CN111934859A - Cipher card communication method, cipher card and computer equipment - Google Patents
Cipher card communication method, cipher card and computer equipment Download PDFInfo
- Publication number
- CN111934859A CN111934859A CN202010711549.7A CN202010711549A CN111934859A CN 111934859 A CN111934859 A CN 111934859A CN 202010711549 A CN202010711549 A CN 202010711549A CN 111934859 A CN111934859 A CN 111934859A
- Authority
- CN
- China
- Prior art keywords
- protocol
- communication
- pcie
- password
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 159
- 238000000034 method Methods 0.000 title claims abstract description 34
- 238000006243 chemical reaction Methods 0.000 claims abstract description 84
- 230000002093 peripheral effect Effects 0.000 claims description 12
- 230000006870 function Effects 0.000 description 36
- 238000010586 diagram Methods 0.000 description 5
- 230000009286 beneficial effect Effects 0.000 description 3
- 238000004590 computer program Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0877—Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F13/00—Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
- G06F13/38—Information transfer, e.g. on bus
- G06F13/40—Bus structure
- G06F13/4063—Device-to-bus coupling
- G06F13/4068—Electrical coupling
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F13/00—Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
- G06F13/38—Information transfer, e.g. on bus
- G06F13/42—Bus transfer protocol, e.g. handshake; Synchronisation
- G06F13/4204—Bus transfer protocol, e.g. handshake; Synchronisation on a parallel bus
- G06F13/4221—Bus transfer protocol, e.g. handshake; Synchronisation on a parallel bus being an input/output bus, e.g. ISA bus, EISA bus, PCI bus, SCSI bus
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/08—Protocols for interworking; Protocol conversion
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/18—Multiprotocol handlers, e.g. single devices capable of handling multiple protocols
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Information Transfer Systems (AREA)
Abstract
The invention discloses a password card communication method, a password card and computer equipment. Wherein the method comprises the following steps: the cipher card comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a cipher module, wherein the first conversion module converts a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts a USB protocol of the USB interface into a second protocol, the first protocol and the second protocol are the same, the selection module selects a communication signal corresponding to one protocol from the first protocol and the second protocol to communicate with a server, and the cipher module outputs a cipher service according to the communication so that the server performing communication runs a function corresponding to the output cipher service. By the mode, the dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus can be realized.
Description
Technical Field
The invention relates to the technical field of password cards, in particular to a password card communication method, a password card and computer equipment.
Background
The cipher card is a cipher device with functions of cipher operation, key management, physical random number generation and self-security protection measures of the device.
The cryptographic card can be applied to communication devices, computer devices, and security apparatuses that require security functions such as cryptographic operation and key management, such as VPN (Virtual Private Network) devices, CA (Certificate Authority) system-related devices, Network cryptographic machines, security servers, security terminals, security management centers, and key management devices.
However, the conventional cryptographic card communication scheme is generally a single protocol communication based on PCIe (peripheral component interconnect express, high speed Serial Bus) and is a method of communicating with a server through a PCIe interface and outputting a cryptographic service through a cryptographic module, so that different cryptographic functions can be run on the communicating server, and a dual protocol communication based on a high speed Serial Bus (USB) and a Universal Serial Bus (USB) cannot be implemented.
Disclosure of Invention
In view of the above, an object of the present invention is to provide a cryptographic card communication method, a cryptographic card, and a computer device, which can implement dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus.
According to an aspect of the present invention, there is provided a cryptographic card communication method, including: the password card comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a password module; the first conversion module converts a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts a USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol; the selection module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server; and the password module outputs password service according to the communication so as to enable the server carrying out communication to run the function corresponding to the output password service.
The first conversion module converts a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts a USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol, including: the first conversion module converts a PCIe protocol of the PCIe interface into a USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into a serial port protocol or a serial peripheral interface protocol or a two-wire serial bus protocol or a parallel protocol and the second conversion module converts the USB protocol of the USB interface into a corresponding serial port protocol or an SPI protocol or an I2C protocol or a parallel protocol.
Wherein, the selecting module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server, and includes: the selection module adopts a mode of automatically detecting communication signals corresponding to a PCIe protocol, selects the communication signals corresponding to the PCIe interface to communicate with the server when automatically detecting that the communication signals corresponding to the PCIe protocol exist, and selects the communication signals corresponding to the USB interface to communicate with the server when automatically detecting that the communication signals corresponding to the PCIe protocol do not exist.
Wherein, the cryptographic module outputs cryptographic service according to the communication to make the server for communication run the function corresponding to the output cryptographic service, including: and the password module adopts a mode of outputting passwords at least twice according to the communication so as to enable the server for communication to run a password function of the password corresponding to the same data corresponding to the output password.
Wherein, after the cryptographic module outputs a cryptographic service according to the performed communication so that the server performing communication runs a function corresponding to the outputted cryptographic service, the method further comprises: the password card further comprises an automatic locking module, and the automatic locking module automatically locks the function, corresponding to the output password service, running on the communication server when detecting that the time after the password service is output reaches a preset threshold value.
According to another aspect of the present invention, there is provided a cryptographic card comprising: the system comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a password module; the first conversion module is used for converting the PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module is used for converting the USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol; the selection module is used for selecting a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server; and the password module is used for outputting password service according to the communication so as to enable the server for communication to run the function corresponding to the output password service.
The first conversion module converts a PCIe protocol of the PCIe interface into a USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into a serial port protocol or a serial peripheral interface protocol or a two-wire serial bus protocol or a parallel protocol and the second conversion module converts the USB protocol of the USB interface into a corresponding serial port protocol or a SPI protocol or an I2C protocol or a parallel protocol.
Wherein the selection module is specifically configured to: the method comprises the steps of adopting a mode of automatically detecting a communication signal corresponding to a PCIe protocol, selecting the communication signal corresponding to the PCIe interface to communicate with a server when the communication signal corresponding to the PCIe protocol is automatically detected to exist, and selecting the communication signal corresponding to the USB interface to communicate with the server when the communication signal corresponding to the PCIe protocol is automatically detected to not exist.
Wherein, the cryptographic module is specifically configured to: and according to the communication, adopting a mode of outputting the password for at least two times so as to enable the server for communication to run a password function of the password corresponding to the same data corresponding to the output password.
Wherein, the password card still includes: an automatic locking module; and the automatic locking module is used for automatically locking the function of the server for communication, which is operated on and corresponds to the output password service, when the time after the password service is output reaches a preset threshold value.
According to yet another aspect of the present invention, there is provided a computer apparatus comprising: at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the cryptographic card communication method of any one of the above.
According to a further aspect of the present invention, there is provided a computer readable storage medium storing a computer program which, when executed by a processor, implements a cryptographic card communication method as in any one of the above.
It can be found that, according to the above scheme, the cryptographic card may include a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a cryptographic module, where the first conversion module may convert a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module may convert a USB protocol of the USB interface into a second protocol, where the first protocol and the second protocol are the same protocol, and the selection module selects a communication signal corresponding to one of the protocols from the first protocol and the second protocol to communicate with a server, and the cryptographic module outputs a cryptographic service according to the ongoing communication, so that the communicating server runs a function corresponding to the output cryptographic service, thereby implementing dual-protocol communication based on a high-speed serial computer expansion bus standard and a universal serial bus.
Further, in the above solution, the first conversion module converts the PCIe protocol of the PCIe interface into the USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into the serial port protocol or the serial peripheral interface protocol or the two-wire serial bus protocol or the parallel protocol and the second conversion module converts the USB protocol of the USB interface into the corresponding serial port protocol or the SPI protocol or the I2C protocol or the parallel protocol, which can achieve the advantage of converting the USB protocol of the USB interface and the PCIe protocol of the PCIe interface into the same protocol, thereby facilitating the dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus.
Further, in the above scheme, the selecting module may adopt a mode of automatically detecting a communication signal corresponding to a PCIe protocol, when it is automatically detected that a communication signal corresponding to the PCIe protocol exists, select the communication signal corresponding to the PCIe interface to communicate with the server, and when it is automatically detected that a communication signal corresponding to the PCIe protocol does not exist, select the communication signal corresponding to the USB interface to communicate with the server.
Further, according to the above scheme, the cryptographic module may output the password at least twice according to the performed communication, so that the server performing communication runs the cryptographic function of the password corresponding to the same data corresponding to the output password, which is beneficial to improving the security of the running cryptographic function.
Further, according to the above scheme, the password card may further include an automatic locking module, and the automatic locking module may automatically lock a function, which is executed on the server performing communication and corresponds to the output password service, when it is detected that the time after the password service is output reaches a preset threshold value, which may achieve the advantage of further improving the security of the password service.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
FIG. 1 is a flow chart illustrating a cryptographic card communication method according to an embodiment of the present invention;
FIG. 2 is a flow chart illustrating another embodiment of the cryptographic card communication method of the present invention;
FIG. 3 is a schematic structural diagram of an embodiment of a cryptographic card of the present invention;
FIG. 4 is a schematic structural diagram of another embodiment of the cryptographic card of the present invention;
FIG. 5 is a schematic structural diagram of an embodiment of the computer apparatus of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and examples. It is to be noted that the following examples are only illustrative of the present invention, and do not limit the scope of the present invention. Similarly, the following examples are only some but not all examples of the present invention, and all other examples obtained by those skilled in the art without any inventive work are within the scope of the present invention.
The invention provides a cipher card communication method which can realize dual-protocol communication based on a high-speed serial computer expansion bus standard and a universal serial bus.
Referring to fig. 1, fig. 1 is a flow chart illustrating a cryptographic card communication method according to an embodiment of the present invention. The cipher card comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a cipher module. It should be noted that the method of the present invention is not limited to the flow sequence shown in fig. 1 if the results are substantially the same. As shown in fig. 1, the method comprises the steps of:
s101: the first conversion module converts the PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts the USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol.
The first conversion module converts the PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts the USB protocol of the USB interface into a second protocol; the first protocol and the second protocol are the same protocol, and may include:
the first conversion module converts the PCIe protocol of the PCIe Interface into a USB protocol or the second conversion module converts the USB protocol of the USB Interface into a PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe Interface into a Serial port protocol or an SPI (Serial Peripheral Interface) protocol or an I2C (Inter-Integrated Circuit) protocol or a parallel protocol, and the second conversion module converts the USB protocol of the USB Interface into a corresponding Serial port protocol or an SPI protocol or an I2C protocol or a parallel protocol, and thus the advantage is that the USB protocol of the USB Interface and the PCIe protocol of the PCIe Interface can be converted into the same protocol, which is convenient for realizing dual-protocol communication based on a high-speed Serial computer expansion bus standard and a universal Serial bus.
S102: the selection module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server.
The selecting module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server, and may include:
the selection module adopts a mode of automatically detecting communication signals corresponding to a PCIe protocol, when the communication signals corresponding to the PCIe protocol are automatically detected to exist, the communication signals corresponding to the PCIe interface are selected to communicate with the server, and when the communication signals corresponding to the PCIe protocol are automatically detected to not exist, the communication signals corresponding to the USB interface are selected to communicate with the server.
In this embodiment, the communication signal corresponding to one of the protocols may be a communication signal corresponding to one of a PCIe protocol, a USB protocol, a serial port protocol or an SPI protocol, an I2C protocol or a parallel protocol, and the like, which is not limited in the present invention.
S103: the cryptographic module outputs cryptographic service according to the communication so that the server performing communication runs a function corresponding to the output cryptographic service.
Wherein, the cryptographic module outputs the cryptographic service according to the performed communication, so that the server performing the communication runs the function of the cryptographic service corresponding to the output, which may include:
the cryptographic module outputs the password at least twice according to the communication, so that the server for communication runs the cryptographic function of the password corresponding to the same data corresponding to the output password, and the advantage is that the security of the running cryptographic function can be improved.
Wherein, after the cryptographic module outputs the cryptographic service according to the performed communication, so that the server performing communication runs the function corresponding to the output cryptographic service, the method may further include:
the password card also comprises an automatic locking module, and the automatic locking module automatically locks the function of the password service corresponding to the output, which is operated on the communication server, when the time after the password service is output reaches a preset threshold value, so that the advantage of further improving the security of the password service can be realized.
It can be seen that, in this embodiment, the cryptographic card may include a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a cryptographic module, the first translation module may translate a PCIe protocol of the PCIe interface to a first protocol and/or the second translation module may translate a USB protocol of the USB interface to a second protocol, wherein the first protocol and the second protocol are the same protocol, and the selection module selects one of the first protocol and the second protocol to correspond to the communication signal for communication with the server, and the cryptographic module outputs cryptographic service according to the communication, the server for communication is enabled to run a function of a cryptographic service corresponding to the output, thereby realizing dual-protocol communication based on a high-speed serial computer expansion bus standard and a universal serial bus.
Further, in this embodiment, the first conversion module converts the PCIe protocol of the PCIe interface into the USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into the serial port protocol, the serial peripheral interface protocol, the two-wire serial bus protocol, or the parallel protocol, and the second conversion module converts the USB protocol of the USB interface into the corresponding serial port protocol, the SPI protocol, the I2C protocol, or the parallel protocol, and thus the advantage of converting the USB protocol of the USB interface and the PCIe protocol of the PCIe interface into the same protocol is achieved, which is convenient for implementing dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus.
Further, in this embodiment, the selecting module may adopt a mode of automatically detecting a communication signal corresponding to a PCIe protocol, and when it is automatically detected that a communication signal corresponding to the PCIe protocol exists, select the communication signal corresponding to the PCIe interface to communicate with the server, and when it is automatically detected that a communication signal corresponding to the PCIe protocol does not exist, select the communication signal corresponding to the USB interface to communicate with the server.
Further, in this embodiment, the cryptographic module may output the password at least twice according to the performed communication, so that the server performing the communication runs the cryptographic function of the password corresponding to the same data corresponding to the output password, which is beneficial to improve the security of the running cryptographic function.
Referring to fig. 2, fig. 2 is a schematic flow chart of another embodiment of the cryptographic card communication method of the present invention. The cipher card comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module, a cipher module and an automatic locking module. In this embodiment, the method includes the steps of:
s201: the first conversion module converts the PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts the USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol.
As described above in S101, further description is omitted here.
S202: the selection module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server.
As described above in S102, further description is omitted here.
S203: the cryptographic module outputs cryptographic service according to the communication so that the server performing communication runs a function corresponding to the output cryptographic service.
As described above in S103, which is not described herein.
S204: and when the automatic locking module detects that the time after the password service is output reaches a preset threshold value, automatically locking the function of the password service corresponding to the output, which is operated on the communication server.
It can be seen that, in this embodiment, the cryptographic card may further include an automatic locking module, and the automatic locking module may automatically lock a function, which is executed on the server performing communication and corresponds to the outputted cryptographic service, when it is detected that the time after the outputting of the cryptographic service reaches a preset threshold, which may achieve the advantage of further improving the security of the cryptographic service.
The invention also provides a password card which can realize dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus.
Referring to fig. 3, fig. 3 is a schematic structural diagram of a cryptographic card according to an embodiment of the present invention. The password card 30 is the password card in the above embodiment. In this embodiment, the cryptographic card 30 includes a PCIe interface 31, a first conversion module 32, a USB interface 33, a second conversion module 34, a selection module 35, and a cryptographic module 36.
The first conversion module 32 is configured to convert the PCIe protocol of the PCIe interface 31 into a first protocol and/or the second conversion module 34 is configured to convert the USB protocol of the USB interface 33 into a second protocol; wherein the first protocol and the second protocol are the same protocol.
The selecting module 35 is configured to select a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server.
The cryptographic module 36 is configured to output a cryptographic service according to the performed communication, so that the server performing the communication runs a function corresponding to the output cryptographic service.
Alternatively, the first conversion module 32 may convert the PCIe protocol of the PCIe Interface 31 into a USB protocol or the second conversion module 34 may convert the USB protocol of the USB Interface 33 into a PCIe protocol, or the first conversion module 32 may convert the PCIe protocol of the PCIe Interface 31 into a Serial port protocol or an SPI (Serial Peripheral Interface) protocol or an I2C (Inter-Integrated Circuit) protocol or a parallel protocol, etc., and the second conversion module 34 may convert the USB protocol of the USB Interface 33 into a corresponding Serial port protocol or an SPI protocol or an I2C protocol or a parallel protocol, etc.
Optionally, the selecting module 35 may be specifically configured to:
by adopting a mode of automatically detecting the communication signal corresponding to the PCIe protocol, when the communication signal corresponding to the PCIe protocol is automatically detected to exist, the communication signal corresponding to the PCIe interface 31 is selected to communicate with the server, and when the communication signal corresponding to the PCIe protocol is automatically detected to not exist, the communication signal corresponding to the USB interface 33 is selected to communicate with the server.
Optionally, the cryptographic module 36 may be specifically configured to:
according to the communication, at least twice password output is adopted, so that the server for communication runs the password function of the password of the same data corresponding to the output password.
Referring to fig. 4, fig. 4 is a schematic structural diagram of another embodiment of the cryptographic card of the present invention. Different from the previous embodiment, the combination card 40 of the present embodiment further includes an automatic locking module 41.
The automatic locking module 41 is configured to automatically lock a function, corresponding to the output password service, running on the server performing communication when it is detected that the time after the password service is output reaches a preset threshold.
Each unit module of the password card 30/40 can respectively execute the corresponding steps in the above method embodiments, and therefore, the detailed description of each unit module is omitted here, and please refer to the description of the corresponding steps above.
The present invention further provides a computer device, as shown in fig. 5, comprising: at least one processor 51; and a memory 52 communicatively coupled to the at least one processor 51; the memory 52 stores instructions executable by the at least one processor 51, and the instructions are executed by the at least one processor 51 to enable the at least one processor 51 to execute the above mentioned cryptographic card communication method.
Wherein the memory 52 and the processor 51 are coupled in a bus, which may comprise any number of interconnected buses and bridges, which couple one or more of the various circuits of the processor 51 and the memory 52 together. The bus may also connect various other circuits such as peripherals, voltage regulators, power management circuits, and the like, which are well known in the art, and therefore, will not be described any further herein. A bus interface provides an interface between the bus and the transceiver. The transceiver may be one element or a plurality of elements, such as a plurality of receivers and transmitters, providing a means for communicating with various other apparatus over a transmission medium. The data processed by the processor 51 is transmitted over a wireless medium via an antenna, which further receives the data and transmits the data to the processor 51.
The processor 51 is responsible for managing the bus and general processing and may also provide various functions including timing, peripheral interfaces, voltage regulation, power management, and other control functions. And the memory 52 may be used to store data used by the processor 51 in performing operations.
The present invention further provides a computer-readable storage medium storing a computer program. The computer program realizes the above-described method embodiments when executed by a processor.
It can be found that, according to the above scheme, the cryptographic card may include a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a cryptographic module, where the first conversion module may convert a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module may convert a USB protocol of the USB interface into a second protocol, where the first protocol and the second protocol are the same protocol, and the selection module selects a communication signal corresponding to one of the protocols from the first protocol and the second protocol to communicate with a server, and the cryptographic module outputs a cryptographic service according to the ongoing communication, so that the communicating server runs a function corresponding to the output cryptographic service, thereby implementing dual-protocol communication based on a high-speed serial computer expansion bus standard and a universal serial bus.
Further, in the above solution, the first conversion module converts the PCIe protocol of the PCIe interface into the USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into the serial port protocol or the serial peripheral interface protocol or the two-wire serial bus protocol or the parallel protocol and the second conversion module converts the USB protocol of the USB interface into the corresponding serial port protocol or the SPI protocol or the I2C protocol or the parallel protocol, which can achieve the advantage of converting the USB protocol of the USB interface and the PCIe protocol of the PCIe interface into the same protocol, thereby facilitating the dual-protocol communication based on the high-speed serial computer expansion bus standard and the universal serial bus.
Further, in the above scheme, the selecting module may adopt a mode of automatically detecting a communication signal corresponding to a PCIe protocol, when it is automatically detected that a communication signal corresponding to the PCIe protocol exists, select the communication signal corresponding to the PCIe interface to communicate with the server, and when it is automatically detected that a communication signal corresponding to the PCIe protocol does not exist, select the communication signal corresponding to the USB interface to communicate with the server.
Further, according to the above scheme, the cryptographic module may output the password at least twice according to the performed communication, so that the server performing communication runs the cryptographic function of the password corresponding to the same data corresponding to the output password, which is beneficial to improving the security of the running cryptographic function.
Further, according to the above scheme, the password card may further include an automatic locking module, and the automatic locking module may automatically lock a function, which is executed on the server performing communication and corresponds to the output password service, when it is detected that the time after the password service is output reaches a preset threshold value, which may achieve the advantage of further improving the security of the password service.
In the several embodiments provided in the present invention, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, a division of a module or a unit is merely a logical division, and an actual implementation may have another division, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
Units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be substantially or partially implemented in the form of a software product stored in a storage medium and including instructions for causing a computer device (which may be a personal computer, a server, a network device, or the like) or a processor (processor) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
The above description is only a part of the embodiments of the present invention, and not intended to limit the scope of the present invention, and all equivalent devices or equivalent processes performed by the present invention through the contents of the specification and the drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.
Claims (10)
1. A cryptographic card communication method, comprising:
the password card comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a password module;
the first conversion module converts a PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module converts a USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol;
the selection module selects a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server;
and the password module outputs password service according to the communication so as to enable the server carrying out communication to run the function corresponding to the output password service.
2. The cryptographic card communication method of claim 1, wherein the first conversion module converts a PCIe protocol of the PCIe interface to a first protocol and/or the second conversion module converts a USB protocol of the USB interface to a second protocol; wherein the first protocol and the second protocol are the same protocol, including:
the first conversion module converts a PCIe protocol of the PCIe interface into a USB protocol or the second conversion module converts the USB protocol of the USB interface into the PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into a serial port protocol or a serial peripheral interface protocol or a two-wire serial bus protocol or a parallel protocol and the second conversion module converts the USB protocol of the USB interface into a corresponding serial port protocol or an SPI protocol or an I2C protocol or a parallel protocol.
3. The cryptographic card communication method of claim 1, wherein the selecting module selects one of the first protocol and the second protocol to correspond to a communication signal for communication with a server, and includes:
the selection module adopts a mode of automatically detecting communication signals corresponding to a PCIe protocol, selects the communication signals corresponding to the PCIe interface to communicate with the server when automatically detecting that the communication signals corresponding to the PCIe protocol exist, and selects the communication signals corresponding to the USB interface to communicate with the server when automatically detecting that the communication signals corresponding to the PCIe protocol do not exist.
4. The cryptographic card communication method of claim 1, wherein the cryptographic module outputs a cryptographic service according to the performed communication, so that a function corresponding to the outputted cryptographic service is executed on the communication server, and the method comprises:
and the password module adopts a mode of outputting passwords at least twice according to the communication so as to enable the server for communication to run a password function of the password corresponding to the same data corresponding to the output password.
5. The cryptographic card communication method of claim 1, wherein after the cryptographic module outputs a cryptographic service according to the performed communication, so that a function corresponding to the outputted cryptographic service is executed on the server performing communication, further comprising:
the password card further comprises an automatic locking module, and the automatic locking module automatically locks the function, corresponding to the output password service, running on the communication server when detecting that the time after the password service is output reaches a preset threshold value.
6. A cryptographic card, comprising:
the system comprises a PCIe interface, a first conversion module, a USB interface, a second conversion module, a selection module and a password module;
the first conversion module is used for converting the PCIe protocol of the PCIe interface into a first protocol and/or the second conversion module is used for converting the USB protocol of the USB interface into a second protocol; wherein the first protocol and the second protocol are the same protocol;
the selection module is used for selecting a communication signal corresponding to one of the first protocol and the second protocol to communicate with the server;
and the password module is used for outputting password service according to the communication so as to enable the server for communication to run the function corresponding to the output password service.
7. The cryptographic card of claim 6, wherein the first conversion module converts the PCIe protocol of the PCIe interface into a USB protocol or the second conversion module converts the USB protocol of the USB interface into a PCIe protocol, or the first conversion module converts the PCIe protocol of the PCIe interface into a serial port protocol or a serial peripheral interface protocol or a two-wire serial bus protocol or a parallel protocol and the second conversion module converts the USB protocol of the USB interface into a corresponding serial port protocol or a SPI protocol or an I2C protocol or a parallel protocol.
8. The cryptographic card of claim 6, wherein the selection module is specifically configured to:
the method comprises the steps of adopting a mode of automatically detecting a communication signal corresponding to a PCIe protocol, selecting the communication signal corresponding to the PCIe interface to communicate with a server when the communication signal corresponding to the PCIe protocol is automatically detected to exist, and selecting the communication signal corresponding to the USB interface to communicate with the server when the communication signal corresponding to the PCIe protocol is automatically detected to not exist.
9. The cryptographic card of claim 6, wherein the cryptographic module is specifically configured to:
and according to the communication, adopting a mode of outputting the password for at least two times so as to enable the server for communication to run a password function of the password corresponding to the same data corresponding to the output password.
10. The cryptographic card of claim 6, further comprising:
an automatic locking module;
and the automatic locking module is used for automatically locking the function of the server for communication, which is operated on and corresponds to the output password service, when the time after the password service is output reaches a preset threshold value.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010711549.7A CN111934859A (en) | 2020-07-22 | 2020-07-22 | Cipher card communication method, cipher card and computer equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010711549.7A CN111934859A (en) | 2020-07-22 | 2020-07-22 | Cipher card communication method, cipher card and computer equipment |
Publications (1)
Publication Number | Publication Date |
---|---|
CN111934859A true CN111934859A (en) | 2020-11-13 |
Family
ID=73314512
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202010711549.7A Pending CN111934859A (en) | 2020-07-22 | 2020-07-22 | Cipher card communication method, cipher card and computer equipment |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111934859A (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114116565A (en) * | 2021-11-26 | 2022-03-01 | 天津市英贝特航天科技有限公司 | Circuit, cardboard and computing equipment of compatible PCI and PCIE bus |
Citations (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN204066121U (en) * | 2013-10-31 | 2014-12-31 | 中国大唐集团财务有限公司 | A kind of PCI-E encrypted card |
US20150295928A1 (en) * | 2014-04-11 | 2015-10-15 | Hangzhou Dianzi University | Distributed cryptography system |
CN206133571U (en) * | 2016-06-30 | 2017-04-26 | 北京三未信安科技发展有限公司 | Password card based on PCIe interface |
CN206348798U (en) * | 2017-01-09 | 2017-07-21 | 杭州冰特科技股份有限公司 | A kind of encrypted card of many USB controllers |
CN207148841U (en) * | 2017-04-05 | 2018-03-27 | 山东超越数控电子有限公司 | A kind of credible encryption PCIE expansion cards of multifunctional safe |
CN108243009A (en) * | 2018-01-18 | 2018-07-03 | 郑州云海信息技术有限公司 | A kind of TPCM boards based on FPGA and crypto chip |
CN108388482A (en) * | 2017-09-26 | 2018-08-10 | 北京计算机技术及应用研究所 | A kind of double nip algorithm process circuit |
CN208538132U (en) * | 2018-05-15 | 2019-02-22 | 苏州科达科技股份有限公司 | A kind of encryption board |
CN109934020A (en) * | 2019-04-02 | 2019-06-25 | 山东渔翁信息技术股份有限公司 | A kind of encryption device |
CN209803788U (en) * | 2019-06-18 | 2019-12-17 | 苏州国芯科技股份有限公司 | PCIE credible password card |
CN110753320A (en) * | 2019-09-25 | 2020-02-04 | 株洲凯创技术有限公司 | Train-mounted encryption device and train-mounted encryption machine |
CN110929298A (en) * | 2019-11-20 | 2020-03-27 | 天津津航计算技术研究所 | Multi-interface LRM encryption board card |
CN210867732U (en) * | 2019-11-12 | 2020-06-26 | 中冶京诚工程技术有限公司 | SPI changes ethernet interface circuit and frequency conversion controller |
-
2020
- 2020-07-22 CN CN202010711549.7A patent/CN111934859A/en active Pending
Patent Citations (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN204066121U (en) * | 2013-10-31 | 2014-12-31 | 中国大唐集团财务有限公司 | A kind of PCI-E encrypted card |
US20150295928A1 (en) * | 2014-04-11 | 2015-10-15 | Hangzhou Dianzi University | Distributed cryptography system |
CN206133571U (en) * | 2016-06-30 | 2017-04-26 | 北京三未信安科技发展有限公司 | Password card based on PCIe interface |
CN206348798U (en) * | 2017-01-09 | 2017-07-21 | 杭州冰特科技股份有限公司 | A kind of encrypted card of many USB controllers |
CN207148841U (en) * | 2017-04-05 | 2018-03-27 | 山东超越数控电子有限公司 | A kind of credible encryption PCIE expansion cards of multifunctional safe |
CN108388482A (en) * | 2017-09-26 | 2018-08-10 | 北京计算机技术及应用研究所 | A kind of double nip algorithm process circuit |
CN108243009A (en) * | 2018-01-18 | 2018-07-03 | 郑州云海信息技术有限公司 | A kind of TPCM boards based on FPGA and crypto chip |
CN208538132U (en) * | 2018-05-15 | 2019-02-22 | 苏州科达科技股份有限公司 | A kind of encryption board |
CN109934020A (en) * | 2019-04-02 | 2019-06-25 | 山东渔翁信息技术股份有限公司 | A kind of encryption device |
CN209803788U (en) * | 2019-06-18 | 2019-12-17 | 苏州国芯科技股份有限公司 | PCIE credible password card |
CN110753320A (en) * | 2019-09-25 | 2020-02-04 | 株洲凯创技术有限公司 | Train-mounted encryption device and train-mounted encryption machine |
CN210867732U (en) * | 2019-11-12 | 2020-06-26 | 中冶京诚工程技术有限公司 | SPI changes ethernet interface circuit and frequency conversion controller |
CN110929298A (en) * | 2019-11-20 | 2020-03-27 | 天津津航计算技术研究所 | Multi-interface LRM encryption board card |
Non-Patent Citations (2)
Title |
---|
孙晓晔;: "基于PCIE的SG DMA高速数据传输系统", 计算机技术 与发展, no. 09 * |
朱孟江;王元强;聂云杰;洪昊;: "基于XC6SLX45T平台的PCIe数据卡设计", 单片机与嵌入式系统应用, no. 11 * |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114116565A (en) * | 2021-11-26 | 2022-03-01 | 天津市英贝特航天科技有限公司 | Circuit, cardboard and computing equipment of compatible PCI and PCIE bus |
CN114116565B (en) * | 2021-11-26 | 2024-01-30 | 天津市英贝特航天科技有限公司 | Circuit compatible with PCI and PCIE buses, card board and computing equipment |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109902053B (en) | SPI communication method based on double controllers, terminal equipment and storage medium | |
US8898665B2 (en) | System, method and computer program product for inviting other virtual machine to access a memory space allocated to a virtual machine | |
US20180210851A1 (en) | Apparatus, method, and electronic device for implementing solid-state drive data interaction | |
KR102471004B1 (en) | In-vehicle Ethernet communication system and communication method thereof | |
EP3012707A1 (en) | Miniaturized calculation and storage merged system | |
CN111934859A (en) | Cipher card communication method, cipher card and computer equipment | |
CN110071827B (en) | Terminal and system for realizing networked KVM | |
US11388028B2 (en) | Communication method and device based on parallel system, and terminal | |
CN114356671A (en) | Board card debugging device, system and method | |
CN112804265B (en) | Unidirectional network gate interface circuit, method and readable storage medium | |
CN109460379B (en) | Serial port selection method and switching device | |
US8954623B2 (en) | Universal Serial Bus devices supporting super speed and non-super speed connections for communication with a host device and methods using the same | |
CN114064545B (en) | Method and device for identifying serial port function, main control chip, household electrical appliance and medium | |
CN102932193A (en) | Network device, management terminal and configuration management system | |
US7184395B2 (en) | Providing reconditioned signals at a plurality of ports | |
CN112416843A (en) | Backboard communication equipment, control method thereof and storage medium | |
CN110737904A (en) | high-performance encryption and decryption device | |
CN104579741A (en) | Business management system | |
US11809365B2 (en) | Data transmission method | |
CN112214438B (en) | Data transmission device, method, network equipment and storage medium | |
CN116828083A (en) | Protocol signal transmission method, device, equipment and storage medium | |
CN112821978B (en) | Clock synchronization-based unidirectional network gate circuit, method and device | |
CN204044830U (en) | The USB encryption device of embedded TCM chip | |
CN220933481U (en) | Serial communication time-sharing multiplexing circuit | |
RU224304U1 (en) | SERVER NETWORK HARDWARE PLATFORM |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination |