CN113760327B - Method and device for solving password verification of refreshing BIOS by AFU tool - Google Patents

Method and device for solving password verification of refreshing BIOS by AFU tool Download PDF

Info

Publication number
CN113760327B
CN113760327B CN202110855549.9A CN202110855549A CN113760327B CN 113760327 B CN113760327 B CN 113760327B CN 202110855549 A CN202110855549 A CN 202110855549A CN 113760327 B CN113760327 B CN 113760327B
Authority
CN
China
Prior art keywords
password
bios
afu
tool
instruction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202110855549.9A
Other languages
Chinese (zh)
Other versions
CN113760327A (en
Inventor
王淑贤
姚藩益
王兵
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Suzhou Inspur Intelligent Technology Co Ltd
Original Assignee
Suzhou Inspur Intelligent Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Suzhou Inspur Intelligent Technology Co Ltd filed Critical Suzhou Inspur Intelligent Technology Co Ltd
Priority to CN202110855549.9A priority Critical patent/CN113760327B/en
Publication of CN113760327A publication Critical patent/CN113760327A/en
Application granted granted Critical
Publication of CN113760327B publication Critical patent/CN113760327B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/65Updates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)

Abstract

The invention provides a method and a device for solving the problem that an AFU tool refreshes BIOS for password verification, wherein the method comprises the following steps: the BIOS end defines a password function checking module, checks whether a password zone bit exists or not, and establishes a link between the password function checking module and an AFU tool when the password zone bit exists; when the AFU tool is operated to carry out BIOS refreshing, a password function checking module is automatically triggered, BIOS refreshing operation is interrupted, a password request is started, and whether a password exists or not and whether the password requested is the same as a prestored password or not are judged; when the request password is the same as the prestored password, notifying the AFU to continue BIOS refreshing; when the request password is different from the prestored password and the password request times are over-limited, the AFU tool stops BIOS refreshing. The invention realizes the user password verification when the AFU tool is used for refreshing in-band, and effectively avoids a series of problems caused by improper BIOS refreshing.

Description

Method and device for solving password verification of refreshing BIOS by AFU tool
Technical Field
The invention belongs to the technical field of BIOS refreshing, and particularly relates to a method and a device for solving password verification of an AFU tool refreshing BIOS.
Background
BIOS, a short name of Basic Input Output System, is a basic input output system. The BIOS is used as the management end of the bottommost and most direct hardware setting and control of the server main board, and can provide more simple usability functions for the server. The BIOS may be refreshed both in-band and out-of-band, with the usual tool for in-band BIOS refresh being the AFU tool.
The AFU tool is a practical tool package for updating the BIOS of the system under various systems, and can help a user to realize the updating of the BIOS under EFI Shell, linux and Windows. At present, no safety check mechanism exists when the AFU tool is used for BIOS refreshing, and no matter an ordinary user or a manager can use the AFU tool to realize BIOS updating as long as the manager can use the AFU tool, the updating mechanism lacks safety detection, does not accord with safety regulations, and easily causes the problems that the server cannot be normally used, safety attack occurs and the like due to improper BIOS updating; moreover, no transmission information related to password verification is specified between the BIOS and the AFU tool, and a command to be executed by the BIOS end is sent to the AFU tool to enable the AFU tool to make some operations, and how to send the command to the AFU tool and how to enable the AFU tool to accept the command are all big problems.
This is a deficiency of the prior art, and therefore, it is necessary to provide a method and apparatus for solving the above-mentioned drawbacks of the prior art by refreshing BIOS by AFU tools for password verification.
Disclosure of Invention
Aiming at the defects that the lack of safety check on BIOS updating of the prior AFU tool in the prior art easily causes improper BIOS updating and can not be used and the lack of transmission information related to password verification between the AFU tool and the BIOS, the invention provides a method and a device for solving the problem that the AFU tool refreshes the BIOS for password verification, and aims to solve the technical problem.
In a first aspect, the present invention provides a method for solving password authentication by refreshing BIOS by AFU tool, comprising the following steps:
s1, defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and an AFU tool when the password information zone bit exists;
s2, when the AFU tool is operated to refresh the BIOS, a password function checking module at the BIOS end is automatically triggered, the password function checking module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged;
s3, when the password request is the same as the prestored password, the password function checking module at the BIOS end informs the AFU tool that the password verification is passed, and the AFU tool continues to carry out BIOS refreshing;
s4, when the password request is different from the prestored password, the password function checking module at the BIOS end requests the password again, and when the password request times exceeds the set times, the AFU tool stops BIOS refreshing.
Further, the specific steps of step S1 are as follows:
s11, registering instruction signals of an AFU tool communicated with the BIOS at the BIOS end and the AFU end, wherein the instruction signals comprise a password existence signal, a password acquisition signal and a password verification signal;
s12, defining a password existence marking bit and a password acquisition marking bit at the BIOS end and checking the password; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
s13, defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and an AFU tool when a password exists in a marking bit, a password acquisition marking bit and a password checking marking bit exist;
s14, defining a password request instruction, a password passing instruction, a password error instruction, a password length instruction and a password overrun instruction in the password function checking module. Corresponding signals of communication between the BIOS end and the AFU tool end are registered, a marking bit of a structural body identification communication signal is defined at the BIOS end, and a password function checking module of a communication transmission link between the BIOS end and the AFU tool end is also defined at the BIOS end.
Further, the specific steps of step S2 are as follows:
s21, triggering a password function checking module at the BIOS end when the BIOS is refreshed through the AFU tool;
s22, the password function checking module informs the BIOS to send a password request instruction to the AFU tool, and the BIOS refreshing operation is stopped;
s23, the BIOS judges whether an administrator password exists;
if yes, go to step S24;
if not, entering step S3;
s24, the password function checking module informs the BIOS to send a password length instruction to the AFU tool;
s25, after the AFU tool prompts the administrator to input passwords, the BIOS can be continuously refreshed;
s26, after the BIOS acquires the administrator password, comparing the administrator password with the pre-stored administrator password, and entering step S3. The BIOS encrypts the acquired manager password according to the encryption mode of the pre-stored manager password and then compares the encrypted manager password with the pre-stored manager password. The AFU tool triggers password verification before BIOS refreshing, requiring the entry of the correct administrator password to refresh.
Further, the specific steps of step S3 are as follows:
s31, when no administrator password exists or the administrator password input by the user is the same as the prestored administrator password, the password function checking module informs the BIOS to send the password to the AFU tool through an instruction;
s32, the AFU tool continues to execute the BIOS refreshing operation and ends. Entering the administrator password is correct and the refreshing can be continued.
Further, the specific steps of step S4 are as follows:
s41, when the administrator password input by the user is different from the prestored administrator password, the password function checking module informs the BIOS to send a password error instruction to the AFU tool;
s42, judging whether the password input error times exceeds the set times by the password function checking module;
if yes, go to step S43;
if not, returning to the step S24;
s43, the password function checking module informs the BIOS to send a password overrun instruction to the AFU tool;
s44. The AFU tool stops BIOS refreshing. The password error of the administrator is needed, the password is needed to be input again, the number of the repeated input is limited, and the safety of BIOS refreshing of the AFU tool is ensured.
In a second aspect, the present invention provides an apparatus for solving password authentication by refreshing BIOS with AFU tool, comprising:
the password function checking module definition unit is used for defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and the AFU tool when the password information zone bit exists;
the password verification unit is used for automatically triggering a password function verification module at the BIOS end when the AFU tool is operated to carry out BIOS refreshing, the password function verification module interrupts BIOS refreshing operation, a password request is started, and whether a password exists or not and whether the password requested is the same as a prestored password or not are judged;
the BIOS continuous refreshing unit is used for notifying the AFU tool of password verification passing by the password function checking module at the BIOS end when the request password is the same as the prestored password, and continuing BIOS refreshing by the AFU tool;
and the BIOS stopping refreshing unit is used for requesting the password again by the password function checking module at the BIOS end when the request password is different from the prestored password, and stopping BIOS refreshing by the AFU tool when the number of times of requesting the password exceeds the set number of times.
Further, the cryptographic function verification module definition unit includes:
a communication instruction signal registration subunit, configured to register instruction signals of the AFU tool for communication with the BIOS at the BIOS end and the AFU end, including a password presence signal, a password acquisition signal, and a password verification signal;
a password mark bit definition subunit, configured to define a password existence mark bit, a password acquisition mark bit, and a password verification mark bit at the BIOS end; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
the password function checking module link subunit is used for defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and the AFU tool when the password exists a marking bit, the password acquisition marking bit and the password checking marking bit exist;
the password instruction definition subunit is used for defining a password request instruction, a password passing instruction, a password error instruction, a password length instruction and a password overrun instruction in the password function checking module.
Further, the password authentication unit includes:
the password verification function test module triggering subunit is used for triggering the password function test module at the BIOS end when the BIOS is refreshed through the AFU tool;
a refresh suspension subunit, configured to notify the BIOS to send a password request instruction to the AFU tool by using the password function checking module, and suspend the BIOS refresh operation;
an administrator password judging subunit, configured to determine whether an administrator password exists by using the BIOS;
the password length instruction sending subunit is used for informing the BIOS to send the password length instruction to the AFU tool by the password function checking module when the administrator password exists;
the password input prompt subunit is used for enabling the AFU tool to continuously refresh the BIOS after the password is input to the administrator;
and the password comparison subunit is used for comparing the administrator password with the pre-stored administrator password after the BIOS acquires the administrator password.
Further, the BIOS continuous refresh unit includes:
the password passing instruction sending subunit is used for informing the BIOS to send the password passing instruction to the AFU tool when the administrator password does not exist or the administrator password input by the user is the same as the prestored administrator password;
the BIOS continuous refreshing subunit is used for the AFU tool to continuously execute the BIOS refreshing operation.
Further, the BIOS stop refresh unit includes:
the password error instruction sending subunit is used for informing the BIOS to send the password error instruction to the AFU tool when the administrator password input by the user is different from the prestored administrator password;
the password overrun verification subunit is used for judging whether the password input error times exceed set times or not by the password function verification module;
the password overrun instruction sending subunit is used for informing the BIOS to send the password overrun instruction to the AFU tool by the password function checking module when the password input error times exceed the set times;
and the BIOS refreshing stopping subunit is used for stopping BIOS refreshing by the AFU tool.
The invention has the advantages that,
the method and the device for solving the problem that the BIOS is refreshed by the AFU tool for password verification realize that the user password verification is carried out when the BIOS is refreshed by the AFU tool in-band, define some instruction specifications between the BIOS and the AFU tool, acquire and judge the password at the BIOS end, send the instruction to the AFU tool, enable the AFU tool to execute the next operation, allow the BIOS to be refreshed when the user is an administrator and the input password is correct, perfect the safety detection mechanism of the BIOS in-band refresh, effectively avoid a series of problems caused by improper BIOS refresh, improve the safety of the BIOS refreshed by the user, and solve the problem that no password detection instruction exists between the AFU tool and the BIOS end.
In addition, the invention has reliable design principle, simple structure and very wide application prospect.
It can be seen that the present invention has outstanding substantial features and significant advances over the prior art, as well as the benefits of its implementation.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are required to be used in the description of the embodiments or the prior art will be briefly described below, and it will be obvious to those skilled in the art that other drawings can be obtained from these drawings without inventive effort.
FIG. 1 is a flowchart illustrating a method for solving the problem of password authentication by refreshing BIOS by an AFU tool according to the present invention.
FIG. 2 is a flowchart illustrating a method for implementing password authentication by refreshing BIOS by an AFU tool according to the present invention.
FIG. 3 is a schematic diagram of an apparatus for solving the problem of the AFU tool refreshing BIOS for password authentication according to the present invention.
In the figure, a 1-password function checking module defines a unit; 1.1-a communication instruction signal registration subunit; 1.2-cipher tag bits define subunits; 1.3-a cryptographic function verification module linking subunits; 1.4-Cryptographic instruction definition subunits; 2-a password authentication unit; 2.1-a password authentication function verification module triggering subunit; 2.2-refresh suspension subunit; 2.3-an administrator password judgment subunit; 2.4-cipher length instruction transmitting subunit; 2.5-entering a password hint subunit; 2.6-cipher comparison subunit; the 3-BIOS continues to refresh the unit; 3.1-the password passing instruction issue subunit; 3.2-BIOS continues refreshing the subunits; 4-BIOS stops refreshing the unit; 4.1-a cryptographic error instruction sending subunit; 4.2-a password overrun authentication subunit; a 4.3-cipher overrun instruction issue subunit; 4.4-BIOS refresh stop subunit.
Detailed Description
In order to make the technical solution of the present invention better understood by those skilled in the art, the technical solution of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present invention without making any inventive effort, shall fall within the scope of the present invention.
Example 1:
as shown in FIG. 1, the invention provides a method for solving the problem that an AFU tool refreshes BIOS for password verification, which comprises the following steps:
s1, defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and an AFU tool when the password information zone bit exists;
s2, when the AFU tool is operated to refresh the BIOS, a password function checking module at the BIOS end is automatically triggered, the password function checking module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged;
s3, when the password request is the same as the prestored password, the password function checking module at the BIOS end informs the AFU tool that the password verification is passed, and the AFU tool continues to carry out BIOS refreshing;
s4, when the password request is different from the prestored password, the password function checking module at the BIOS end requests the password again, and when the password request times exceeds the set times, the AFU tool stops BIOS refreshing.
Example 2:
as shown in FIG. 2, the invention provides a method for solving the problem that an AFU tool refreshes BIOS for password verification, which comprises the following steps:
s1, defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and an AFU tool when the password information zone bit exists; the method comprises the following specific steps:
s11, registering instruction signals of an AFU tool communicated with the BIOS at the BIOS end and the AFU end, wherein the instruction signals comprise a password existence signal, a password acquisition signal and a password verification signal;
s12, defining a password existence marking bit and a password acquisition marking bit at the BIOS end and checking the password; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
s13, defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and an AFU tool when a password exists in a marking bit, a password acquisition marking bit and a password checking marking bit exist;
s14, defining a password request instruction, a password passing instruction, a password error instruction, a password length instruction and a password overrun instruction in the password function checking module;
s2, when the AFU tool is operated to refresh the BIOS, a password function checking module at the BIOS end is automatically triggered, the password function checking module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged; the method comprises the following specific steps:
s21, triggering a password function checking module at the BIOS end when the BIOS is refreshed through the AFU tool;
s22, the password function checking module informs the BIOS to send a password request instruction to the AFU tool, and the BIOS refreshing operation is stopped;
s23, the BIOS judges whether an administrator password exists;
if yes, go to step S24;
if not, entering step S3;
s24, the password function checking module informs the BIOS to send a password length instruction to the AFU tool;
s25, after the AFU tool prompts the administrator to input passwords, the BIOS can be continuously refreshed;
s26, after the BIOS acquires the administrator password, comparing the administrator password with a pre-stored administrator password, and entering a step S3;
s3, when the password request is the same as the prestored password, the password function checking module at the BIOS end informs the AFU tool that the password verification is passed, and the AFU tool continues to carry out BIOS refreshing; the method comprises the following specific steps:
s31, when no administrator password exists or the administrator password input by the user is the same as the prestored administrator password, the password function checking module informs the BIOS to send the password to the AFU tool through an instruction;
s32, the AFU tool continues to execute BIOS refreshing operation;
s4, when the password request is different from the prestored password, the password function checking module at the BIOS end requests the password again, and when the password request times exceeds the set times, the AFU tool stops BIOS refreshing; the method comprises the following specific steps:
s41, when the administrator password input by the user is different from the prestored administrator password, the password function checking module informs the BIOS to send a password error instruction to the AFU tool;
s42, judging whether the password input error times exceeds the set times by the password function checking module;
if yes, go to step S43;
if not, returning to the step S24;
s43, the password function checking module informs the BIOS to send a password overrun instruction to the AFU tool;
s44. The AFU tool stops BIOS refreshing.
Example 3:
as shown in FIG. 2, the invention provides a method for solving the problem that an AFU tool refreshes BIOS for password verification, which comprises the following steps:
s1, defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and an AFU tool when the password information zone bit exists; the method comprises the following specific steps:
s11, registering instruction signals of an AFU tool communicated with the BIOS at the BIOS end and the AFU end, wherein the instruction signals comprise password existence passwordExist signals, password acquisition passwordGet signals and password verification passwordCheck signals;
s12, defining a password existence marking bit and a password acquisition marking bit at the BIOS end and checking the password; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists; the BIOS end defines two structural bodies, one is used for marking the bit of the PasswordExist instruction and the other is used for defining the bit marked with the passwordbit and the passwordback;
s13, defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and an AFU tool when a password exists in a marking bit, a password acquisition marking bit and a password checking marking bit exist; the BIOS end defines a function SMI Password Function as a password function checking module to detect whether the zone bits of the two structures exist or not, namely whether the BIOS end starts the function or not, then links the structures to the OFBD, sends the structure to the AFU tool, and carries out corresponding operation after the AFU tool receives the instruction;
s14, defining a password request instruction, a password passing instruction, a password error instruction, a password length instruction and a password overrun instruction in the password function checking module; the function SMI Password Function is used as an instruction transmission bridge, and a Password Request instruction Password Request is used for being temporarily interrupted when the AFU performs BIOS refreshing and Password verification is needed; the Password is used for the AFU tool to continue to execute the refreshing operation through the instruction Password OK; the Password Error instruction Password Error is used for informing the AFU user that the Password input is wrong; the password length instruction PasswordLength is used to tell the AFU tool what the administrator password length the BIOS has; the password overrun instruction Password Exceeded is used for informing the AFU tool that the password input times exceed the stipulation and stopping refreshing;
s2, when the AFU tool is operated to refresh the BIOS, a password function checking module at the BIOS end is automatically triggered, the password function checking module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged; the method comprises the following specific steps:
s21, triggering a password function checking module at the BIOS end when the BIOS is refreshed through the AFU tool; triggering a calling function SMIPasswordFunction when the AFU tool is called;
s22, the password function checking module informs the BIOS to send a password request instruction to the AFU tool, and the BIOS refreshing operation is stopped; the BIOS sends a Password Request instruction Password Request to the AFU tool through the OFBD, and the AFU tool pauses BIOS refreshing when receiving the instruction and waits for further operation instructions;
s23, the BIOS judges whether an administrator password exists; the BIOS judges whether the administrator password exists or not, and obtains the administrator password of the current BIOS by using a GetVariable function;
if yes, go to step S24;
if not, entering step S3; if the acquired administrator Password is empty, the administrator Password is not set at the moment, and step S3 is entered to send Password passing instruction Password OK to the AFU tool;
s24, the password function checking module informs the BIOS to send a password length instruction to the AFU tool; if the acquired administrator password is not null, the BIOS sends a password length instruction to the AFU tool to inform the AFU tool that the BIOS has the administrator password with the length of the password length;
s25, after the AFU tool prompts the administrator to input passwords, the BIOS can be continuously refreshed; after the AFU tool acquires the password length instruction PasswordLength, the user is prompted to input a password to continue BIOS refreshing;
s26, after the BIOS acquires the administrator password, comparing the administrator password with a pre-stored administrator password, and entering a step S3; after the BIOS terminal obtains the password input by the user, the password is compared with the password of the existing BIOS administrator; because the administrator password obtained by the BIOS through the GetVariable is the password encrypted through the encryption algorithm, when the comparison is carried out, the user income password is firstly encrypted according to the same encryption method, and then whether the two passwords are consistent is compared;
s3, when the password request is the same as the prestored password, the password function checking module at the BIOS end informs the AFU tool that the password verification is passed, and the AFU tool continues to carry out BIOS refreshing; the method comprises the following specific steps:
s31, when no administrator password exists or the administrator password input by the user is the same as the prestored administrator password, the password function checking module informs the BIOS to send the password to the AFU tool through an instruction;
s32, the AFU tool continues to execute BIOS refreshing operation; if the administrator Password is consistent with the user income Password, the BIOS sends Password passing instruction Password OK to the AFU tool, and the AFU tool can continue refreshing;
s4, when the password request is different from the prestored password, the password function checking module at the BIOS end requests the password again, and when the password request times exceeds the set times, the AFU tool stops BIOS refreshing; if the two passwords are inconsistent, the BIOS sends a password error instruction to the AFU tool to input the password in error, and the user is required to be reminded of inputting the password again; the method comprises the following specific steps:
s41, when the administrator password input by the user is different from the prestored administrator password, the password function checking module informs the BIOS to send a password error instruction to the AFU tool;
s42, judging whether the password input error times exceeds the set times for three times by the password function checking module;
if yes, go to step S43;
if not, returning to the step S24;
s43, the password function checking module informs the BIOS to send a password overrun instruction Password Exceeded to the AFU tool;
s44. The AFU tool stops BIOS refreshing.
Example 4:
as shown in FIG. 3, the present invention provides a device for solving password authentication by refreshing BIOS by AFU tool, comprising:
the password function checking module definition unit 1 is used for defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and the AFU tool when the password information zone bit exists;
the password verification unit 2 is used for automatically triggering a password function verification module at the BIOS end when the AFU tool is operated to carry out BIOS refreshing, the password function verification module interrupts BIOS refreshing operation, starts a password request, and judges whether a password exists and whether the password is the same as a prestored password;
the BIOS continuous refreshing unit 3 is used for notifying the AFU tool that the password verification passes by the password function verification module at the BIOS end when the request password is the same as the prestored password, and continuing to refresh the BIOS by the AFU tool;
and the BIOS stopping refreshing unit 4 is used for requesting the password again by the password function checking module at the BIOS end when the requested password is different from the prestored password, and stopping BIOS refreshing by the AFU tool when the number of times of requesting the password exceeds the set number of times.
Example 5:
as shown in FIG. 3, the present invention provides a device for solving password authentication by refreshing BIOS by AFU tool, comprising:
the password function checking module definition unit 1 is used for defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and the AFU tool when the password information zone bit exists; the cryptographic function verification module definition unit 1 includes:
a communication instruction signal registration subunit 1.1, configured to register instruction signals of the AFU tool for communication with the BIOS at the BIOS end and the AFU end, including a password existence signal, a password acquisition signal, and a password verification signal;
a password mark bit definition subunit 1.2, configured to define a password existence mark bit, a password acquisition mark bit, and a password verification mark bit at a BIOS end; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
the password function checking module link subunit 1.3 is used for defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and the AFU tool when the password exists a marking bit, the password acquisition marking bit and the password checking marking bit exist;
a password command definition subunit 1.4, configured to define a password request command, a password pass command, a password error command, a password length command, and a password overrun command in the password function verification module;
the password verification unit 2 is used for automatically triggering a password function verification module at the BIOS end when the AFU tool is operated to carry out BIOS refreshing, the password function verification module interrupts BIOS refreshing operation, starts a password request, and judges whether a password exists and whether the password is the same as a prestored password; the password authentication unit 2 includes:
the password verification function test module triggers the subunit 2.1, which is used for triggering the password function test module at the BIOS end when the BIOS is refreshed by the AFU tool;
a refresh suspension subunit 2.2, configured to notify the BIOS of sending a password request instruction to the AFU tool by using the password function checking module, and suspend the BIOS refresh operation;
an administrator password judging subunit 2.3, configured to determine whether an administrator password exists by using the BIOS;
the password length instruction sending subunit 2.4 is used for informing the BIOS to send the password length instruction to the AFU tool by the password function checking module when the administrator password exists;
the password input prompt subunit 2.5 is used for the AFU tool to prompt the administrator to input the password before the BIOS can be continuously refreshed;
the password comparison subunit 2.6 is used for comparing the administrator password with the pre-stored administrator password after the BIOS acquires the administrator password;
the BIOS continuous refreshing unit 3 is used for notifying the AFU tool that the password verification passes by the password function verification module at the BIOS end when the request password is the same as the prestored password, and continuing to refresh the BIOS by the AFU tool; the BIOS continuous refresh unit 3 includes:
the password passing instruction sending subunit 3.1 is used for informing the BIOS to send the password passing instruction to the AFU tool when the administrator password does not exist or the administrator password input by the user is the same as the prestored administrator password;
the BIOS continuous refreshing subunit 3.2 is used for the AFU tool to continuously execute the BIOS refreshing operation;
the BIOS stopping refreshing unit 4 is used for requesting the password again by the password function checking module at the BIOS end when the request password is different from the prestored password, and stopping BIOS refreshing by the AFU tool when the number of times of requesting the password exceeds the set number of times; the BIOS stop refresh unit 4 includes:
a password error command transmitting subunit 4.1, configured to notify the BIOS to transmit a password error command to the AFU tool when the administrator password input by the user is different from the pre-stored administrator password;
the password overrun verification subunit 4.2 is used for judging whether the password input error times exceeds the set times by the password function verification module;
the password overrun instruction sending subunit 4.3 is used for informing the BIOS to send the password overrun instruction to the AFU tool when the password input error times exceed the set times;
the BIOS refresh stop subunit 4.4 is used for stopping BIOS refresh by the AFU tool.
Although the present invention has been described in detail by way of preferred embodiments with reference to the accompanying drawings, the present invention is not limited thereto. Various equivalent modifications and substitutions may be made in the embodiments of the present invention by those skilled in the art without departing from the spirit and scope of the present invention, and it is intended that all such modifications and substitutions be within the scope of the present invention/be within the scope of the present invention as defined by the appended claims. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (8)

1. A method for solving the problem that an AFU tool refreshes BIOS for password verification is characterized by comprising the following steps:
s1, defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and an AFU tool when the password information zone bit exists; the specific steps of the step S1 are as follows:
s11, registering instruction signals of an AFU tool communicated with the BIOS at the BIOS end and the AFU end, wherein the instruction signals comprise a password existence signal, a password acquisition signal and a password verification signal;
s12, defining a password existence marking bit and a password acquisition marking bit at the BIOS end and checking the password; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
s13, defining a password function checking module at the BIOS end, and establishing a link between the password function checking module and an AFU tool when a password exists in a marking bit, a password acquisition marking bit and a password checking marking bit exist;
s14, defining a password request instruction, a password passing instruction, a password error instruction, a password length instruction and a password overrun instruction in the password function checking module;
s2, when the AFU tool is operated to refresh the BIOS, a password function checking module at the BIOS end is automatically triggered, the password function checking module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged;
s3, when the password request is the same as the prestored password, the password function checking module at the BIOS end informs the AFU tool that the password verification is passed, and the AFU tool continues to carry out BIOS refreshing;
s4, when the password request is different from the prestored password, the password function checking module at the BIOS end requests the password again, and when the password request times exceeds the set times, the AFU tool stops BIOS refreshing.
2. The method for solving the problem of password authentication by refreshing BIOS with AFU tool according to claim 1, wherein step S2 comprises the following specific steps:
s21, triggering a password function checking module at the BIOS end when the BIOS is refreshed through the AFU tool;
s22, the password function checking module informs the BIOS to send a password request instruction to the AFU tool, and the BIOS refreshing operation is stopped;
s23, the BIOS judges whether an administrator password exists;
if yes, go to step S24;
if not, entering step S3;
s24, the password function checking module informs the BIOS to send a password length instruction to the AFU tool;
s25, after the AFU tool prompts the administrator to input passwords, the BIOS can be continuously refreshed;
s26, after the BIOS acquires the administrator password, comparing the administrator password with the pre-stored administrator password, and entering step S3.
3. The method for solving the problem of password authentication by refreshing BIOS with AFU tool according to claim 2, wherein step S3 comprises the following specific steps:
s31, when no administrator password exists or the administrator password input by the user is the same as the prestored administrator password, the password function checking module informs the BIOS to send the password to the AFU tool through an instruction;
s32, the AFU tool continues to execute the BIOS refreshing operation and ends.
4. The method for solving the problem of password authentication by refreshing BIOS with AFU tool according to claim 2, wherein step S4 comprises the following specific steps:
s41, when the administrator password input by the user is different from the prestored administrator password, the password function checking module informs the BIOS to send a password error instruction to the AFU tool;
s42, judging whether the password input error times exceeds the set times by the password function checking module;
if yes, go to step S43;
if not, returning to the step S24;
s43, the password function checking module informs the BIOS to send a password overrun instruction to the AFU tool;
s44. The AFU tool stops BIOS refreshing.
5. An apparatus for resolving password authentication by refreshing BIOS with AFU tool, comprising:
the password function checking module definition unit (1) is used for defining a password function checking module at the BIOS end, checking whether a password information zone bit exists at the BIOS end by the password function checking module, and establishing a link between the password function checking module and the AFU tool when the password information zone bit exists; the cryptographic function verification module definition unit (1) includes:
a communication instruction signal registration subunit (1.1) for registering instruction signals of the AFU tool for communication with the BIOS at the BIOS end and the AFU end, including a password existence signal, a password acquisition signal and a password verification signal;
a password tag bit definition subunit (1.2) for defining a password presence tag bit, a password acquisition tag bit, and a password verification tag bit at the BIOS end; the password presence flag bit is used for indicating whether a password presence signal exists, the password acquisition flag bit is used for indicating whether a password acquisition signal exists, and the password checking flag bit is used for indicating whether a password checking flag signal exists;
the password function checking module link subunit (1.3) is used for defining a password function checking module at the BIOS end and establishing a link between the password function checking module and the AFU tool when the password exists a marking bit, the password acquisition marking bit and the password checking marking bit exist;
a password instruction definition subunit (1.4) for defining a password request instruction, a password pass instruction, a password error instruction, a password length instruction, and a password overrun instruction in the password function verification module;
the password verification unit (2) is used for automatically triggering a password function verification module at the BIOS end when the AFU tool is operated to carry out BIOS refreshing, the password function verification module interrupts BIOS refreshing operation, a password request is started, and whether the password exists or not and whether the password requested is the same as a prestored password or not are judged;
the BIOS continuous refreshing unit (3) is used for notifying the AFU tool that the password verification passes by the password function verification module at the BIOS end when the request password is the same as the prestored password, and the AFU tool continuously carries out BIOS refreshing;
and the BIOS stopping refreshing unit (4) is used for requesting the password again by the password function checking module at the BIOS end when the password request is different from the prestored password, and stopping BIOS refreshing by the AFU tool when the password request times exceeds the set times.
6. The device for solving the problem of refreshing the BIOS for password authentication according to claim 5, wherein the password authentication unit (2) comprises:
the password verification function test module triggering subunit (2.1) is used for triggering the password function test module at the BIOS end when the BIOS is refreshed by the AFU tool;
a refresh suspension subunit (2.2) for notifying the BIOS to send a password request instruction to the AFU tool by the password function checking module, and suspending the BIOS refresh operation;
an administrator password determination subunit (2.3) configured to determine whether an administrator password exists by the BIOS;
a password length instruction sending subunit (2.4) for notifying the BIOS to send a password length instruction to the AFU tool when the administrator password exists;
a password input prompt subunit (2.5) for the AFU tool to prompt the administrator to input the password before the BIOS can be continuously refreshed;
and the password comparison subunit (2.6) is used for comparing the administrator password with the pre-stored administrator password after the BIOS acquires the administrator password.
7. The device for solving the problem of password authentication by refreshing a BIOS with an AFU tool according to claim 6, wherein the BIOS continuous refreshing unit (3) comprises:
the password passing instruction sending subunit (3.1) is used for informing the BIOS to send the password passing instruction to the AFU tool when the administrator password does not exist or the administrator password input by the user is the same as the prestored administrator password;
the BIOS continues to refresh the subunit (3.2) for the AFU tool to continue to perform BIOS refresh operations.
8. The device for solving the problem of password authentication by refreshing a BIOS with an AFU tool according to claim 6, wherein the BIOS stop refreshing unit (4) comprises:
a password error instruction transmitting subunit (4.1) configured to notify the BIOS to transmit a password error instruction to the AFU tool when the administrator password input by the user is different from the pre-stored administrator password;
the password overrun verification subunit (4.2) is used for judging whether the password input error times exceed the set times or not by the password function verification module;
a password overrun instruction transmitting subunit (4.3) for notifying the BIOS to transmit the password overrun instruction to the AFU tool when the password input error times exceed the set times;
a BIOS refresh stop subunit (4.4) for the AFU tool to stop BIOS refresh.
CN202110855549.9A 2021-07-28 2021-07-28 Method and device for solving password verification of refreshing BIOS by AFU tool Active CN113760327B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110855549.9A CN113760327B (en) 2021-07-28 2021-07-28 Method and device for solving password verification of refreshing BIOS by AFU tool

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110855549.9A CN113760327B (en) 2021-07-28 2021-07-28 Method and device for solving password verification of refreshing BIOS by AFU tool

Publications (2)

Publication Number Publication Date
CN113760327A CN113760327A (en) 2021-12-07
CN113760327B true CN113760327B (en) 2023-07-14

Family

ID=78788127

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110855549.9A Active CN113760327B (en) 2021-07-28 2021-07-28 Method and device for solving password verification of refreshing BIOS by AFU tool

Country Status (1)

Country Link
CN (1) CN113760327B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105589716A (en) * 2015-12-11 2016-05-18 浪潮电子信息产业股份有限公司 Method for refreshing BIOS (basic input output System) by using FPT (field programmable Gate array) based on Intel platform
CN107066387A (en) * 2017-04-14 2017-08-18 广东浪潮大数据研究有限公司 A kind of method of testing for refreshing BIOS pressure under Windows systems
CN108229179A (en) * 2018-01-31 2018-06-29 郑州云海信息技术有限公司 A kind of method, apparatus, equipment and storage medium for improving security of system
CN109635561A (en) * 2019-01-31 2019-04-16 郑州云海信息技术有限公司 A kind of method, apparatus that BIOS with BMC password setting is synchronous, terminal and storage medium

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105589716A (en) * 2015-12-11 2016-05-18 浪潮电子信息产业股份有限公司 Method for refreshing BIOS (basic input output System) by using FPT (field programmable Gate array) based on Intel platform
CN107066387A (en) * 2017-04-14 2017-08-18 广东浪潮大数据研究有限公司 A kind of method of testing for refreshing BIOS pressure under Windows systems
CN108229179A (en) * 2018-01-31 2018-06-29 郑州云海信息技术有限公司 A kind of method, apparatus, equipment and storage medium for improving security of system
CN109635561A (en) * 2019-01-31 2019-04-16 郑州云海信息技术有限公司 A kind of method, apparatus that BIOS with BMC password setting is synchronous, terminal and storage medium

Also Published As

Publication number Publication date
CN113760327A (en) 2021-12-07

Similar Documents

Publication Publication Date Title
CN107516365A (en) A kind of virtual key management method, apparatus and system
CN107508797B (en) Data transmission security method for Internet of vehicles platform
US20220337616A1 (en) Method and System for Providing Security on in-Vehicle Network
CN108023873B (en) Channel establishing method and terminal equipment
CN107038391B (en) Method and apparatus for protecting data integrity by embedded systems
CN109606311B (en) Vehicle authentication method, device and storage medium
CN111107063B (en) Login method and device
CN113760327B (en) Method and device for solving password verification of refreshing BIOS by AFU tool
CN105827405A (en) Remotely-controlled safety lock device and remote control method thereof
CN102609656A (en) USB (universal serial bus) key safety enhancing method and USB key safety enhancing system based on image identification
CN103888465A (en) Method and device for detecting webpage hijacking
CN108737449B (en) Soft encryption authentication method and device and electronic equipment
ES2898899T3 (en) Provision with a technical security installation as well as a procedure for its protected operation by means of a remote consultation
CN109131218A (en) Starting method, apparatus, vehicle and the computer readable storage medium of vehicle
CN110717770A (en) Anti-counterfeiting detection method, device, equipment and storage medium for vehicle parts
CN113226858A (en) Information processing apparatus
CN114157489B (en) Communication domain controller safety communication method based on periodic authentication handshake mechanism
CN103106581A (en) Method, device and system of safe electronic payment
CN111615064B (en) Terminal guarantee method and system based on Internet of vehicles, vehicle and storage medium
CN104134256A (en) Method and system for preventing vehicle remote-locking failure
JP2023102696A (en) Communication device, vehicle, communication method and program
KR20210033626A (en) Apparatus and method for enhancing security of distribution automation system
CN112859767B (en) Automobile PIN code generation system and method
CN113442846B (en) Automobile skylight, vehicle-mounted equipment and method for controlling skylight bus interface multiplexing
CN114615075B (en) Software tamper-proof system and method of controller and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant