CN1124377A - Hard disk information protective technology and equipment for micro computer - Google Patents
Hard disk information protective technology and equipment for micro computer Download PDFInfo
- Publication number
- CN1124377A CN1124377A CN 95114007 CN95114007A CN1124377A CN 1124377 A CN1124377 A CN 1124377A CN 95114007 CN95114007 CN 95114007 CN 95114007 A CN95114007 A CN 95114007A CN 1124377 A CN1124377 A CN 1124377A
- Authority
- CN
- China
- Prior art keywords
- hard disk
- information
- write
- circuit
- writing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The present invention uses the method combining hard ware and software to protect the microcomputer hard disc by two ways of logical protection and physical protection. It not only prevents effectively the computer virus and man-made wrong operation to destruct the hard disc information, but also can conduct stochastical recovery of the CMOS content in the using course,thus it puts an end once and for all to prevent the CMOS data from losing and illegally revising.
Description
The present invention relates to the measure of a kind of microcomputer information safety protection, particularly a kind of anti-virus of hard disk for microcomputer information destroys, anti-illegal operation resist technology.
Along with the development that science and technology is maked rapid progress, computing machine has been widely applied to production, scientific research, education and even sphere of life.The quick and accurate service of computing machine has brought facility to users on the one hand, on the other hand because the appearance of computer virus and extensive widespread and to some maloperations of computing machine make the particularly vast microcomputer user of computer user suffer massive losses.The loss that microcomputer causes to the user mainly shows being stored in the destruction of user program and data message on the hard disk for microcomputer.This destruction is mainly derived from following two aspects: computer virus destroys and to the maloperation of hard disc of computer.Following two kinds of methods are adopted in the protection of computer virus at present usually: adopt software to carry out after antivirus protection (passive-type protection) finds a kind of virus one by one the first, merely, research Virus itself is write corresponding detoxifcation or immunological software according to the feature of this Virus then earlier.Shortcoming: 1. owing to common computer virus only just can be found after extensively infecting and produce than havoc, so the software development hysteresis; 2. various viral write method and inequality, the detoxification that needs to adopt also is not quite similar, and therefore the versatility of the anti-virus software of exploitation is poor, and undesirable to the fire-fighting effect of the derived virus that develops on the provirus basis; 3. after system start-up, move, enter the boot-type virus of system during for initial guide, be difficult to play a role; 4. detoxifcation or immunological software itself have by the possibility of virus infections or destruction.The second, anti-virus software is solidificated in ROM, can makes detoxifcation or immunological software itself exempt from virus infraction, cure the symptoms, not the disease, still for the passive-type protection, have above-mentioned shortcoming in the use equally from type of protection though do like this.Maloperation to hard disc of computer mainly comes from the computer operation personnel, as at the low high-level formatting of hard disk, to mistake deletion of fixed disk file etc., the operation of this respect is influenced by computer operation personnel's computer expertise level and operating personnel's subjective factor mainly, contingency is big, at present effective safeguard procedures of also this respect not being operated.
The objective of the invention is to overcome above shortcoming, the method for utilizing software to combine with hardware stops the various destructions to hard disk for microcomputer information effectively from logic protection and physical protection two aspects.
Hard disk information protective technology of the present invention is achieved in that
After computer booting powers on, automatically the expansion ROM district that meets BIOS loading standard is scanned, and its internal program is carried out far call, carry out following operation:
1. read from hard disk sign is installed, and judge;
When installation is masked as fictitious time, reading system CMOS content, and preserve;
When installation is masked as true time, the CMOS content recovery original system CMOS of reading and saving is provided with;
2. the initialization flag variable reads the partition information of logic C dish, also preservation;
3. revise the original system interrupt vector;
4. return host B IOS:
During the computing machine operate as normal, the information disk content is protected by logic protection interface and physical protection interface:
The soft interrupt INT 13H inlet of hard disc of computer is intercepted and captured at logic protection interface, interrupts 13H with original system and articulates, and to the hard disk command recognition, and realizes following operation:
1. write or the unformatted order for non-, skip to original system and interrupt 13H continuation execution;
2. for writing or formatting command, compare, judge with the fdisk information of preserving in the initialization flag variable process:
When operation occurs in NOT logic C dish, call original system and interrupt 13H realization write operation;
When operation occurs in NOT logic C dish, to interrupt carrying out, warning is returned;
The order that computing machine mails to the hard disk control card is intercepted and captured at the physical protection interface, to directly carrying out ultimate protection at the operation of hard disk without logic protection interface:
If non-writing or the unformatted order continues to carry out;
If write or formatting command, send reset pulse, microsystem resets.
Describe hard disk information protective technology of the present invention below in detail.
Fig. 1 is the functional-block diagram of expansion card.
Fig. 2 is the circuit diagram of expansion card.
Fig. 3 is the boot process flow diagram.
Fig. 4 is the anti-process flow diagram of writing a program of hard disk.
At first make expansion card and a key floppy disk of depositing CMOS protection and other other sign indicating number of hard disk protection knowledge of a conformance with standard IBM-PC bus; Expansion card is provided with address port code translator, program storage, data-carrier store, hard disk write order and formatting command identification circuit, writes permission on-off circuit and reset circuit, be solidified with the handling procedure that meets BIOS loading ROM standard in the program storage, its standard is as follows:
First byte: 55H
Second byte: AAH
The 3rd byte: ROM length (is unit with 512 bytes)
Nybble: initialization far call entry address
The verification of whole ROM and be zero.
Storage address, I/O port code translator allow circuit to link to each other with program storage, data-carrier store, hard disk write order and formatting command identification circuit with writing respectively; Reset circuit and hard disk write order with the formatting command identification circuit, write and allow circuit to link to each other.
Use before this card at first the hard disk with the user to be divided into N Logical Disk, logic C dish will be automatically made information protection dish (hereinafter to be referred as " information disk ").
Should block and insert the main frame expansion slot, and the output terminal that will block reset circuit links to each other with the contact pin that resets of main frame mainboard.
The handling procedure that solidifies in the program storage comprises that guiding, CMOS information are recovered and anti-three parts of writing a program of hard disk, start host B IOS self check, automatically the expansion ROM district is scanned, after detecting the ROM that meets the loading standard in the expansion card, automatically carry out an initialization far call from the ROM nybble, carry out the boot of solidifying among the ROM:
1.CMOS protection is read identification code from 0 post, 6 sectors of logic C dish, and judges identification code; The content of identification code is by artificial setting, the identification code content that present embodiment is selected for use is 5AA5H, during first the installation, identification code is not set, the identification code that reads is for false, identification code and the CMOS of system information are write in 0 post, 6 sectors at logic C dish, simultaneously COMS information are deposited among this expansion card RAM that first address is D800:0000H; Non-first installation, the identification code content that reads is 5AA5H, and promptly identification code is true, reads the original system CMOS information of depositing in information disk (logic C dish) 0 post 6 sectors of depositing in, restoring CMOS is provided with, and COMS information is deposited among this expansion card RAM that first address is D800:0000H;
2. the partition information of initialization partition information information extraction dish (logic C dish), and the first address that reads in expansion card is among the RAM of D900:0000H;
3. revise interrupt vector and revise the interrupt INT 13H and the timing interrupt INT 08H of system of original system control disk operating;
4. version of display and information
“BJ—HDP2 CARD INSTALLED!”
5. return host B IOS, enter host operating system.
In the main frame course of normal operation, being articulated in that CMOS information recovery routine in the expansion card ROM of original system 08H interrupt service routine regularly will back up at this expansion card RAM first address by 70H of system and 71H port is that former CMOS information among the D800:0000H is recovered.
The anti-formation logic of writing a program of the hard disk that solidifies in the program storage is protected the interface and by the physical protection interface that physical device constitutes information disk (logic C dish) is protected:
The interrupt vector of logic protection interface modification microcomputer disk interrupt INT 13H is pointed to anti-the writing a program of information disk (logic C dish) among this expansion card ROM, and is interrupted articulating with original system 13H, and order is discerned to hard disk, and realizes following operation:
1. write or the unformatted order for non-, skip to original system and interrupt 13H continuation execution:
2. for writing or formatting command, at first read and deposit in initialization information dish (logic C dish) the partition information process that first address is the D900:0000H partition information among this expansion card RAM, and write or the format manipulation subregion compares judgement current:
1.. when writing or format manipulation when occurring in non-information disk (logic C dish), open to write and allow on-off circuit shielding reset circuit, call original system then and interrupt 13H and realize writing or format manipulation, and close and write the permission switch;
2.. when writing or format manipulation when occurring in information disk (logic C dish), read first address among this expansion card RAM and be the control code of writing among the DA00:0000H, write control code by program setting on the key floppy disk, present embodiment is write control code and is made as 6AA6H;
The control code of writing that reads when the RAM from expansion card is a fictitious time, and the 61H port sends instruction to system, makes microcomputer loudspeaker sounding alarm, returns and writes successfully information code (02H) to former calling program.
When the RAM first address from expansion card is that the control code of writing the DA00:0000H is a true time, control is write and is allowed circuit shielding reset circuit, calls original system then and interrupts 13H and realize writing or format manipulation.
The order that microcomputer mails to the hard disk control card is intercepted and captured at the physical protection interface, to directly carrying out ultimate protection at the operation of hard disk without logic protection interface; If write order or formatting command then storage address, I/O port code translator are issued hard disk write order and formatting command identification circuit with the port decoded signal, by hard disk write order and formatting command identification circuit with write allow on-off circuit with " with " relation control reset circuit send reset pulse, deliver to the computer motherboard contact pin that resets, microsystem resets; If non-writing or the unformatted order continues to carry out.
The physical protection interface is as follows to the electrical installation situation of hard disk information protective: when CPU when the hard disk control card says the word parameter, protection card is also received simultaneously these parameters.Chip U on the card
1-U
4, U
7-U
15Storage address and I/O port decoding unit.U
1, U
3Be responsible for hard disk command port (1F7H) decoding.U
2, U
4Be responsible for card and go up the privately owned port decoding that takies, three outputs are respectively through U
20Reverser oppositely back control open U
9, U
11And U
15Input allow end, U
10Translate protected code and be responsible for shielding the MW signal, prevent illegally to U
21(6264) make amendment.U
8, U
22Be responsible for U
17(2764), U
21(6264) carry out address decoding.U
5Belong to the write order recognition unit, be responsible for translating write order sign indicating number (30H).U
6Belong to the formatting command recognition unit, be responsible for translating formatting command sign indicating number (50H).U
18: A is with U
5, U
6Output with as guard signal.Work as U
10The inversion signal of output signal when being high, through U
19: the shielding of A, guard signal can not reach U
16: thereby A produces reset pulse.Otherwise guard signal will be delivered to U
16: A.U
16: A is responsible for amplifying reset pulse, and it is exported through triode N
1, N
2Promotion export the two ends of the contact pin that resets respectively to, guarantee under the situation of not knowing contact pin polarity, accurately to reset.U
7Be responsible for the decoding of CMOS write port, work as U
7When being output as low level, expression has the operation of revising CMOS to take place.U
12Be responsible for from U
11Obtain the CMOS mask off code, when it is output as when low, will be through U
20: E's is reverse, by U
19:B sends hard interruption to PC, is responsible for CMOS information is recovered by interrupt service routine.
Chip U
5, U
6At U
3Y
7Control under translate write order sign indicating number (30H) respectively, formatting command sign indicating number (50H) is worked as U
3Y
7During output low level, U
5, U
6Begin decoding.Work as U
5During output enable (low level), represent that promptly CPU will be to the hard disk write data; Work as U
6During output enable (low level), represent that promptly CPU has wanted the low-level formatting hard disk.U
5And U
6Output by U
18: A with as the hard disk protection signal.
U
2, U
4Be responsible for card and go up the privately owned decoding that takies port, U
4Y
0, Y
1And Y
2Control U after anti-phase respectively
9, U
11And U
15Input enable so that read in the control code of card and give U respectively from data bus
10, U
12And U
13Be U
4Y
0When low, U
911 pin be high, data enter U
4U
4Y
1When low, U
1111 pin be high, data enter U
11U
4Y
2When low, U
1511 pin be high, data enter U
15U
10The whether genuine resetting system of output major control, promptly control U
18: the shielding of A output.U
13Output major control RAM whether can write.U
8, U
22The main U that produces
17, U
21Chip selection signal.U
8Be output as when hanging down U
22Enable Y
0Output meets U
17Sheet choosing end, work as Y
0During for low level, U
17The sheet choosing effectively; Y
1Output meets U
21Sheet choosing end, work as Y
1During for low level, U
21The sheet choosing effectively.
When using on the microcomputer at no hard disk when originally sticking into capable CMOS content protecting, data-carrier store adopts EEPROM to replace RAM.During the microcomputer outage, system CMOS content still is stored among the EEPROM, and start can be read the original CMOS setting of microcomputer from EEPROM again.
Compare with existing hard disk of microcomputer information protective technology, the present invention has following distinguishing feature.
1. adopt the method for software and combination of hardware, anti-by logic protection interface and physics Protect the interface dual mode and realize hard disk of microcomputer information protection, can fundamentally prevent from calculating Machine virus to the destruction of hard disk information and artificially to hard disk information illegally write, format or Person's deletion action.
2. the cmos data to host computer system backs up, and carries out when each start Automatically recover, and in the microcomputer course of work, according to the content modification situation of CMOS, Recover at random, can effectively prevent losing and illegal modifications of cmos data.
3. because working procedure is cured in program storage, has therefore exempted self and felt The possibility of dying and destroying.
Claims (10)
1. hard disk of microcomputer information protective technology is characterized in that:
After computer booting powers on, automatically the expansion ROM district that meets BIOS loading standard is scanned, and the program that meets extension standards in it is carried out far call, carry out following operation:
1. read identification code from hard disk, and judge;
When identification code is a fictitious time, reading system CMOS content, and preserve;
When identification code is a true time, the CMOS content recovery original system CMOS of reading and saving is provided with;
2. the partition information of initialization partition information extraction logic C dish, also preservation;
3. revise the system break vector and revise the hard interrupt vector of interrupting of disk service disruption and system;
4. return host B IOS;
During the computing machine operate as normal, recovery system CMOS information at random;
Logic protection interface and physical protection interface are protected the information disk content:
The interrupt vector that logic protection interface modification computer disk interrupts interrupts articulating with original system, the order of identification hard disk, and realize following operation:
1. write or the unformatted order for non-, skip to original system and interrupt continuing to carry out;
2. for writing or formatting command, the partition information that coils with the logic C that preserves in the initialization partition information process compares, judges:
When operation occurs in NOT logic C dish, call original system and interrupt realizing writing or format manipulation;
When operation occurs in logic C dish, read and write control code, and judge; Writing control code is true time, calls original system and interrupts realizing writing or format manipulation; Writing control code is fictitious time, returns calling program;
The order that computing machine mails to the hard disk control card is intercepted and captured at the physical protection interface, to directly carrying out ultimate protection at the operation of hard disk without logic protection interface:
If non-write order or unformatted order continue to carry out;
If write order or formatting command send reset pulse, microsystem resets.
2. hard disk of microcomputer information protective technology as claimed in claim 1 is characterized in that: revising the disk service disruption of revising in the system break vector process is INT13H, and hard interruption of system is INT08H.
3. hard disk of microcomputer information protective technology as claimed in claim 1 or 2 is characterized in that: the system CMOS content that reads when installing for the first time is stored in logic C dish.
4. hard disk of microcomputer information protective technology as claimed in claim 1 or 2 is characterized in that: write control code and be stored on the key floppy disk.
5. a kind of hard disk of microcomputer information protection card of using in claim 1 technology, it comprises the circuit card of conformance with standard IBM-PC bus, it is characterized in that: circuit card is provided with storage address, I/O port code translator, program storage, data-carrier store, hard disk write order and formatting command identification circuit, writes permission on-off circuit and reset circuit, program storage; The address port code translator is write with the formatting command identification circuit with program storage, data-carrier store, hard disk respectively and is allowed circuit to link to each other with writing; Reset circuit is write with the formatting command identification circuit with hard disk and is allowed circuit to link to each other with writing.
6. hard disk of microcomputer information protection card as claimed in claim 5, it is characterized in that: the address port code translator links to each other with the address bus of PC by the socket on the expansion card, and program storage, data-carrier store, hard disk write order and formatting command identification circuit allow on-off circuit to link to each other with the data bus of PC by the socket on the expansion card with writing; The output terminal of reset circuit links to each other with the contact pin that resets on the main frame mainboard.
7. as claim 5 or 6 described hard disk of microcomputer information protection cards, it is characterized in that: described program storage is the EPROM chip, is solidified with boot, CMOS information recovery routine and hard disk in it and prevents writing a program.
8. as claim 5 or 6 described hard disk of microcomputer information protection cards, it is characterized in that: storage address, I/O port code translator comprise the decoding of hard disk command port, privately owned port decoding, data-carrier store and program memory address decoding and four part compositions of cmos data write port decoding.
9. as claim 5 or 6 described hard disk of microcomputer information protection cards, it is characterized in that: data-carrier store is the RAM chip.
10. as claim 5 or 6 described hard disk of microcomputer information protection cards, it is characterized in that: data-carrier store is EEPROM.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 95114007 CN1124377A (en) | 1995-12-21 | 1995-12-21 | Hard disk information protective technology and equipment for micro computer |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 95114007 CN1124377A (en) | 1995-12-21 | 1995-12-21 | Hard disk information protective technology and equipment for micro computer |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1124377A true CN1124377A (en) | 1996-06-12 |
Family
ID=5080201
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 95114007 Pending CN1124377A (en) | 1995-12-21 | 1995-12-21 | Hard disk information protective technology and equipment for micro computer |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1124377A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1102262C (en) * | 1999-02-10 | 2003-02-26 | 联想(北京)有限公司 | Method for protection of hard disc based on computer main board fixation memory device |
| CN1109300C (en) * | 1997-07-31 | 2003-05-21 | 周恽 | Method and appts. of transparent protection for computer rigid disk storage contents |
| CN1109979C (en) * | 1999-01-12 | 2003-05-28 | 李增胜 | Method for quick protection and recovery for hard disc data of computer |
| CN101477600B (en) * | 2009-01-20 | 2010-06-09 | 中国人民解放军保密委员会技术安全研究所 | Software automatic protection system and security card based on firmware |
| CN102023817A (en) * | 2010-12-03 | 2011-04-20 | 深圳市江波龙电子有限公司 | Read and write control method and system of storage device data |
| US8474021B2 (en) | 2001-06-29 | 2013-06-25 | Secure Systems Limited | Security system and method for computers |
| CN101361046B (en) * | 2006-01-12 | 2013-08-14 | 国际商业机器公司 | Remotely restoring a non-responsive computing system |
| CN108595949A (en) * | 2018-03-13 | 2018-09-28 | 广州市冰海网络技术有限公司 | A kind of computer anti-virus attack device |
-
1995
- 1995-12-21 CN CN 95114007 patent/CN1124377A/en active Pending
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1109300C (en) * | 1997-07-31 | 2003-05-21 | 周恽 | Method and appts. of transparent protection for computer rigid disk storage contents |
| CN1109979C (en) * | 1999-01-12 | 2003-05-28 | 李增胜 | Method for quick protection and recovery for hard disc data of computer |
| CN1102262C (en) * | 1999-02-10 | 2003-02-26 | 联想(北京)有限公司 | Method for protection of hard disc based on computer main board fixation memory device |
| US8474021B2 (en) | 2001-06-29 | 2013-06-25 | Secure Systems Limited | Security system and method for computers |
| CN101361046B (en) * | 2006-01-12 | 2013-08-14 | 国际商业机器公司 | Remotely restoring a non-responsive computing system |
| CN101477600B (en) * | 2009-01-20 | 2010-06-09 | 中国人民解放军保密委员会技术安全研究所 | Software automatic protection system and security card based on firmware |
| CN102023817A (en) * | 2010-12-03 | 2011-04-20 | 深圳市江波龙电子有限公司 | Read and write control method and system of storage device data |
| CN108595949A (en) * | 2018-03-13 | 2018-09-28 | 广州市冰海网络技术有限公司 | A kind of computer anti-virus attack device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100489728C (en) | Method for establishing trustable operational environment in a computer | |
| CN1241120C (en) | Method for backing up and recovering data in hard disk of computer | |
| EP0408689B1 (en) | System and method of protecting integrity of computer data and software | |
| US5121345A (en) | System and method for protecting integrity of computer data and software | |
| US5537540A (en) | Transparent, secure computer virus detection method and apparatus | |
| EP1573466B1 (en) | Enhancing data integrity and security in a processor-based system | |
| EP4242892A2 (en) | Code pointer authentication for hardware flow control | |
| US7607122B2 (en) | Post build process to record stack and call tree information | |
| JPH10501354A (en) | Computer virus trap device | |
| CN101154253B (en) | Computer security protection method and computer security protection instrument | |
| EP3374920B1 (en) | Detecting program evasion of virtual machines or emulators | |
| CN1124377A (en) | Hard disk information protective technology and equipment for micro computer | |
| Molina et al. | Using independent auditors as intrusion detection systems | |
| CN1053507C (en) | Method and device for controlling read and write of hard disc in computer | |
| CN2249922Y (en) | Flexible and hard disk protector of microcomputer | |
| WO1993002419A1 (en) | Protection system for computers | |
| CN102054141A (en) | Method for protecting computer information security by utilizing hardware switches | |
| CN110516445B (en) | Identification method and device for anti-detection malicious code and storage medium | |
| EP1962168A1 (en) | A method for detecting the operation behavior of the program and a method for detecting and clearing the virus program | |
| US20090133124A1 (en) | A method for detecting the operation behavior of the program and a method for detecting and clearing the virus program | |
| JP2001236132A (en) | Method and program for providing tamper resistance | |
| CN201514636U (en) | High-safety information equipment | |
| CN101763276A (en) | Method for energizing and starting high-security information system | |
| Solomon | S & S International | |
| CN113434247A (en) | Safety protection method for JAVA card virtual machine |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C06 | Publication | ||
| PB01 | Publication | ||
| C01 | Deemed withdrawal of patent application (patent law 1993) | ||
| WD01 | Invention patent application deemed withdrawn after publication |