CN114047873A - Data partitioning method, device and storage medium - Google Patents

Data partitioning method, device and storage medium Download PDF

Info

Publication number
CN114047873A
CN114047873A CN202111131796.0A CN202111131796A CN114047873A CN 114047873 A CN114047873 A CN 114047873A CN 202111131796 A CN202111131796 A CN 202111131796A CN 114047873 A CN114047873 A CN 114047873A
Authority
CN
China
Prior art keywords
storage
vehicle
data
configuration information
partition
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202111131796.0A
Other languages
Chinese (zh)
Other versions
CN114047873B (en
Inventor
肖杨
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Co Wheels Technology Co Ltd
Original Assignee
Beijing Co Wheels Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Co Wheels Technology Co Ltd filed Critical Beijing Co Wheels Technology Co Ltd
Priority to CN202111131796.0A priority Critical patent/CN114047873B/en
Publication of CN114047873A publication Critical patent/CN114047873A/en
Application granted granted Critical
Publication of CN114047873B publication Critical patent/CN114047873B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/06Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
    • G06F3/0601Interfaces specially adapted for storage systems
    • G06F3/0628Interfaces specially adapted for storage systems making use of a particular technique
    • G06F3/0638Organizing or formatting or addressing of data
    • G06F3/0644Management of space entities, e.g. partitions, extents, pools
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1408Protection against unauthorised use of memory or access to memory by using cryptography
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1458Protection against unauthorised use of memory or access to memory by checking the subject access rights
    • G06F12/1466Key-lock mechanism
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/65Updates

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Human Computer Interaction (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The present disclosure provides a data partitioning method, apparatus and storage medium, the method comprising: the method comprises the steps of obtaining first parameter information of a physical storage partition of a vehicle machine system, and generating storage configuration information according to the first parameter information and second parameter information, wherein the second parameter information is used for indicating storage parameters of multiple vehicle machine data of the vehicle machine system, mapping the physical storage partition into a plurality of logic storage partitions according to the storage configuration information, the plurality of logic storage partitions are used for storing the multiple vehicle machine data, and the plurality of logic storage partitions are mounted to the vehicle machine system, and under the condition that the vehicle machine data are changed, remotely updating the storage configuration information, so that the flexibility of the vehicle machine data partition can be improved, the requirement of rapid development of vehicle machine services on a storage space can be met, and the safety during data modification can be improved.

Description

Data partitioning method, device and storage medium
Technical Field
The present disclosure relates to the field of data storage technologies, and in particular, to a data partitioning method, apparatus, and storage medium.
Background
At present, the vehicle service data mainly includes a plurality of types such as diagnostic data, vehicle video data, vehicle map data, and the like, and is stored in a physical partition of the vehicle host.
In the related art, different types of vehicle-mounted machine service data are usually stored in different physical partitions of a vehicle, and the physical partitions of the vehicle are fixed and cannot be updated and adjusted remotely. With the increase of the service data of the car machine, the partition cannot be adjusted in time when the service changes, so that the problem that the space of the physical partition is wasted or the space resource is insufficient may be caused. In addition, in the related art, user data and vehicle-mounted device service data are generally placed in the same physical partition, and when the user data is erased, the vehicle-mounted device service data is also lost, so that unnecessary potential safety hazards are caused.
Disclosure of Invention
The present application provides a data partitioning method, apparatus and storage medium, which aim to solve at least one of the technical problems in the related art to a certain extent.
An embodiment of a first aspect of the present application provides a data partitioning method, including: acquiring first parameter information of a physical storage partition of a vehicle machine system; generating storage configuration information according to the first parameter information and the second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system; mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, wherein the plurality of logical storage partitions are used for storing various vehicle-mounted machine data; mounting a plurality of logic storage partitions to the vehicle-mounted machine system; and under the condition that the data of the vehicle machine is changed, remotely updating the storage configuration information.
An embodiment of a second aspect of the present application provides a data partitioning apparatus, including: the system comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring first parameter information of a physical storage partition of a vehicle machine system; the generating module is used for generating storage configuration information according to the first parameter information and the second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system; the partition module is used for mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, and the plurality of logical storage partitions are used for storing various vehicle-mounted machine data; the mounting module is used for mounting the plurality of logical storage partitions to the vehicle-mounted machine system; and the updating module is used for remotely updating the storage configuration information under the condition that the vehicle-mounted machine data are changed.
An embodiment of a third aspect of the present application provides an electronic device, including: at least one processor; and a memory communicatively coupled to the at least one processor; wherein the memory stores instructions executable by the at least one processor, the instructions being executable by the at least one processor to enable the at least one processor to perform the data partitioning method of the embodiments of the present application.
A fourth aspect of the present application provides a non-transitory computer-readable storage medium storing computer instructions for causing a computer to execute a data partitioning method disclosed in the embodiments of the present application.
In this embodiment, by obtaining first parameter information of a physical storage partition of the car machine system, and generating storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple car machine data of the car machine system, and according to the storage configuration information, the physical storage partition is mapped into multiple logical storage partitions, the multiple logical storage partitions are used to store the multiple car machine data, and the multiple logical storage partitions are mounted to the car machine system, and in the case of a change in the car machine data, the storage configuration information is updated remotely, so that flexibility of the car machine data partition can be improved, a requirement of a fast development of the car machine service on a storage space can be met, and security during data modification can be improved.
Additional aspects and advantages of the disclosure will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the disclosure.
Drawings
The foregoing and/or additional aspects and advantages of the present disclosure will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
FIG. 1 is a flow chart diagram of a data partitioning method provided according to an embodiment of the present disclosure;
FIG. 2 is a schematic diagram of a data partitioning process provided according to an embodiment of the present disclosure;
FIG. 3 is a schematic diagram of a data update process provided according to an embodiment of the present disclosure;
FIG. 4 is a flow chart illustrating a data partitioning method according to another embodiment of the present disclosure;
FIG. 5 is a flow chart illustrating a data partitioning method according to another embodiment of the present disclosure;
FIG. 6 is a schematic diagram of a data partitioning apparatus provided in accordance with another embodiment of the present disclosure;
FIG. 7 is a schematic diagram of a data partitioning apparatus provided in accordance with another embodiment of the present disclosure;
FIG. 8 illustrates a block diagram of an exemplary computer device suitable for use in implementing embodiments of the present application.
Detailed Description
Reference will now be made in detail to the embodiments of the present disclosure, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar functions throughout. The embodiments described below with reference to the drawings are exemplary only for the purpose of illustrating the present disclosure and should not be construed as limiting the same. On the contrary, the embodiments of the disclosure include all changes, modifications and equivalents coming within the spirit and terms of the claims appended hereto.
In view of the technical problems mentioned in the background art that the physical partition of the vehicle is fixed and cannot be upgraded and adjusted remotely, which may cause the space of the physical partition to be wasted or the space resources to be insufficient, the technical solution of the present embodiment provides a data partitioning method, and the method is described below with reference to specific embodiments.
It should be noted that an execution main body of the data partitioning method of this embodiment may be a data partitioning device, the device may be implemented by software and/or hardware, the device may be configured in an electronic device, and the electronic device may include, but is not limited to, a terminal, a server, and the like.
Fig. 1 is a schematic flowchart of a data partitioning method according to an embodiment of the present disclosure, as shown in fig. 1, the method includes:
s101: the method comprises the steps of obtaining first parameter information of a physical storage partition of a vehicle machine system.
In the embodiment of the disclosure, first parameter information of a physical storage partition of a car machine system is first acquired.
The system built in the vehicle may be referred to as a vehicle-mounted system or a vehicle-mounted system, and may be used to perform processing operation on data related to the vehicle, where the vehicle-mounted system may be based on, for example, a Linux operating system or other operating systems, without limitation.
And, this car machine system can set up the physical storage partition, for example: the parameter information of the disk, which is the parameter information of the physical storage partition, may be referred to as first parameter information, and the first parameter information includes, for example, a disk size, a disk type, and the like, without limitation. Fig. 2 is a schematic diagram of a data partitioning process provided according to an embodiment of the present disclosure, and as shown in fig. 2, an autodate corresponds to a physical storage partition according to an embodiment of the present disclosure.
S102: and generating storage configuration information according to the first parameter information and the second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system.
The data related to the car machine system may be referred to as car machine data (or car machine service data), and the car machine data may include various data such as vehicle diagnosis data, car machine video data, car map data, user data, and any other data, without limitation.
And information indicating storage parameters of various car machine data may be referred to as second parameter information, where the storage parameters include, for example: the size of the storage space, the storage position, and the like allocated to each type of car machine data are not limited.
The storage configuration information can be determined according to the first parameter information and the second parameter information, and the storage configuration information is used for recording storage information of various vehicle-mounted machine data in a physical storage partition, wherein the storage configuration information can be configured in the form of a mapping table, for example.
In some embodiments, a format of the storage configuration information (mapping table) may be pre-burned to a designated location of the physical storage partition to obtain a data configuration partition, as shown in fig. 2, where the data configuration partition corresponds to metadata, and the car machine service data partition configuration information corresponds to the storage configuration information.
S103: and mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, wherein the plurality of logical storage partitions are used for storing various vehicle-mounted machine data.
Further, according to the storage configuration information, the physical storage partition is mapped into a plurality of logical storage partitions, in some embodiments, as shown in fig. 2, for example, device-mapper technology may be used to map the physical storage partition (i.e., autodate) into a plurality of logical storage partitions, which may be represented by dm0, dm1,.
Each logical storage partition dm is configured to store corresponding types of in-vehicle machine data, for example: the logical storage partition dm0 stores vehicle diagnostic data, the logical storage partition dm1 stores in-vehicle machine video data, the logical storage partition dm2 stores in-vehicle map data, or a plurality of logical storage partitions may be used to store in-vehicle machine data, which is not limited thereto.
S104: and mounting the plurality of logic storage partitions to the vehicle-mounted machine system.
Further, after the car machine system is started, the plurality of logical storage partitions can be mounted (mount) to the car machine system, so that car machine data of the car machine system can be stored in the corresponding logical storage partitions. It will be appreciated that the logical storage partitions are partitions mapped from physical storage partitions, and the actual storage locations of the in-vehicle data are in the physical storage partitions.
In some embodiments, before the plurality of logical storage partitions are mounted to the in-vehicle system, when the in-vehicle system is started for the first time (the logical storage partitions are not formatted), the plurality of logical storage partitions may be adjusted to the ext4 format, so that the in-vehicle system may recognize the logical storage partitions, which is beneficial to subsequent mounting operations.
S105: and under the condition that the data of the vehicle machine is changed, remotely updating the storage configuration information.
For example, in case the amount of data of the in-vehicle video data exceeds the storage space of the logical storage partition dm1, the storage configuration information may be updated remotely, for example: the storage space parameter (second parameter information) corresponding to the in-vehicle video data in the storage configuration information is expanded, so that the storage space of the mapped logical storage partition dm1 may be expanded.
For another example, in the case where the data amount of the vehicle-mounted map data is significantly reduced, the storage space parameter (second parameter information) corresponding to the vehicle-mounted map data in the storage configuration information may be reduced to achieve a reduction in the storage space of the logical storage partition dm 2.
Some embodiments, for example, update the stored configuration information using Over-the-Air Technology (OTA).
Specifically, fig. 3 is a schematic diagram of a data updating process provided according to an embodiment of the present disclosure, and as shown in fig. 3, in the operation of remotely updating the storage configuration information, the new storage configuration information is first downloaded through an OTA technology; further, backing up the vehicle machine data needing backing up; further, erasing the storage configuration information in the data configuration partition metadata and the vehicle-machine data stored in the physical storage partition autodata; then, updating the new storage configuration information into the data configuration partition metadata, and remapping the plurality of logical storage partitions according to the new storage configuration information, that is: repartitioning the autodata of the physical storage partition; and finally, storing the backed-up vehicle machine data to the newly mapped logic storage partition.
In this embodiment, by obtaining first parameter information of a physical storage partition of the car machine system, and generating storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple car machine data of the car machine system, and according to the storage configuration information, mapping the physical storage partition into multiple logical storage partitions, where the multiple logical storage partitions are used to store the multiple car machine data, and mount the multiple logical storage partitions to the car machine system, and remotely updating the storage configuration information under the condition of car machine data change, flexibility of the car machine data partition can be improved, and a requirement for storage space of fast development of car machine services can be met. In addition, different types of vehicle-mounted data are stored respectively, and the safety during data modification can be improved.
Fig. 4 is a schematic flowchart of a data partitioning method according to another embodiment of the present disclosure, as shown in fig. 4, the method includes:
s401: the method comprises the steps of obtaining first parameter information of a physical storage partition of a vehicle machine system.
S402: and generating storage configuration information according to the first parameter information and the second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system.
S403: and mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, wherein the plurality of logical storage partitions are used for storing various vehicle-mounted machine data.
For specific descriptions of S401 to S403, refer to the above embodiments, which are not described herein again.
S404: mounting parameters are determined, the mounting parameters including encryption information corresponding to the plurality of logical storage partitions.
In the operation of mounting a plurality of logical storage partitions to the in-vehicle system, the mount parameters are determined first.
The mounting parameters include encryption information corresponding to a plurality of logical storage partitions, such as an encryption method, an encryption type, and any other possible encryption information, that is, each logical storage partition may have a corresponding encryption method and encryption type.
S405: and mounting the plurality of logic storage partitions to the vehicle-mounted machine system according to the mounting parameters.
Further, according to the mounting parameters, a plurality of logical storage partitions are mounted to the in-vehicle system, that is, the mounting process may configure an encryption method and an encryption type for each logical storage partition.
S406: a keyblob is obtained from the trusted execution environment based on the encryption information, wherein the keyblob contains a key for accessing the logical storage partition.
Further, a key block is acquired from a Trusted Execution Environment (TEE) according to the encryption information.
The key block may be represented as a key blob, and the key blob contains a key for accessing the logical storage partition, that is, data in the logical storage partition may be encrypted data, and the data in the logical storage partition may be accessed through the key in the key blob.
S407: the keyblob is saved to the storage configuration information.
Further, the key block key blob is saved to the storage configuration information, namely: and saving the data into a data configuration partition metadata.
S408: and under the condition that the data of the vehicle machine is changed, remotely updating the storage configuration information.
As shown in fig. 3, in the process of updating the storage configuration information, S405 to S407 may be re-executed, that is: the encryption information is updated.
Therefore, the embodiment can encrypt the logic storage partition, and improves the safety of the vehicle machine data access process.
In this embodiment, by obtaining first parameter information of a physical storage partition of the car machine system, and generating storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple car machine data of the car machine system, and according to the storage configuration information, mapping the physical storage partition into multiple logical storage partitions, where the multiple logical storage partitions are used to store the multiple car machine data, and mount the multiple logical storage partitions to the car machine system, and remotely updating the storage configuration information under the condition of car machine data change, flexibility of the car machine data partition can be improved, and a requirement for storage space of fast development of car machine services can be met. In addition, different types of vehicle-mounted data are stored respectively, and the safety during data modification can be improved. In addition, the embodiment can encrypt the logic storage partition, and improves the safety of the in-vehicle data access process.
Fig. 5 is a schematic flowchart of a data partitioning method according to an embodiment of the present disclosure, and as shown in fig. 5, the method includes:
s501: the method comprises the steps of obtaining first parameter information of a physical storage partition of a vehicle machine system.
S502: and generating storage configuration information according to the first parameter information and the second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system.
S503: and mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, wherein the plurality of logical storage partitions are used for storing various vehicle-mounted machine data.
S504: and mounting the plurality of logic storage partitions to the vehicle-mounted machine system.
S505: and under the condition that the data of the vehicle machine is changed, remotely updating the storage configuration information.
For specific descriptions of S501 to S505, reference may be made to the above embodiments, which are not described herein again.
S506: and receiving a vehicle-mounted machine data writing request, wherein the writing request comprises vehicle-mounted machine data to be written.
In the embodiment of the disclosure, a writing request of the in-vehicle data can be received, and the writing request includes the in-vehicle data to be written.
The data that needs to be written into the physical storage partition of the in-vehicle machine system may be referred to as data to be written into the in-vehicle machine, for example: the data to be written into the vehicle machine can be data in a memory of a vehicle machine system, and needs to be written into a physical storage partition for persistent storage; alternatively, the data to be written may also be data sent by an external system, such as: the updated in-vehicle map data is not limited in this regard.
S507: and responding to the writing request, determining a first logic storage partition related to the data to be written into the car machine, and acquiring a first key block corresponding to the first logic storage partition from the storage configuration information.
The logical storage partition related to the data to be written into the car machine may be referred to as a first logical storage partition, for example: the in-vehicle machine data to be written is the vehicle-mounted map data, and the first logical storage partition may be the logical storage partition dm2 that stores the vehicle-mounted map data.
Further, as shown in fig. 2, the first key block corresponding to the first logical storage partition, that is, the key block corresponding to the logical storage partition dm2 may be acquired from the storage configuration information and may be referred to as a first key block.
In some embodiments, the write request may have a first signature ROT, and the first signature ROT may be further authenticated before the first key block corresponding to the first logical storage partition is acquired from the storage configuration information.
In practical application, a manufacturer of the car machine system may inject a signature mirror ROT in the TEE, where the signature mirror ROT is used for access authentication. After receiving the write request, determining a first signature ROT carried by the write request, then obtaining the issued signature mirror ROT from the TEE, and authenticating the first signature ROT by using the signature mirror ROT, and performing subsequent encryption and decryption operations after the authentication is passed. The access identity can be controlled through authentication operation, and therefore the safety of the car machine system is improved.
S508: and encrypting the data to be written into the in-vehicle machine by using a key contained in the first key block.
That is, the encryption key of the key in the first key block is used to perform the encryption operation on the in-vehicle map data.
S509: and writing the encrypted data to be written into the vehicle-mounted computer into the first logic storage partition.
Further, writing the encrypted vehicle-mounted map data into the first logic storage partition, namely: the encrypted vehicle-mounted map data is written into the logical storage partition dm 2. Thus, the safety of data writing is ensured.
In other embodiments, a car machine data reading request may also be received, for example: and requesting to read the video data of the car machine.
Further, in response to the read request, determining a second logical storage partition storing the in-vehicle data to be read (i.e., in-vehicle video data), namely: the second logical storage partition corresponds to logical storage partition dm 1.
And further, a second key block corresponding to the second logic storage partition is obtained from the storage configuration information, and the to-be-read vehicle machine data is decrypted by using a key contained in the second key block, so that the decrypted vehicle machine video data is obtained.
In some embodiments, the read request may have a second signature identifier, and before obtaining a second key block corresponding to the second logical storage partition from the storage configuration information, the second signature identifier may also be authenticated, and the authentication process is similar to the above process for authenticating the first signature identifier, which is not described herein again.
In some embodiments, in the above data reading and writing process, for example, an encryption and decryption operation on the car machine data may be implemented in an Inline encryption manner.
In this embodiment, by obtaining first parameter information of a physical storage partition of the car machine system, and generating storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple car machine data of the car machine system, and according to the storage configuration information, mapping the physical storage partition into multiple logical storage partitions, where the multiple logical storage partitions are used to store the multiple car machine data, and mount the multiple logical storage partitions to the car machine system, and remotely updating the storage configuration information under the condition of car machine data change, flexibility of the car machine data partition can be improved, and a requirement for storage space of fast development of car machine services can be met. In addition, different types of vehicle-mounted data are stored respectively, and the safety during data modification can be improved. In addition, encryption and decryption operations are required in the data reading and writing process, so that the data security can be improved. Moreover, the authentication before encryption and decryption can also improve the security of system access.
Fig. 6 is a schematic diagram of a data partitioning apparatus provided in accordance with another embodiment of the present disclosure. As shown in fig. 6, the data partitioning apparatus 60 includes:
an obtaining module 601, configured to obtain first parameter information of a physical storage partition of a car machine system;
a generating module 602, configured to generate storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple types of vehicle-mounted machine data of the vehicle-mounted machine system;
the partition module 603 is configured to map the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, where the plurality of logical storage partitions are used to store a plurality of types of car machine data;
a mount module 604, configured to mount a plurality of logical storage partitions to the in-vehicle system; and
and an updating module 605, configured to remotely update the storage configuration information when the vehicle-mounted device data changes.
In some embodiments, fig. 7 is a schematic diagram of a data partitioning apparatus provided in accordance with another embodiment of the present disclosure, and as shown in fig. 7, the mount module 604 includes: a parameter determination submodule 6041 configured to determine a mounting parameter, where the mounting parameter includes encrypted information corresponding to the plurality of logical storage partitions; a mount submodule 6042, configured to mount the multiple logical storage partitions to the in-vehicle system according to the mount parameters; an obtaining submodule 6043 configured to obtain a key block from the trusted execution environment according to the encryption information, where the key block contains a key for accessing the logical storage partition; and a saving sub-module 6044 for saving the keyblob to the storage configuration information.
In some embodiments, as shown in fig. 7, the apparatus 60 further comprises:
a first receiving module 6061, configured to receive a car machine data write request, where the write request includes car machine data to be written;
a first determining module 6062, configured to determine, in response to the write request, a first logical storage partition related to the in-vehicle data to be written, and acquire, from the storage configuration information, a first key block corresponding to the first logical storage partition;
an encryption module 6063, configured to encrypt the to-be-written in-vehicle data with a key included in the first key block; and
and a write-in module 6064, configured to write the encrypted in-vehicle machine data to be written into the first logical storage partition.
In some embodiments, as shown in fig. 7, the apparatus 60 further comprises:
a second receiving module 6071, configured to receive a car machine data reading request;
a second determining module 6072, configured to determine, in response to the read request, a second logical storage partition where the in-vehicle data to be read is stored, and obtain, from the storage configuration information, a second key block corresponding to the second logical storage partition;
and a decryption module 6073, configured to decrypt the car-machine data to be read by using the key included in the second key block.
In some embodiments, the write request carries the first signature identifier, and as shown in fig. 7, the apparatus 60 further includes: a first authentication module 6065, configured to authenticate the first signature.
In some embodiments, the read request is identified with a second signature, as shown in fig. 7, and the apparatus 60 further includes: and a second authentication module 6074, configured to authenticate the second signature.
In this embodiment, by obtaining first parameter information of a physical storage partition of the car machine system, and generating storage configuration information according to the first parameter information and second parameter information, where the second parameter information is used to indicate storage parameters of multiple car machine data of the car machine system, and according to the storage configuration information, mapping the physical storage partition into multiple logical storage partitions, where the multiple logical storage partitions are used to store the multiple car machine data, and mount the multiple logical storage partitions to the car machine system, and remotely updating the storage configuration information under the condition of car machine data change, flexibility of the car machine data partition can be improved, and a requirement for storage space of fast development of car machine services can be met. In addition, different types of vehicle-mounted data are stored respectively, and the safety during data modification can be improved.
The present disclosure also provides an electronic device, a readable storage medium, and a computer program product according to embodiments of the present disclosure.
In order to implement the foregoing embodiments, the present application also proposes a computer program product, which when executed by an instruction processor in the computer program product, performs the data partitioning method as proposed by the foregoing embodiments of the present application.
FIG. 8 illustrates a block diagram of an exemplary computer device suitable for use in implementing embodiments of the present application. The computer device 12 shown in fig. 8 is only an example, and should not bring any limitation to the function and the scope of use of the embodiments of the present application.
As shown in FIG. 8, computer device 12 is in the form of a general purpose computing device. The components of computer device 12 may include, but are not limited to: one or more processors or processing units 16, a system memory 28, and a bus 18 that couples various system components including the system memory 28 and the processing unit 16.
Bus 18 represents one or more of any of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, and a processor or local bus using any of a variety of bus architectures. These architectures include, but are not limited to, Industry Standard Architecture (ISA) bus, Micro Channel Architecture (MAC) bus, enhanced ISA bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus, to name a few.
Computer device 12 typically includes a variety of computer system readable media. Such media may be any available media that is accessible by computer device 12 and includes both volatile and nonvolatile media, removable and non-removable media.
Memory 28 may include computer system readable media in the form of volatile Memory, such as Random Access Memory (RAM) 30 and/or cache Memory 32. Computer device 12 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only, storage system 34 may be used to read from and write to non-removable, nonvolatile magnetic media (not shown in FIG. 8, and commonly referred to as a "hard drive").
Although not shown in FIG. 8, a disk drive for reading from and writing to a removable, nonvolatile magnetic disk (e.g., a "floppy disk") and an optical disk drive for reading from or writing to a removable, nonvolatile optical disk (e.g., a Compact disk Read Only Memory (CD-ROM), a Digital versatile disk Read Only Memory (DVD-ROM), or other optical media) may be provided. In these cases, each drive may be connected to bus 18 by one or more data media interfaces. Memory 28 may include at least one program product having a set (e.g., at least one) of program modules that are configured to carry out the functions of embodiments of the application.
A program/utility 40 having a set (at least one) of program modules 42 may be stored, for example, in memory 28, such program modules 42 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each of which examples or some combination thereof may comprise an implementation of a network environment. Program modules 42 generally perform the functions and/or methodologies of the embodiments described herein.
Computer device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), with one or more devices that enable a user to interact with computer device 12, and/or with any devices (e.g., network card, modem, etc.) that enable computer device 12 to communicate with one or more other computing devices. Such communication may be through an input/output (I/O) interface 22. Moreover, computer device 12 may also communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public Network such as the Internet) via Network adapter 20. As shown, network adapter 20 communicates with the other modules of computer device 12 via bus 18. It should be understood that although not shown in the figures, other hardware and/or software modules may be used in conjunction with computer device 12, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
The processing unit 16 executes various functional applications and data partitioning, for example, implementing the data partitioning method mentioned in the foregoing embodiments, by executing programs stored in the system memory 28.
Other embodiments of the present application will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the application and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the application being indicated by the following claims.
It will be understood that the present application is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the application is limited only by the appended claims.
It should be noted that, in the description of the present application, the terms "first", "second", etc. are used for descriptive purposes only and are not to be construed as indicating or implying relative importance. In addition, in the description of the present application, "a plurality" means two or more unless otherwise specified.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and the scope of the preferred embodiments of the present application includes other implementations in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the present application.
It should be understood that portions of the present application may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
It will be understood by those skilled in the art that all or part of the steps carried by the method for implementing the above embodiments may be implemented by hardware related to instructions of a program, which may be stored in a computer readable storage medium, and when the program is executed, the program includes one or a combination of the steps of the method embodiments.
In addition, functional units in the embodiments of the present application may be integrated into one processing module, or each unit may exist alone physically, or two or more units are integrated into one module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. The integrated module, if implemented in the form of a software functional module and sold or used as a stand-alone product, may also be stored in a computer readable storage medium.
The storage medium mentioned above may be a read-only memory, a magnetic or optical disk, etc.
In the description herein, reference to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the application. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Although embodiments of the present application have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present application, and that variations, modifications, substitutions and alterations may be made to the above embodiments by those of ordinary skill in the art within the scope of the present application.

Claims (20)

1. A method for partitioning data, comprising:
acquiring first parameter information of a physical storage partition of a vehicle machine system;
determining storage configuration information according to the first parameter information and second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system;
mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, wherein the plurality of logical storage partitions are used for storing the various vehicle-mounted machine data;
mounting the plurality of logical storage partitions to the in-vehicle machine system; and
and under the condition that the vehicle machine data are changed, remotely updating the storage configuration information.
2. The method of claim 1, wherein mounting the plurality of logical storage partitions to the in-vehicle machine system comprises:
determining mounting parameters, wherein the mounting parameters comprise encrypted information corresponding to the plurality of logical storage partitions;
according to the mounting parameters, mounting the plurality of logical storage partitions to the vehicle-mounted machine system;
obtaining a keyblob from a trusted execution environment based on the encryption information, wherein the keyblob contains a key for accessing the logical storage partition; and
saving the key block to the storage configuration information.
3. The method of claim 2, further comprising:
receiving a vehicle-mounted machine data writing request, wherein the writing request comprises vehicle-mounted machine data to be written;
responding to the writing request, determining a first logic storage partition related to the to-be-written-in-vehicle data, and acquiring a first key block corresponding to the first logic storage partition from the storage configuration information;
encrypting the vehicle-mounted machine data to be written by adopting a key contained in the first key block; and
and writing the encrypted data to be written into the vehicle-mounted computer into the first logic storage partition.
4. The method of claim 2, further comprising:
receiving a vehicle machine data reading request;
responding to the reading request, determining a second logic storage partition for storing the car machine data to be read, and acquiring a second key block corresponding to the second logic storage partition from the storage configuration information;
and decrypting the car machine data to be read by adopting the key contained in the second key block.
5. The method of claim 3, wherein the write request is identified with a first signature, and further comprising, prior to obtaining the first keyblob corresponding to the first logical storage partition from the storage configuration information:
and authenticating the first signature identification.
6. The method of claim 4, wherein the read request is identified with a second signature, and further comprising, prior to obtaining a second keyblob corresponding to the second logical storage partition from the storage configuration information:
and authenticating the second signature identification.
7. The method of claim 1, prior to mounting the plurality of logical storage partitions to the in-vehicle machine system, further comprising:
and responding to the first starting operation of the car machine system, and adjusting the plurality of logic storage partitions into an ext4 format.
8. The method of claim 1, wherein remotely updating the storage configuration information comprises:
and updating the storage configuration information by adopting an over-the-air downloading technology.
9. The method of claim 1, wherein mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information comprises:
and mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information by adopting a device-mapper technology.
10. A data partitioning apparatus, comprising:
the system comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring first parameter information of a physical storage partition of a vehicle machine system;
the generating module is used for determining storage configuration information according to the first parameter information and second parameter information, wherein the second parameter information is used for indicating storage parameters of various vehicle-mounted machine data of the vehicle-mounted machine system;
the partition module is used for mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information, and the plurality of logical storage partitions are used for storing the various vehicle-mounted machine data;
the mounting module is used for mounting the plurality of logical storage partitions to the vehicle-mounted machine system; and
and the updating module is used for remotely updating the storage configuration information under the condition that the vehicle machine data is changed.
11. The apparatus of claim 10, wherein the mounting module comprises:
a parameter determination submodule for determining mounting parameters, the mounting parameters including encryption information corresponding to the plurality of logical storage partitions;
the mounting submodule is used for mounting the plurality of logic storage partitions to the vehicle-mounted computer system according to the mounting parameters;
an obtaining submodule configured to obtain a key block from a trusted execution environment according to the encryption information, wherein the key block contains a key for accessing the logical storage partition; and
a saving submodule, configured to save the key block to the storage configuration information.
12. The apparatus of claim 11, wherein the apparatus further comprises:
the system comprises a first receiving module, a second receiving module and a sending module, wherein the first receiving module is used for receiving a vehicle-mounted machine data writing request, and the writing request comprises vehicle-mounted machine data to be written;
a first determining module, configured to determine, in response to the write request, a first logical storage partition related to the in-vehicle device data to be written, and obtain, from the storage configuration information, a first key block corresponding to the first logical storage partition;
the encryption module is used for encrypting the vehicle-mounted device data to be written by adopting a key contained in the first key block; and
and the writing module is used for writing the encrypted data to be written into the vehicle-mounted computer into the first logic storage partition.
13. The apparatus of claim 11, wherein the apparatus further comprises:
the second receiving module is used for receiving a vehicle-mounted machine data reading request;
a second determining module, configured to determine, in response to the read request, a second logical storage partition in which the in-vehicle data to be read is stored, and obtain, from the storage configuration information, a second key block corresponding to the second logical storage partition;
and the decryption module is used for decrypting the vehicle machine data to be read by adopting the key contained in the second key block.
14. The apparatus of claim 12, wherein the write request is identified with a first signature, the apparatus further comprising:
and the first authentication module is used for authenticating the first signature identification.
15. The apparatus of claim 13, wherein the read request is identified with a second signature, the apparatus further comprising:
and the second authentication module is used for authenticating the second signature identification.
16. The apparatus of claim 10, wherein the mounting module is specifically configured to: and responding to the first starting operation of the car machine system, and adjusting the plurality of logic storage partitions into an ext4 format.
17. The apparatus of claim 10, wherein the update module is specifically configured to: and updating the storage configuration information by adopting an over-the-air downloading technology.
18. The apparatus of claim 10, wherein the partitioning module is specifically configured to:
and mapping the physical storage partition into a plurality of logical storage partitions according to the storage configuration information by adopting a device-mapper technology.
19. An electronic device, comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to perform the method of any one of claims 1-9.
20. A non-transitory computer readable storage medium having stored thereon computer instructions for causing the computer to perform the method of any one of claims 1-9.
CN202111131796.0A 2021-09-26 2021-09-26 Data partitioning method, device and storage medium Active CN114047873B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111131796.0A CN114047873B (en) 2021-09-26 2021-09-26 Data partitioning method, device and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111131796.0A CN114047873B (en) 2021-09-26 2021-09-26 Data partitioning method, device and storage medium

Publications (2)

Publication Number Publication Date
CN114047873A true CN114047873A (en) 2022-02-15
CN114047873B CN114047873B (en) 2023-08-01

Family

ID=80204799

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111131796.0A Active CN114047873B (en) 2021-09-26 2021-09-26 Data partitioning method, device and storage medium

Country Status (1)

Country Link
CN (1) CN114047873B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114594912A (en) * 2022-03-14 2022-06-07 中国第一汽车股份有限公司 Information protection method, device, equipment and medium for vehicle instrument system
CN115048154A (en) * 2022-07-06 2022-09-13 北斗星通智联科技有限责任公司 Vehicle-mounted configuration information management method, device and system and storage medium

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108733311B (en) * 2017-04-17 2021-09-10 伊姆西Ip控股有限责任公司 Method and apparatus for managing storage system
CN109408403A (en) * 2018-10-12 2019-03-01 深圳市硅格半导体有限公司 Mapping method, device, system and storage medium based on storage equipment bottom
CN109726575B (en) * 2018-12-29 2021-06-29 杭州宏杉科技股份有限公司 Data encryption method and device
CN110221990B (en) * 2019-04-26 2021-10-08 奇安信科技集团股份有限公司 Data storage method and device, storage medium and computer equipment
CN112783444A (en) * 2021-01-18 2021-05-11 深圳市科思科技股份有限公司 Cluster disk sharing method, system and storage medium

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114594912A (en) * 2022-03-14 2022-06-07 中国第一汽车股份有限公司 Information protection method, device, equipment and medium for vehicle instrument system
CN115048154A (en) * 2022-07-06 2022-09-13 北斗星通智联科技有限责任公司 Vehicle-mounted configuration information management method, device and system and storage medium
CN115048154B (en) * 2022-07-06 2024-05-03 北斗星通智联科技有限责任公司 Vehicle-mounted configuration information management method, device, system and storage medium

Also Published As

Publication number Publication date
CN114047873B (en) 2023-08-01

Similar Documents

Publication Publication Date Title
US11558174B2 (en) Data storage method, device, related equipment and cloud system for hybrid cloud
CN110176990B (en) Vehicle component replacement recognition method and device, computer equipment and storage medium
CN108763099B (en) System starting method and device, electronic equipment and storage medium
CN112087493B (en) Request processing method, system on chip and public cloud management component
US10409990B2 (en) Encryption and decryption method and apparatus in virtualization system, and system
RU2456663C2 (en) Progressive boot strap loading for wireless device
CN114047873B (en) Data partitioning method, device and storage medium
US10938573B2 (en) Distributed transaction processing
CN107526608B (en) OTA upgrade package upgrading method and device
CN111201553B (en) Safety element and related equipment
WO2018157716A1 (en) Smart card
CN105678183B (en) A kind of user data management and device of intelligent terminal
CN108229190B (en) Transparent encryption and decryption control method, device, program, storage medium and electronic equipment
EP2849111A1 (en) OTP generation on portable medium
CN103229150A (en) Data control method and system
CN110633055B (en) Method, device and related equipment for accessing RPMB partition
CN116126463A (en) Memory access method, configuration method, computer system and related devices
CN116048414A (en) Data reading method of equipment and electronic equipment
WO2021027613A1 (en) Patch releasing method, server and terminal device
WO2014038016A1 (en) Control program, control method, and control device
CN111638956B (en) Application running method, device and storage medium
CN108111501B (en) Control method and device for cheating flow and computer equipment
US10324649B2 (en) Method for partitioning memory area of non-volatile memory
CN112052069B (en) Method, device and related equipment for writing and reading virtual machine identification
CN113343265B (en) Key configuration method, device and related equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant