There is order to read the corresponding physical address of file from mapping table to equipment, storage equipment logic-based address is stored, file is answered
The file of same file information, the text that file application software reads storage equipment are created in the operating system of host with software
Number of packages evidence is written in the file of operating system creation.
When user passes through file application software for the data copy in host to when storing in equipment.User is answered by file
The file in host is chosen with software, and selects to be copied to storage equipment, file application software reads host by operating system
The file information and file content of file, file application software generate write storage device logically by Virtual File System
Location, file application software issue privately owned order to equipment is stored, the file information and content are written in storage equipment, storage is set
It is standby that the physical address of write storage device and logical address are mapped and updated in the mapping table, file is completed from host service function system
The operation of storage equipment is written in system.
It is worth noting that file application software can also issue switching command to storage equipment in, storage equipment in response to
Switching command on hidden partition will respond with by the operating system identification of host.
Therefore, it can be realized hidden partition through the above way to show host operating system, so that storage equipment is hidden
Hiding subregion can be identified by host operating system, when storage equipment receives the switching command that file application software issues, be deposited
It stores up equipment and the corresponding logical address of hidden partition mapping table is reported to host operating system, so that the hidden partition of storage equipment
It can be accessed by host operating system.
But it after the hidden partition for making host operating system identify storage equipment using aforesaid way, needs to plug again
Equipment is stored, the hidden partition of storage equipment can be avoided to be identified by host operating system.To by the above-mentioned means, can
Hidden partition is being shown and switched between hiding for host operating system, switching mode is simple, conveniently, without setting to storage
It is standby to carry out complex configurations operation.
As it can be seen that file application software can skip over hidden partition of the host operating system directly to storage equipment in the application
Middle data are read out identification, and user, which only passes through file application software, can enter in the hidden partition of storage equipment,
So that the data in hidden partition are shown in file application software with document form, facilitate user directly in hidden partition
Data are written and read, thus could only be read in hidden partition by way of data matched file application software,
To improve the safety of data in storage equipment.
Embodiment two
The system of the invention also provides a kind of on movable memory equipment hiding data, as shown in fig. 6, system is applied to
Store equipment and host, storage equipment includes control unit, flash chip and cache unit, control unit be electrically connected in
Flash chip and cache unit, control unit are used for the order that control unit receiving host is sent with host realization data interaction,
Control unit is responsible for parsing Host Command, distribution cache unit, the mapping for realizing logical address and physical address, coordinates rubbish time
Receipts and host service etc..It stores in the control unit of equipment and is also configured with division module and reporting module.
Division module is for carrying out subregion to storage equipment in advance to form display subregion and hidden partition, wherein display
The mapping table based on subregion capacity generation logical address to physical address is written in subregion and hidden partition;Reporting module is used
Only report display subregion to be identified by the operating system of host when electricity on a storage device.
Wherein, in one embodiment, it stores and is stored with file application software in the display subregion of equipment, file is using soft
To storage equipment, to determine, there are hidden partitions in storage equipment for sending privately owned order for part, to the data in hidden partition
It is shown and is operated.
In another embodiment, file application software is stored in other storage equipment being connected with host.File
To storage equipment, to determine, there are hidden partitions in storage equipment for sending privately owned order for application software, in hidden partition
Data shown and operated.
It is worth noting that reporting module includes configuration module, identification module and matching module.
Configuration module is multiple for being provided in the display subregion of storage equipment, and adaptation is stored in each display subregion not
With the file application software of host operating system type;Host operating system class is identified when identification module is for storing device power
Type;Matching module is used for Intrusion Detection based on host OS Type, reports the display point for being stored with the file application software being adapted to therewith
Area.
File application software includes identification module, read module, display module and operation module.
There are the hidden partitions for after hidden partition, receiving storage equipment feedback to reflect in storage equipment for determining for identification module
Corresponding logical address in firing table;Read module is used for based on the corresponding physical address of logical address in hidden partition mapping table,
Read the data of hidden partition;Display module is used to parse the catalogue and file knot of hidden partition data by Virtual File System
Structure shows the data after parsing with document form;Operation module is for being written and read behaviour to the hidden partition data after display
Make.
File application software further includes switching module, and switching module is for issuing switching command into storage equipment, storage
Equipment is in response to switching command will be responded on hidden partition by the operating system identification of host.
File application software can skip over host operating system directly to number in the hidden partition of storage equipment in the application
According to identification is read out, user, which only passes through file application software, can be entered in the hidden partition of storage equipment, so that
Data in hidden partition are shown in file application software with document form, facilitate user directly to the data in hidden partition
It is written and read, to could only be read in hidden partition by way of data matched file application software, to mention
The safety of data in height storage equipment.
The above is only exemplary embodiment of the invention, protection scope and is not intended to limit the present invention, this hair
Bright protection scope is determined by the attached claims.
Claims (10)
1. a kind of method of the hiding data on movable memory equipment, which comprises the steps of:
Subregion is carried out to form display subregion and hidden partition to storage equipment in advance, wherein in display subregion and hidden partition
It is written with the mapping table based on subregion capacity generation logical address to physical address;
Display subregion is reported when storing device power only to be identified by the operating system of host;
Sending privately owned order by file application software, to determine, there are hidden partitions in storage equipment to storage equipment, based on text
Part application software is shown and is operated to the data in hidden partition.
2. a kind of method of hiding data on movable memory equipment according to claim 1, which is characterized in that institute
State file application software be stored in be connected with host other storage equipment in or file application software be stored in storage and set
In standby display subregion.
3. a kind of method of hiding data on movable memory equipment according to claim 1, which is characterized in that In
Display subregion is reported when storing device power only to include the following steps: by the identification of the operating system of host
The display subregion of storage equipment is provided with multiple, is stored in each display subregion and is adapted to different host operating system types
File application software;
Host operating system type is identified when storing device power;
Intrusion Detection based on host OS Type reports the display subregion for being stored with the file application software being adapted to therewith.
4. a kind of method of hiding data on movable memory equipment according to claim 1, which is characterized in that logical
It crosses file application software and sends privately owned order to storage equipment so that there are hidden partitions in determining storage equipment, be based on file application
Software is shown and is operated to the data in hidden partition, is included the following steps:
File application software determines that file application software receives the hidden of storage equipment feedback there are after hidden partition in storage equipment
Hide corresponding logical address in subregion mapping table;
File application software is based on the corresponding physical address of logical address in hidden partition mapping table, reads the number of hidden partition
According to;
File application software parses the catalogue and file structure of hidden partition data by its nested Virtual File System, will solve
Data after analysis are shown with document form;
File application software is written and read the hidden partition data after display.
5. a kind of method of hiding data on movable memory equipment according to claim 1, which is characterized in that institute
Switching command can be issued into storage equipment by stating file application software, and storage equipment is in response to switching command with will be on hidden partition
It responds with by the operating system identification of host.
6. a kind of system of the hiding data on movable memory equipment characterized by comprising
Division module, for carrying out subregion to storage equipment in advance to form display subregion and hidden partition, wherein display subregion
Be written in hidden partition based on subregion capacity generate logical address to physical address mapping table;
Reporting module, for only reporting display subregion when electricity on a storage device to be identified by the operating system of host;
File application software, for sending privately owned order, to storage equipment, to determine, there are hidden partitions in storage equipment, with right
Data in hidden partition are shown and are operated.
7. a kind of system of hiding data on movable memory equipment according to claim 6, which is characterized in that text
Part application software is stored in other storage equipment being connected with host or file application software is stored in storage equipment
It shows in subregion.
8. a kind of system of hiding data on movable memory equipment according to claim 6, which is characterized in that institute
Stating reporting module includes:
Configuration module, the display subregion for storing equipment is provided with multiple, and adaptation different hosts behaviour is stored in each display subregion
Make the file application software of system type;
Identification module identifies host operating system type when storing device power;
Matching module, Intrusion Detection based on host OS Type report the display subregion for being stored with the file application software being adapted to therewith.
9. a kind of system of hiding data on movable memory equipment according to claim 6, which is characterized in that text
Part application software includes:
Identification module, for determining, there are the hidden partition mappings for after hidden partition, receiving storage equipment feedback in storage equipment
Corresponding logical address in table;
Read module reads the data of hidden partition based on the corresponding physical address of logical address in hidden partition mapping table;
Display module, for parsing the catalogue and file structure of hidden partition data by Virtual File System, after parsing
Data are shown with document form;
Operation module, for being written and read to the hidden partition data after display.
10. a kind of system of hiding data on movable memory equipment according to claim 6, which is characterized in that
The file application software further include:
Switching module, for issuing switching command into storage equipment, storage equipment is in response to switching command with by hidden partition
On respond with by host operating system identification.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910853849.6A CN110489357B (en) | 2019-09-10 | 2019-09-10 | Method and system for hiding data on removable storage device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910853849.6A CN110489357B (en) | 2019-09-10 | 2019-09-10 | Method and system for hiding data on removable storage device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110489357A true CN110489357A (en) | 2019-11-22 |
| CN110489357B CN110489357B (en) | 2023-07-14 |
Family
ID=68557242
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910853849.6A Active CN110489357B (en) | 2019-09-10 | 2019-09-10 | Method and system for hiding data on removable storage device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110489357B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111913900A (en) * | 2020-07-21 | 2020-11-10 | 大唐微电子技术有限公司 | Method for communication between host and external equipment, storage medium and electronic device |
| CN112579107A (en) * | 2020-12-24 | 2021-03-30 | 深圳须弥云图空间科技有限公司 | Data hiding and calling method and device, electronic equipment and readable storage medium |
| CN113378245A (en) * | 2021-07-07 | 2021-09-10 | 北京安天网络安全技术有限公司 | Operation and maintenance method and device of safety state data, electronic equipment and storage medium |
| CN113535603A (en) * | 2021-06-22 | 2021-10-22 | 杭州华澜微电子股份有限公司 | Method for implementing data hiding partition |
| CN113794701A (en) * | 2021-08-30 | 2021-12-14 | 合肥致存微电子有限责任公司 | Real-time dynamic SCSI private command communication locking method and device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102654849A (en) * | 2011-03-03 | 2012-09-05 | 赛酷特(北京)信息技术有限公司 | Method for hiding and reading by partitions |
| US20130262879A1 (en) * | 2012-03-29 | 2013-10-03 | Aptos Technology Inc. | Secure type storage device and information security system |
| CN106709361A (en) * | 2016-11-30 | 2017-05-24 | 中国人民解放军信息工程大学 | File content hidden storage access method based on capacity hiding and multi-file system and storage device of method |
| CN109840435A (en) * | 2017-11-27 | 2019-06-04 | 深圳市朗科科技股份有限公司 | A kind of data guard method storing equipment |
-
2019
- 2019-09-10 CN CN201910853849.6A patent/CN110489357B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102654849A (en) * | 2011-03-03 | 2012-09-05 | 赛酷特(北京)信息技术有限公司 | Method for hiding and reading by partitions |
| US20130262879A1 (en) * | 2012-03-29 | 2013-10-03 | Aptos Technology Inc. | Secure type storage device and information security system |
| CN106709361A (en) * | 2016-11-30 | 2017-05-24 | 中国人民解放军信息工程大学 | File content hidden storage access method based on capacity hiding and multi-file system and storage device of method |
| CN109840435A (en) * | 2017-11-27 | 2019-06-04 | 深圳市朗科科技股份有限公司 | A kind of data guard method storing equipment |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111913900A (en) * | 2020-07-21 | 2020-11-10 | 大唐微电子技术有限公司 | Method for communication between host and external equipment, storage medium and electronic device |
| CN112579107A (en) * | 2020-12-24 | 2021-03-30 | 深圳须弥云图空间科技有限公司 | Data hiding and calling method and device, electronic equipment and readable storage medium |
| CN113535603A (en) * | 2021-06-22 | 2021-10-22 | 杭州华澜微电子股份有限公司 | Method for implementing data hiding partition |
| CN113378245A (en) * | 2021-07-07 | 2021-09-10 | 北京安天网络安全技术有限公司 | Operation and maintenance method and device of safety state data, electronic equipment and storage medium |
| CN113794701A (en) * | 2021-08-30 | 2021-12-14 | 合肥致存微电子有限责任公司 | Real-time dynamic SCSI private command communication locking method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110489357B (en) | 2023-07-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110489357A (en) | A kind of method and system of the hiding data on movable memory equipment | |
| CN100419713C (en) | Mothed of dividing large volume storage stocking device | |
| US7461198B2 (en) | System and method for configuration and management of flash memory | |
| CN100517276C (en) | Data safe memory method and device | |
| CN106909313A (en) | Accumulator system and control method | |
| CN104407936B (en) | A kind of data snapshot method and device | |
| EP3346387B1 (en) | Storage system and system garbage collection method | |
| CN102955745A (en) | Mobile storage terminal and data management method thereof | |
| KR20120084906A (en) | Non-volatile memory system and management method therefor | |
| WO2018082616A1 (en) | Dram-based storage cache method and intelligent terminal | |
| CN101315613A (en) | Apparatus and method of processing data of non-volatile memory | |
| CN109255262A (en) | Data guard method and solid state hard disk | |
| CN101430700A (en) | File management device and storage device | |
| CN102945208A (en) | Multiuser hard disk system and implementation method thereof | |
| CN116225334A (en) | Cold and hot data storage method, device and medium | |
| CN110569202A (en) | Multimedia file playing method and system for movable storage equipment | |
| CN107193693A (en) | A kind of online data storage optimization method based on storage system | |
| CN110554843A (en) | Method and system for storing file data by multiple storage devices | |
| CN102646076A (en) | Data anti-leakage method of mobile medium and mobile medium | |
| CN115934002B (en) | Solid state disk access method, solid state disk, storage system and cloud server | |
| CN101350034A (en) | Mobile memory apparatus and method for visiting file | |
| CN102436424B (en) | Anti-disclosure copier safety electronic disc | |
| CN104572488A (en) | Memory management method, memory management device and terminal | |
| CN110658978A (en) | Data processing method and device, electronic equipment and readable storage medium | |
| CN105630697A (en) | Storage structure for storing small file by MRAM |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Address after: 518000 09-2, 10-11 unit, 6 building, Changhong science and technology building, 18 South Road, science and Technology Park, Nanshan District, Shenzhen, Guangdong, China 18 Applicant after: Deyi Microelectronics Co.,Ltd. Address before: 518000 09-2, 10-11 unit, 6 building, Changhong science and technology building, 18 South Road, science and Technology Park, Nanshan District, Shenzhen, Guangdong, China 18 Applicant before: YEESTOR MICROELECTRONICS Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |