CN114391134A - Flashing processing method and related device - Google Patents
Flashing processing method and related device Download PDFInfo
- Publication number
- CN114391134A CN114391134A CN201980100206.2A CN201980100206A CN114391134A CN 114391134 A CN114391134 A CN 114391134A CN 201980100206 A CN201980100206 A CN 201980100206A CN 114391134 A CN114391134 A CN 114391134A
- Authority
- CN
- China
- Prior art keywords
- flashing
- parameter information
- digital signature
- electronic equipment
- electronic device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000003672 processing method Methods 0.000 title claims abstract description 17
- 238000000034 method Methods 0.000 claims abstract description 60
- 238000012795 verification Methods 0.000 claims abstract description 46
- 230000004044 response Effects 0.000 claims abstract description 42
- 230000000977 initiatory effect Effects 0.000 claims abstract description 4
- 238000012545 processing Methods 0.000 claims description 49
- 230000015654 memory Effects 0.000 claims description 30
- 238000004891 communication Methods 0.000 claims description 29
- 238000013475 authorization Methods 0.000 claims description 26
- 238000004590 computer program Methods 0.000 claims description 16
- 238000011010 flushing procedure Methods 0.000 claims 6
- 230000001680 brushing effect Effects 0.000 abstract description 11
- 230000006870 function Effects 0.000 description 16
- 238000010586 diagram Methods 0.000 description 13
- 230000008569 process Effects 0.000 description 10
- 230000005540 biological transmission Effects 0.000 description 7
- 230000009286 beneficial effect Effects 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 230000003287 optical effect Effects 0.000 description 3
- 229920001621 AMOLED Polymers 0.000 description 2
- 238000013524 data verification Methods 0.000 description 2
- 238000004088 simulation Methods 0.000 description 2
- XUIMIQQOPSSXEZ-UHFFFAOYSA-N Silicon Chemical compound [Si] XUIMIQQOPSSXEZ-UHFFFAOYSA-N 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000002349 favourable effect Effects 0.000 description 1
- 238000007429 general method Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000002427 irreversible effect Effects 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 229910052710 silicon Inorganic materials 0.000 description 1
- 239000010703 silicon Substances 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/445—Program loading or initiating
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
- Telephonic Communication Services (AREA)
Abstract
A machine-refreshing processing method and a related device are applied to first electronic equipment, target application programs run on the first electronic equipment, and the method comprises the following steps: acquiring first parameter information; initiating a flashing request to second electronic equipment, wherein the flashing request carries the first parameter information; receiving a flashing response request sent by second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number; and after the verification is passed, calling the target application program to download the to-be-downloaded flashing data packet, and completing the flashing operation according to the to-be-downloaded booknote data packet. The safety of the brushing machine is improved.
Description
The application relates to the technical field of electronic equipment, in particular to a machine-refreshing processing method and a related device.
With the widespread use of a large number of electronic devices such as smart phones, smart phones have more and more applications and more powerful functions, and smart phones are developed towards diversification and personalization directions and become indispensable electronic products in user life. The method for guaranteeing the flashing safety of the smart phone is a technical problem of key research of various large mobile phone suppliers, because flashing relates to a series of security problems of the mobile phone, such as root, unlocking, built-in charge application, user data security and the like, flashing operation can cause certain influence on the security problems, and an illegal user can achieve the purposes of stealing user data, unlocking the smart phone and the like through flashing, so that the safety of flashing of the smart phone is ensured, and the method is a hot problem which is urgently required to be solved at present.
Disclosure of Invention
The embodiment of the application provides a machine refreshing processing method and a related device, which are beneficial to improving the safety of machine refreshing of electronic equipment and improving the machine refreshing efficiency.
In a first aspect, an embodiment of the present application provides a method for processing a flash, where the method is applied to a first electronic device, where a target application runs on the first electronic device, and the method includes:
acquiring first parameter information, wherein the first parameter information comprises an equipment identifier of the first electronic equipment, first version information, second version information and a first random number, the first version information is used for indicating a system version of the first electronic equipment before the first electronic equipment is restarted, and the second version information is used for indicating the system version of the first electronic equipment after the first electronic equipment is restarted;
initiating a flashing request to the second electronic equipment, wherein the flashing request carries the first parameter information;
receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number;
and calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and finishing the flashing operation according to the to-be-downloaded booknote data packet.
In a second aspect, an embodiment of the present application provides another flashing processing method, which is applied to a second electronic device, and the method includes:
after a flashing request sent by first electronic equipment is received, second parameter information is obtained, wherein the second parameter information comprises hardware characteristic information and account information of the second electronic equipment;
sending the first parameter information and the second parameter information in the flashing request to a server;
receiving a download authorization result and a second digital signature sent by the server;
and verifying the second digital signature, and after the second digital signature passes the verification, sending a flashing response request to the first electronic device, wherein the flashing response request carries the second digital signature.
In a third aspect, an embodiment of the present application provides another flashing processing method, which is applied to a server, where a flashing tool is installed on the server, and the method includes:
after first parameter information and second parameter information sent by second electronic equipment are received, judging whether the first electronic equipment has the power-on-demand permission or not according to the first parameter information and the second parameter information;
if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information;
and controlling the flashing tool to send a downloading authorization result and a second digital signature to the second electronic equipment, and sending the downloading authorization result and the second digital signature to the first electronic equipment by the second electronic equipment.
In a fourth aspect, embodiments of the present application provide a brushing processing device, which includes a processing unit and a communication unit, wherein,
the processing unit is configured to obtain first parameter information through the communication unit, where the first parameter information includes an apparatus identifier of the first electronic apparatus, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic apparatus before the first electronic apparatus is booted, and the second version information is used to indicate a system version of the first electronic apparatus after the first electronic apparatus is booted; the system comprises a first electronic device and a second electronic device, wherein the first electronic device is used for sending a first parameter information to the first electronic device; the second electronic equipment is used for receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number; and the system is used for calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and completing the flashing operation according to the to-be-downloaded booknote data packet.
In a fifth aspect, an embodiment of the present application provides another brushing processing device, which includes a processing unit and a communication unit, wherein,
the processing unit is used for acquiring second parameter information after receiving a flashing request sent by first electronic equipment through the communication unit, wherein the second parameter information comprises hardware characteristic information and account information of the second electronic equipment; the server is used for sending the first parameter information and the second parameter information in the flashing request to the server; and for receiving a download authorization result and a second digital signature sent by the server; and the second digital signature verification module is used for verifying the second digital signature and sending a flashing response request to the first electronic equipment after the second digital signature verification module passes the verification, wherein the flashing response request carries the second digital signature.
In a sixth aspect, an embodiment of the present application provides another brushing processing device, which includes a processing unit and a communication unit, wherein,
the processing unit is used for judging whether the first electronic equipment has the flashing authority or not according to the first parameter information and the second parameter information after the first parameter information and the second parameter information sent by the second electronic equipment are received through the communication unit; if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information; and the system is used for controlling the flashing tool to send the downloading authorization result and the second digital signature to the second electronic equipment, and the second electronic equipment sends the downloading authorization result and the second digital signature to the first electronic equipment.
In a seventh aspect, an embodiment of the present application provides an electronic device, including a controller, a memory, a communication interface, and one or more programs, where the one or more programs are stored in the memory and configured to be executed by the controller, and the program includes instructions for executing steps of any of the methods in the first aspect of the embodiment of the present application.
In an eighth aspect, the present application provides a computer-readable storage medium, where the computer-readable storage medium stores a computer program for electronic data exchange, where the computer program makes a computer perform part or all of the steps described in any one of the methods of the first aspect of the present application.
In a ninth aspect, the present application provides a computer program product, wherein the computer program product comprises a non-transitory computer-readable storage medium storing a computer program, and the computer program is operable to cause a computer to perform some or all of the steps as described in any one of the methods of the first aspect of the embodiments of the present application. The computer program product may be a software installation package.
It can be seen that, in this embodiment of the present application, a first electronic device first obtains first parameter information, where the first parameter information includes a device identifier of the first electronic device, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic device before being flashed, the second version information is used to indicate a system version of the first electronic device after being flashed, then, a flashing request is initiated to a second electronic device, the flashing request carries the first parameter information, then, a flashing response request sent by the second electronic device is received, a second digital signature in the flashing response request is obtained and verified, the second digital signature is generated after a server encrypts the first random number, and finally, a target application program is called to download a flashing data packet to be downloaded after the verification is passed, and the machine refreshing operation is completed according to the book note data packet to be downloaded, and the safety of the machine refreshing can be ensured because the data transmission between the first electronic equipment and the server is authenticated and authorized.
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present application, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1A is a schematic structural diagram of a first electronic device according to an embodiment of the present disclosure;
FIG. 1B is a schematic diagram illustrating an interaction flow of a system for processing a brusher according to an embodiment of the present application;
FIG. 2 is a schematic flow chart illustrating a brushing processing method according to an embodiment of the present disclosure;
FIG. 3 is a schematic flow chart diagram illustrating another exemplary flashing method according to an embodiment of the present disclosure;
FIG. 4 is a schematic flow chart diagram illustrating another exemplary flashing method provided in an embodiment of the present disclosure;
fig. 5 is a schematic structural diagram of a first electronic device according to an embodiment of the present application;
fig. 6 is a schematic structural diagram of a server provided in an embodiment of the present application;
FIG. 7 is a block diagram illustrating functional units of a brushing processing device according to an embodiment of the present disclosure;
fig. 8 is a block diagram of functional units of another flashing processing device provided in an embodiment of the present application.
In order to make the technical solutions of the present application better understood, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
The terms "first," "second," and the like in the description and claims of the present application and in the above-described drawings are used for distinguishing between different objects and not for describing a particular order. Furthermore, the terms "include" and "have," as well as any variations thereof, are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those steps or elements listed, but may alternatively include other steps or elements not listed, or inherent to such process, method, article, or apparatus.
Reference herein to "an embodiment" means that a particular feature, structure, or characteristic described in connection with the embodiment can be included in at least one embodiment of the application. The appearances of the phrase in various places in the specification are not necessarily all referring to the same embodiment, nor are separate or alternative embodiments mutually exclusive of other embodiments. It is explicitly and implicitly understood by one skilled in the art that the embodiments described herein can be combined with other embodiments.
The first electronic device and the second electronic device may include various handheld devices having wireless communication functions, vehicle-mounted devices, wearable devices (e.g., smart watches, smart bands, pedometers, etc.), computing devices or other processing devices connected to wireless modems, as well as various forms of User Equipment (UE), Mobile Stations (MS), terminal devices (terminal device), and so on. For convenience of description, the above-mentioned devices are collectively referred to as electronic devices.
The following describes embodiments of the present application in detail.
Referring to fig. 1A, fig. 1A is a schematic structural diagram of a first electronic device according to an embodiment of the present disclosure, where the first electronic device includes a processor, a Memory, a signal processor, a transceiver, a touch display screen, a speaker, a microphone, a Random Access Memory (RAM), a camera, and the like.
The storage, the signal processor, the touch display screen, the camera, the sensor, the loudspeaker, the microphone and the RAM are connected with the processor, and the transceiver is connected with the signal processor.
The touch Display screen may be a Liquid Crystal Display (LCD), an Organic or inorganic Light-Emitting Diode (OLED), an Active Matrix Organic Light-Emitting Diode (AMOLED), or the like.
The camera may be a common camera, an infrared camera, a front camera or a rear camera, and is not limited herein.
Wherein the sensor comprises at least one of: light-sensitive sensors, gyroscopes, infrared proximity sensors, fingerprint sensors, pressure sensors, etc. Among them, the light sensor, also called an ambient light sensor, is used to detect the ambient light brightness. The light sensor may include a light sensitive element and an analog to digital converter. The photosensitive element is used for converting collected optical signals into electric signals, and the analog-to-digital converter is used for converting the electric signals into digital signals. Optionally, the light sensor may further include a signal amplifier, and the signal amplifier may amplify the electrical signal converted by the photosensitive element and output the amplified electrical signal to the analog-to-digital converter. The photosensitive element may include at least one of a photodiode, a phototransistor, a photoresistor, and a silicon photocell.
The processor is a control center of the first electronic device, connects each part of the whole first electronic device by using various interfaces and lines, and executes various functions and processes data of the first electronic device by running or executing software programs and/or modules stored in the memory and calling data stored in the memory, thereby integrally monitoring the first electronic device.
The processor may integrate a flush processor and a modem processor, wherein the flush processor mainly handles operating systems, user interfaces, application programs, and the like, and the modem processor mainly handles wireless communications. It will be appreciated that the modem processor described above may not be integrated into the processor.
The memory is used for storing software programs and/or modules, and the processor executes various functional applications and data processing of the first electronic device by running the software programs and/or modules stored in the memory. The memory mainly comprises a program storage area and a data storage area, wherein the program storage area can store an operating system, a software program required by at least one function and the like; the storage data area may store data created according to use of the electronic device, etc., for example, first parameter information, target application information, etc. Further, the memory may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device.
The flashing means that some languages, pictures, ring tones, software or operating systems originally existing in the mobile phone are changed or replaced by a certain method. In popular terms, the reinstallation of the mobile phone is the reinstallation of the mobile phone. The function of the mobile phone can be more perfect by flashing, and the mobile phone can be restored to the original state. The flashing processing method provided by the application can control the flashing permission of the bottom layer of the first electronic equipment at the server side, and relates to all-round safety guarantee of a system version, the first electronic equipment, a user account and the like, so that the situation that flashing is uncontrollable due to the fact that a flashing tool is cracked can be effectively avoided, and real flashing safety is achieved. In the prior art, a general method is to solve the security problem from a tool end, for example, in the process of refreshing a mobile phone through a computer, it is ensured that a refreshing tool at the computer end is not cracked, and authentication is performed in combination with a user account or an encryption lock, but the security level of the level is very low, and the refreshing tool is very easy to crack and cannot perform security control on refreshing. According to the method and the system, the direct connection between the first electronic equipment and the server which need to be refreshed can be achieved, the target application program which runs by the first electronic equipment cannot be cracked, and the server is safe, so that the security of refreshing is guaranteed, and complicated authority management and control can be achieved. The first electronic device may be, for example, a mobile phone, the target application may be, for example, a flash program installed in the mobile phone, and the second electronic device may be, for example, a computer, which is not limited herein.
The hash algorithm is a function of compressing a message with any length to a message digest with a fixed length, is public, and has the same result when being operated on the same data, has the same operation length but different result when being operated on different data, and cannot be inversely operated. The digital signature is essentially realized through a hash algorithm and asymmetric encryption, the hash algorithm is mainly used for identifying file data, plaintext data and a hash value of the data can be transmitted to a receiver together in the network data transmission process, the receiver takes out the hash value to compare and verify the hash value, but the data needs to be protected in the data transmission process to prevent the data from being tampered, the plaintext data is usually large in data volume and is not suitable for the RSA asymmetric encryption algorithm, but the hash value of the data is usually small, and the hash value is used for verification, so that the RSA encryption can be used for the hash value, and the plaintext data and verification data encrypted through the RSA are transmitted to the receiver, wherein the verification data encrypted through the RSA is called as the digital signature. The sender sends plaintext data, also called original data, and the plaintext data and the digital signature to the receiver, after the receiver receives the data, the receiver uses the same hash algorithm on the original data to obtain a hash value of the original data in the process of data verification, then decrypts the hash value used for verification in the digital signature through an asymmetric encryption algorithm, and the receiver only needs to compare whether the two hash values are consistent or not, if so, the data is not tampered.
Therefore, an embodiment of the present application provides a system for processing a flashing machine, as shown in fig. 1B, the system for processing a flashing machine includes a first electronic device, a second electronic device, and a server, where, after a first digital signature sent by the second electronic device is received by the first electronic device S101, the first digital signature is verified, and after the verification is passed, S102 obtains first parameter information, then S103 sends a flashing machine request carrying the first parameter information to the second electronic device, S104 obtains second parameter information after receiving the flashing machine request, S105 sends the first parameter information and the second parameter information in the flashing machine request to the server, and S106 determines whether the first electronic device has a flashing authority according to the first parameter information and the second parameter information, and if so, S107 sends an authorization result and the second digital signature to the second electronic device, s108, the second electronic equipment verifies the second digital signature, after the verification is passed, S109 sends the second digital signature to the first electronic equipment, S110, the first electronic equipment verifies the second digital signature, and S111 downloads the to-be-downloaded flashing data package after the verification is passed and completes the flashing operation according to the to-be-downloaded flashing data package.
Referring to fig. 2, fig. 2 is a schematic flowchart illustrating a flashing processing method applied to a first electronic device, where the first electronic device runs a target application program. As shown in the figure, the brushing processing method comprises the following steps:
s201, a first electronic device obtains first parameter information, wherein the first parameter information comprises a device identifier of the first electronic device, first version information, second version information and a first random number, the first version information is used for indicating a system version of the first electronic device before the first electronic device is restarted, and the second version information is used for indicating the system version of the first electronic device after the first electronic device is restarted.
The first electronic device obtains first parameter information, where the first parameter information includes a device identifier, first version information, second version information, and a first random number, the first device identifier may be, for example, a Central Processing Unit (CPU) identifier, a serial number, and the like, and may be a symbol uniquely used to identify the first electronic device, the first version information and the second version information are respectively used to indicate a system version of the first electronic device before the flashing and a system version after the flashing, the first random number may be a constant generated by the random number when the electronic device flashes each time, and the first electronic device may store the constant.
S202, the first electronic device initiates a flashing request to the second electronic device, wherein the flashing request carries the first parameter information.
The first electronic device initiates a flashing request to the second electronic device, and packages the acquired first parameter information related to the first electronic device into the flashing request to be sent to the second electronic device, so that the second electronic device can detect the flashing operation requested by the first electronic device and determine whether to respond to the flashing request of the first electronic device according to the flashing request carrying the first parameter information.
S203, the first electronic device receives a flashing response request sent by the second electronic device, obtains a second digital signature in the flashing response request and verifies the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number.
Wherein, the first electronic device sends a flashing request to the second electronic device, actually initiates the flashing request to the server, if the server agrees to authorize the flashing operation of the first electronic device this time, the server sends a second digital signature to the second electronic device, the second digital signature is generated by the server according to the first random number, the second electronic device receives the second digital signature and firstly checks the second digital signature, and responds to the flashing request initiated by the first electronic device after the check is passed, at this time, the server sends a flashing response request to the first electronic device, the flashing response request carries the second digital signature, the first electronic device checks the second digital signature and executes downloading of a flashing data packet to be downloaded after the check is passed, the flashing data packet to be downloaded comprises a command packet and a target data packet, and the command packet mainly comprises various downloading command sequences, the target data packet mainly comprises system data of a new edition.
And S204, the first electronic equipment downloads the to-be-downloaded flashing data packet after the verification is passed, and the flashing operation is completed according to the to-be-downloaded booknote data packet.
It can be seen that, in this embodiment of the present application, a first electronic device first obtains first parameter information, where the first parameter information includes a device identifier of the first electronic device, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic device before being flashed, the second version information is used to indicate a system version of the first electronic device after being flashed, then, a flashing request is initiated to a second electronic device, the flashing request carries the first parameter information, then, a flashing response request sent by the second electronic device is received, a second digital signature in the flashing response request is obtained and verified, the second digital signature is generated after a server encrypts the first random number, and finally, a target application program is called to download a flashing data packet to be downloaded after the verification is passed, and the machine refreshing operation is completed according to the book note data packet to be downloaded, and the safety of the machine refreshing can be ensured because the data transmission between the first electronic equipment and the server is authenticated and authorized.
In one possible example, before the obtaining the first parameter information, the method includes: when the target application program is used for analog downloading, acquiring a to-be-downloaded flashing data packet sent by second electronic equipment and a first digital signature of the to-be-downloaded flashing data packet, wherein the first digital signature is obtained by a first hash table generated by the second electronic equipment according to the to-be-downloaded flashing data packet, the to-be-downloaded flashing data packet comprises a command packet and a target data packet, and the target data packet comprises system data after flashing; verifying the first digital signature; when the verification is passed, determining to download the flashing data packet to be downloaded;
the method comprises the steps that a first electronic device runs a target application program, before formal downloading of coefficient data of a new version, one-time simulation downloading can be conducted through the target application program, during simulation downloading, a to-be-downloaded flashing data package sent by a second electronic device and a first digital signature of the to-be-downloaded flashing data package are received, the first digital signature is obtained by the second electronic device according to a first hash table generated by the to-be-downloaded flashing data package, the to-be-downloaded flashing data package comprises a command package and a target data package, the target application program is signed by a manufacturer of the first electronic device, and a downloading command sequence in the command package is also signed by the manufacturer. The second electronic device calculates a hash value of the to-be-downloaded flashing data package to obtain a hash table, signs the hash table to obtain a first digital signature, sends the first digital signature and the to-be-downloaded flashing data package to the first electronic device, verifies the first digital signature, and allows the to-be-downloaded flashing data package to be downloaded only after the verification is passed.
The first electronic device verifies the first digital signature, and allows the target application program to download the flashing data packet to be downloaded after the verification is passed, the first digital signature is obtained by encrypting a hash value of the flashing data packet to be downloaded, the hash value is used for verifying whether data in the flashing data packet to be downloaded is tampered, the flashing data packet to be downloaded is downloaded after the verification is passed, and the fact that the downloaded data is accurate is facilitated. The command packet comprises a plurality of downloading command sequences, the target data packet comprises system data after the flash, and the flash operation can be completed by operating the command sequences in the command packet and calling the system data in the target data packet.
It can be seen that, in this example, the verification of the first digital signature is mainly used to determine whether data in a to-be-downloaded flashing data packet sent to the second electronic device by the server and then sent to the first electronic device by the second electronic device is tampered, whether the data is safe and reliable, and the verification can prove that the data in the to-be-downloaded flashing data packet is accurate, has not been tampered, is safe and reliable, and at this time, the first electronic device determines that the to-be-downloaded flashing data packet is a data packet that needs to be downloaded in the flashing process.
In one possible example, the verifying the first digital signature includes: decrypting the first digital signature to obtain a first hash table; encrypting the flashing data packet to be downloaded to obtain a second hash table; and when the first hash table and the second hash table are detected to be matched, determining that the check is passed.
The first electronic device decrypts the first digital signature to obtain a first hash table in the process of verifying the first digital signature, the hash algorithm and the asymmetric encryption and decryption algorithm are preset, the first electronic device, the second electronic device and the server are known, at this time, the first electronic device calculates a hash value of a to-be-downloaded flash data package by using the known hash algorithm to obtain a second hash table, and if the first hash table is matched with the second hash table, it is indicated that data in the to-be-downloaded flash data package is not tampered, the method is safe and reliable, the same data can be obtained only, and the hash algorithm is irreversible and can be effectively used for data verification.
Therefore, in this example, the data in the flashing data packet to be downloaded can be verified through the first digital signature, and after the data in the flashing data packet to be downloaded is verified to be tampered, the data is downloaded after the verification is passed, which is beneficial to ensuring the security and reliability of data downloading.
Referring to fig. 3, fig. 3 is a schematic flowchart of another flashing processing method provided in the embodiment of the present application, and the flashing processing method is applied to a second electronic device. As shown in the figure, the brushing processing method comprises the following steps:
s301, after receiving first parameter information sent by a first electronic device, a second electronic device obtains second parameter information, wherein the second parameter information includes hardware feature information and account information of the second electronic device.
The second electronic device is an electronic device that is authenticated with the server in advance and successfully authenticated, for example, the authentication method may be that the second electronic device sends device information to the server, the server performs a digital signature on the device information after receiving the device information sent by the second electronic device, and sends the signature to the second electronic device, and the second electronic device determines whether the authentication is passed according to the digital signature.
S302, the second electronic device sends the first parameter information and the second parameter information to a server.
And S303, the second electronic equipment receives the download authorization result and the second digital signature which are sent by the server.
And S304, the second electronic device verifies the second digital signature, and after the second digital signature passes the verification, the second electronic device sends the second digital signature to the first electronic device.
It can be seen that, in the embodiment of the present application, after receiving a request for flashing transmitted by a first electronic device, a second electronic device first obtains second parameter information, where the second parameter information includes hardware feature information and account information of the second electronic device, then transmits first parameter information and second parameter information in the request for flashing to a server, then receives a download authorization result and a second digital signature transmitted by the server, and finally verifies the second digital signature, and after the verification is passed, transmits a request for flashing response to the first electronic device, where the request for flashing response carries the second digital signature, and the second electronic device may serve as an information transfer station and may also verify the second digital signature transmitted by the server through a communication connection between the first electronic device and the server established by the second electronic device, the method is favorable for ensuring the safety and reliability in the data transmission process.
Referring to fig. 4, fig. 4 is a schematic flowchart of another flashing processing method provided in the embodiment of the present application, and the method is applied to a server, and the server is installed with a flashing tool. As shown in the figure, the brushing processing method comprises the following steps:
s401, after receiving first parameter information and second parameter information sent by second electronic equipment, a server judges whether the first electronic equipment has the power of flashing according to the first parameter information and the second parameter information.
And S402, if yes, the server generates a second digital signature according to the first random number in the first parameter information through the flashing tool.
And S403, the server controls the flashing tool to send the downloading authorization result and the second digital signature to the second electronic device, and the second electronic device sends the downloading authorization result and the second digital signature to the first electronic device.
It can be seen that, in the embodiment of the present application, a server first obtains second parameter information after receiving a flashing request sent by a first electronic device, where the second parameter information includes hardware feature information and account information of the second electronic device, and then sends first parameter information and second parameter information in the flashing request to the server, then receives a download authorization result and a second digital signature sent by the server, and finally verifies the second digital signature, and sends a flashing response request to the first electronic device after the verification is passed, where the flashing response request carries the second digital signature. The server can determine whether the first electronic device has the power-on-reset authority according to the first parameter information and the second parameter information, and can verify the first electronic device in a second digital signature mode, so that the security of the server for resetting the first electronic device is improved.
In one possible example, the determining whether the first electronic device has the flashing authority according to the first parameter information and the second parameter information includes: judging whether the account associated with the second electronic equipment has a downloading authority to a version system corresponding to the second version information or not according to the second parameter information; if yes, determining whether the system version of the first electronic equipment can be updated from the first version to the second version according to the first version information; and if so, determining that the first electronic equipment has the downloading authority.
When the first electronic device realizes the flashing operation through the second electronic device, the user account needs to be logged in through the second electronic device, whether the user account associated with the second electronic device has the downloading authority of the system version indicated by the second version information can be judged according to the second parameter information, and then whether the first electronic device can be upgraded from the first version to the second version can be determined according to the first version information and the second version information included in the first parameter information, and the flashing operation of the first electronic device can be authorized under the condition that the conditions are met.
As can be seen, in this example, after acquiring the first parameter information and the second parameter information sent by the second electronic device, the server identifies identities of the first electronic device and the second electronic device, so that it can be determined whether to authorize the flashing and downloading operation of the first electronic device at this time, and forward an authorization result through the second electronic device.
In one possible example, the determining whether the first electronic device has the flashing authority according to the first parameter information and the second parameter information includes: determining whether the second electronic equipment has the history of downloading according to the second parameter information; if not, determining whether a downloading authority is available to a supplier of the first electronic equipment or not according to the first parameter information; and if so, determining that the first electronic equipment has the downloading authority.
And if not, determining the supplier of the first electronic equipment according to the first parameter information, thereby determining whether the server has the flashing authority for the electronic equipment produced by the supplier.
Therefore, in this example, in order to avoid illegal flashing, in the flashing process, the provider of the first electronic device is determined, so as to further determine whether the server has the flashing authority for the electronic device produced by the provider, and if so, the flashing operation is allowed, which is beneficial to improving the safety performance of the flashing process.
Consistent with the embodiments shown in fig. 2, fig. 3, and fig. 4, please refer to fig. 5, fig. 5 is a schematic structural diagram of a first electronic device 500 provided in the embodiments of the present application, where the first electronic device 500 runs one or more application programs and an operating system, as shown in the figure, the first electronic device 500 includes a processor 510, a memory 520, a communication interface 530, and one or more programs 521, where the one or more programs 521 are stored in the memory 520 and configured to be executed by the processor 510, and the one or more programs 521 include instructions for performing the following steps;
acquiring first parameter information, wherein the first parameter information comprises an equipment identifier of the first electronic equipment, first version information, second version information and a first random number, the first version information is used for indicating a system version of the first electronic equipment before the first electronic equipment is restarted, and the second version information is used for indicating the system version of the first electronic equipment after the first electronic equipment is restarted;
initiating a flashing request to the second electronic equipment, wherein the flashing request carries the first parameter information;
receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number;
and calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and finishing the flashing operation according to the to-be-downloaded booknote data packet.
It can be seen that, in this embodiment of the present application, a first electronic device first obtains first parameter information, where the first parameter information includes a device identifier of the first electronic device, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic device before being flashed, the second version information is used to indicate a system version of the first electronic device after being flashed, then, a flashing request is initiated to a second electronic device, the flashing request carries the first parameter information, then, a flashing response request sent by the second electronic device is received, a second digital signature in the flashing response request is obtained and verified, the second digital signature is generated after a server encrypts the first random number, and finally, a target application program is called to download a flashing data packet to be downloaded after the verification is passed, and the machine refreshing operation is completed according to the book note data packet to be downloaded, and the safety of the machine refreshing can be ensured because the data transmission between the first electronic equipment and the server is authenticated and authorized.
In one possible example, before the obtaining of the first parameter information, the instructions in the program are specifically configured to perform the following operations: when the target application program is used for analog downloading, acquiring a to-be-downloaded flashing data packet sent by second electronic equipment and a first digital signature of the to-be-downloaded flashing data packet, wherein the first digital signature is obtained by a first hash table generated by the second electronic equipment according to the to-be-downloaded flashing data packet, the to-be-downloaded flashing data packet comprises a command packet and a target data packet, and the target data packet comprises system data after flashing; verifying the first digital signature; and when the verification is passed, determining to download the flashing data packet to be downloaded.
In one possible example, in the checking of the first digital signature, the instructions in the program are specifically configured to: decrypting the first digital signature to obtain a first hash table; encrypting the flashing data packet to be downloaded to obtain a second hash table; and when the first hash table and the second hash table are detected to be matched, determining that the check is passed.
Consistent with the embodiments shown in fig. 2, fig. 3, and fig. 4, please refer to fig. 6, and fig. 6 is a schematic structural diagram of a server 600 provided in the embodiments of the present application, where the server 600 runs one or more application programs and an operating system, and as shown in the figure, the server 600 includes a processor 610, a memory 620, a communication interface 630, and one or more programs 621, where the one or more programs 621 are stored in the memory 620 and configured to be executed by the processor 610, and the one or more programs 621 include instructions for performing the following steps;
after first parameter information and second parameter information sent by second electronic equipment are received, judging whether the first electronic equipment has the power-on-demand permission or not according to the first parameter information and the second parameter information;
if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information;
and controlling the flashing tool to send a downloading authorization result and a second digital signature to the second electronic equipment, and sending the downloading authorization result and the second digital signature to the first electronic equipment by the second electronic equipment.
It can be seen that, in the embodiment of the present application, a server first obtains second parameter information after receiving a flashing request sent by a first electronic device, where the second parameter information includes hardware feature information and account information of the second electronic device, and then sends first parameter information and second parameter information in the flashing request to the server, then receives a download authorization result and a second digital signature sent by the server, and finally verifies the second digital signature, and sends a flashing response request to the first electronic device after the verification is passed, where the flashing response request carries the second digital signature. The server can determine whether the first electronic device has the power-on-reset authority according to the first parameter information and the second parameter information, and can verify the first electronic device in a second digital signature mode, so that the security of the server for resetting the first electronic device is improved.
In one possible example, in the aspect of determining whether the first electronic device has the power-on-demand permission according to the first parameter information and the second parameter information, the instructions in the program are specifically configured to perform the following operations: judging whether the account associated with the second electronic equipment has a downloading authority to a version system corresponding to the second version information or not according to the second parameter information; if yes, determining whether the system version of the first electronic equipment can be updated from the first version to the second version according to the first version information; and if so, determining that the first electronic equipment has the downloading authority.
In a possible example, in the aspect of determining whether the first electronic device has the flashing authority according to the first parameter information and the second parameter information, the instructions in the program are specifically configured to perform the following operations: determining whether the second electronic equipment has the history of downloading according to the second parameter information; if not, determining whether a downloading authority is available to a supplier of the first electronic equipment or not according to the first parameter information; and if so, determining that the first electronic equipment has the downloading authority.
The above description has introduced the solution of the embodiment of the present application mainly from the perspective of the method-side implementation process. It is understood that the first electronic device and the server include corresponding hardware structures and/or software modules for performing the respective functions in order to realize the functions. Those of skill in the art would readily appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as hardware or combinations of hardware and computer software. Whether a function is performed as hardware or computer software drives hardware depends upon the particular application and design constraints imposed on the solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present application.
In the embodiment of the present application, the first electronic device may be divided into the functional units according to the above method example, for example, each functional unit may be divided corresponding to each function, or two or more functions may be integrated into one control unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit. It should be noted that the division of the unit in the embodiment of the present application is schematic, and is only a logic function division, and there may be another division manner in actual implementation.
Fig. 7 is a block diagram of functional units of an apparatus 700 according to an embodiment of the present application. The brushing processing device 700 is applied to a first electronic device, and the brushing processing device 700 includes a processing unit 701 and a communication unit 702, wherein:
the processing unit 701 is configured to obtain first parameter information through the communication unit 702, where the first parameter information includes an apparatus identifier of the first electronic apparatus, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic apparatus before the first electronic apparatus is booted, and the second version information is used to indicate a system version of the first electronic apparatus after the first electronic apparatus is booted; the system comprises a first electronic device and a second electronic device, wherein the first electronic device is used for sending a first parameter information to the first electronic device; the second electronic equipment is used for receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number; and the system is used for calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and completing the flashing operation according to the to-be-downloaded booknote data packet.
It can be seen that, in this embodiment of the present application, a first electronic device first obtains first parameter information, where the first parameter information includes a device identifier of the first electronic device, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic device before being flashed, the second version information is used to indicate a system version of the first electronic device after being flashed, then, a flashing request is initiated to a second electronic device, the flashing request carries the first parameter information, then, a flashing response request sent by the second electronic device is received, a second digital signature in the flashing response request is obtained and verified, the second digital signature is generated after a server encrypts the first random number, and finally, a target application program is called to download a flashing data packet to be downloaded after the verification is passed, and the machine refreshing operation is completed according to the book note data packet to be downloaded, and the safety of the machine refreshing can be ensured because the data transmission between the first electronic equipment and the server is authenticated and authorized.
In a possible example, before the obtaining of the first parameter information, the processing unit 701 is specifically configured to: when the target application program is used for analog downloading, acquiring a to-be-downloaded flashing data packet sent by second electronic equipment and a first digital signature of the to-be-downloaded flashing data packet, wherein the first digital signature is obtained by a first hash table generated by the second electronic equipment according to the to-be-downloaded flashing data packet, the to-be-downloaded flashing data packet comprises a command packet and a target data packet, and the target data packet comprises system data after flashing; and for verifying said first digital signature; and the updating module is used for determining to download the flashing data packet to be downloaded when the verification is passed.
In one possible example, in the correcting the first digital signature, the processing unit 701 is specifically configured to: decrypting the first digital signature to obtain a first hash table; the second hash table is obtained after the to-be-downloaded flashing data packet is encrypted; and the verification module is used for determining that the verification is passed when the first hash table and the second hash table are detected to be matched.
The first electronic device may further include a storage unit 703, the processing unit 701 and the communication unit 702 may be a controller or a processor, and the storage unit 703 may be a memory.
In the embodiment of the present application, the server may be divided into the functional units according to the above method example, for example, each functional unit may be divided corresponding to each function, or two or more functions may be integrated into one control unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit. It should be noted that the division of the unit in the embodiment of the present application is schematic, and is only a logic function division, and there may be another division manner in actual implementation.
Fig. 8 is a block diagram of functional units of an apparatus 800 according to an embodiment of the present application. The flash processing device 800 is applied to a server, and the flash processing device 800 includes a processing unit 801 and a communication unit 802, wherein:
the processing unit 801 is configured to, after receiving first parameter information and second parameter information sent by a second electronic device through the communication unit 802, determine whether the first electronic device has a power-on-demand right according to the first parameter information and the second parameter information; if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information; and the system is used for controlling the flashing tool to send the downloading authorization result and the second digital signature to the second electronic equipment, and the second electronic equipment sends the downloading authorization result and the second digital signature to the first electronic equipment.
It can be seen that, in the embodiment of the present application, a server first obtains second parameter information after receiving a flashing request sent by a first electronic device, where the second parameter information includes hardware feature information and account information of the second electronic device, and then sends first parameter information and second parameter information in the flashing request to the server, then receives a download authorization result and a second digital signature sent by the server, and finally verifies the second digital signature, and sends a flashing response request to the first electronic device after the verification is passed, where the flashing response request carries the second digital signature. The server can determine whether the first electronic device has the power-on-reset authority according to the first parameter information and the second parameter information, and can verify the first electronic device in a second digital signature mode, so that the security of the server for resetting the first electronic device is improved.
In a possible example, in the aspect of determining whether the first electronic device has the flashing authority according to the first parameter information and the second parameter information, the processing unit 801 is specifically configured to: judging whether the account associated with the second electronic equipment has a downloading authority to a version system corresponding to the second version information or not according to the second parameter information; if so, determining whether the system version of the first electronic device can be updated from the first version to the second version according to the first version information; and if so, determining that the first electronic equipment has the downloading authority.
In a possible example, in the aspect of determining whether the first electronic device has the flashing authority according to the first parameter information and the second parameter information, the processing unit 801 is specifically configured to: determining whether the second electronic equipment has the history of downloading according to the second parameter information; if not, determining whether the first electronic equipment has a downloading authority or not according to the first parameter information; and if so, determining that the first electronic equipment has the downloading authority.
The electronic device may further include a storage unit 803, the processing unit 801 and the communication unit 802 may be a controller or a processor, and the storage unit 803 may be a memory.
Embodiments of the present application also provide a computer storage medium, where the computer storage medium stores a computer program for electronic data exchange, the computer program enabling a computer to execute part or all of the steps of any one of the methods as described in the above method embodiments, and the computer includes a first electronic device and a second electronic device.
Embodiments of the present application also provide a computer program product comprising a non-transitory computer readable storage medium storing a computer program operable to cause a computer to perform some or all of the steps of any of the methods as described in the above method embodiments. The computer program product may be a software installation package, the computer comprising a first electronic device and a second electronic device.
It should be noted that, for simplicity of description, the above-mentioned method embodiments are described as a series of acts or combination of acts, but those skilled in the art will recognize that the present application is not limited by the order of acts described, as some steps may occur in other orders or concurrently depending on the application. Further, those skilled in the art should also appreciate that the embodiments described in the specification are preferred embodiments and that the acts and modules referred to are not necessarily required in this application.
In the foregoing embodiments, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
In the embodiments provided in the present application, it should be understood that the disclosed apparatus may be implemented in other manners. For example, the above-described embodiments of the apparatus are merely illustrative, and for example, the above-described division of the units is only one type of division of logical functions, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of some interfaces, devices or units, and may be an electric or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, each functional unit in the embodiments of the present application may be integrated into one control unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit may be stored in a computer readable memory if it is implemented in the form of a software functional unit and sold or used as a stand-alone product. Based on such understanding, the technical solution of the present application may be substantially implemented or a part of or all or part of the technical solution contributing to the prior art may be embodied in the form of a software product stored in a memory, and including several instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the above-mentioned method of the embodiments of the present application. And the aforementioned memory comprises: a U-disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic or optical disk, and other various media capable of storing program codes.
Those skilled in the art will appreciate that all or part of the steps in the methods of the above embodiments may be implemented by associated hardware instructed by a program, which may be stored in a computer-readable memory, which may include: flash Memory disks, Read-Only memories (ROMs), Random Access Memories (RAMs), magnetic or optical disks, and the like.
The foregoing detailed description of the embodiments of the present application has been presented to illustrate the principles and implementations of the present application, and the above description of the embodiments is only provided to help understand the method and the core concept of the present application; meanwhile, for a person skilled in the art, according to the idea of the present application, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present application.
Claims (20)
- A method for processing a flash, applied to a first electronic device running a target application, includes:acquiring first parameter information, wherein the first parameter information comprises an equipment identifier of the first electronic equipment, first version information, second version information and a first random number, the first version information is used for indicating a system version of the first electronic equipment before the first electronic equipment is restarted, and the second version information is used for indicating the system version of the first electronic equipment after the first electronic equipment is restarted;initiating a flashing request to the second electronic equipment, wherein the flashing request carries the first parameter information;receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number;and calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and finishing the flashing operation according to the to-be-downloaded booknote data packet.
- The method of claim 1, wherein before the obtaining the first parameter information, the method comprises:when the target application program is used for analog downloading, acquiring a to-be-downloaded flashing data packet sent by second electronic equipment and a first digital signature of the to-be-downloaded flashing data packet, wherein the first digital signature is obtained by a first hash table generated by the second electronic equipment according to the to-be-downloaded flashing data packet, the to-be-downloaded flashing data packet comprises a command packet and a target data packet, and the target data packet comprises system data after flashing;verifying the first digital signature;and when the verification is passed, determining to download the flashing data packet to be downloaded.
- The method of claim 2, wherein said verifying said first digital signature comprises:decrypting the first digital signature to obtain a first hash table;encrypting the flashing data packet to be downloaded to obtain a second hash table;and when the first hash table and the second hash table are detected to be matched, determining that the check is passed.
- A method for processing a flash, applied to a second electronic device, includes:after a flashing request sent by first electronic equipment is received, second parameter information is obtained, wherein the second parameter information comprises hardware characteristic information and account information of the second electronic equipment;sending the first parameter information and the second parameter information in the flashing request to a server;receiving a download authorization result and a second digital signature sent by the server;and verifying the second digital signature, and after the second digital signature passes the verification, sending a flashing response request to the first electronic device, wherein the flashing response request carries the second digital signature.
- A machine-refreshing processing method is applied to a server, the server is provided with a machine-refreshing tool, and the method comprises the following steps:after first parameter information and second parameter information sent by second electronic equipment are received, judging whether the first electronic equipment has the power-on-demand permission or not according to the first parameter information and the second parameter information;if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information;and controlling the flashing tool to send a downloading authorization result and a second digital signature to the second electronic equipment, and sending the downloading authorization result and the second digital signature to the first electronic equipment by the second electronic equipment.
- The method according to claim 5, wherein the determining whether the first electronic device has the power-on-demand right according to the first parameter information and the second parameter information comprises:judging whether the account associated with the second electronic equipment has a downloading authority to a version system corresponding to the second version information or not according to the second parameter information;if yes, determining whether the system version of the first electronic equipment can be updated from the first version to the second version according to the first version information;and if so, determining that the first electronic equipment has the downloading authority.
- The method according to claim 5, wherein the determining whether the first electronic device has the power-on-demand right according to the first parameter information and the second parameter information comprises:determining whether the second electronic equipment has the history of downloading according to the second parameter information;if not, determining whether a downloading authority is available to a supplier of the first electronic equipment or not according to the first parameter information;and if so, determining that the first electronic equipment has the downloading authority.
- A system for processing a machine-flushing, which is characterized in that the system for processing the machine-flushing comprises a first electronic device, a second electronic device and a server, wherein the first electronic device sends a machine-flushing request carrying first parameter information to the second electronic device after acquiring the first parameter information, the second electronic device acquires second parameter information after receiving the machine-flushing request and sends the first parameter information and the second parameter information in the machine-flushing request to the server, the server determines whether the first electronic device has the authority of machine-flushing according to the first parameter information and the second parameter information, if yes, an authorization result and a second digital signature are sent to the second electronic device, and the second electronic device verifies the second digital signature and then sends the second digital signature to the first electronic device, and the first electronic equipment verifies the second digital signature and downloads the flashing data packet to be downloaded after the verification is passed so as to complete flashing operation according to the flashing data packet to be downloaded.
- A brusher processing apparatus, comprising a processing unit and a communication unit, wherein,the processing unit is configured to obtain first parameter information through the communication unit, where the first parameter information includes an apparatus identifier of the first electronic apparatus, first version information, second version information, and a first random number, the first version information is used to indicate a system version of the first electronic apparatus before the first electronic apparatus is booted, and the second version information is used to indicate a system version of the first electronic apparatus after the first electronic apparatus is booted; the system comprises a first electronic device and a second electronic device, wherein the first electronic device is used for sending a first parameter information to the first electronic device; the second electronic equipment is used for receiving a flashing response request sent by the second electronic equipment, acquiring a second digital signature in the flashing response request and verifying the second digital signature, wherein the second digital signature is generated after the server encrypts the first random number; and the system is used for calling the target application program to download the to-be-downloaded flashing data packet after the verification is passed, and completing the flashing operation according to the to-be-downloaded booknote data packet.
- The method of claim 9, wherein prior to obtaining the first parameter information, the processing unit is specifically configured to: when the target application program is used for analog downloading, acquiring a to-be-downloaded flashing data packet sent by second electronic equipment and a first digital signature of the to-be-downloaded flashing data packet, wherein the first digital signature is obtained by a first hash table generated by the second electronic equipment according to the to-be-downloaded flashing data packet, the to-be-downloaded flashing data packet comprises a command packet and a target data packet, and the target data packet comprises system data after flashing; and for verifying said first digital signature; and the updating module is used for determining to download the flashing data packet to be downloaded when the verification is passed.
- The method according to claim 9, wherein, in said verifying the first digital signature, the processing unit is specifically configured to: decrypting the first digital signature to obtain a first hash table; the second hash table is obtained after the to-be-downloaded flashing data packet is encrypted; and the verification module is used for determining that the verification is passed when the first hash table and the second hash table are detected to be matched.
- A brusher processing apparatus, comprising a processing unit and a communication unit, wherein,the processing unit is used for acquiring second parameter information after receiving a flashing request sent by first electronic equipment through the communication unit, wherein the second parameter information comprises hardware characteristic information and account information of the second electronic equipment; the server is used for sending the first parameter information and the second parameter information in the flashing request to the server; and for receiving a download authorization result and a second digital signature sent by the server; and the second electronic device is used for verifying the second digital signature and sending a flashing response request to the first electronic device after the second digital signature passes the verification, wherein the flashing response request carries the second digital signature.
- A brusher processing apparatus, comprising a processing unit and a communication unit, wherein,the processing unit is used for judging whether the first electronic equipment has the flashing authority or not according to the first parameter information and the second parameter information after the first parameter information and the second parameter information sent by the second electronic equipment are received through the communication unit; if yes, generating a second digital signature by the flashing tool according to the first random number in the first parameter information; and the system is used for controlling the flashing tool to send the downloading authorization result and the second digital signature to the second electronic equipment, and the second electronic equipment sends the downloading authorization result and the second digital signature to the first electronic equipment.
- The method according to claim 13, wherein in said determining whether the first electronic device has the power to flush according to the first parameter information and the second parameter information, the processing unit is specifically configured to: judging whether the account associated with the second electronic equipment has a downloading authority to a version system corresponding to the second version information or not according to the second parameter information; if so, determining whether the system version of the first electronic device can be updated from the first version to the second version according to the first version information; and if so, determining that the first electronic equipment has the downloading authority.
- The method according to claim 13, wherein in said determining whether the first electronic device has the power to flush according to the first parameter information and the second parameter information, the processing unit is specifically configured to: determining whether the second electronic equipment has the history of downloading according to the second parameter information; if not, determining whether the first electronic equipment has a downloading authority or not according to the first parameter information; and if so, determining that the first electronic equipment has the downloading authority.
- An electronic device comprising a processor, a memory, a communication interface, and one or more programs stored in the memory and configured to be executed by the processor, the programs comprising instructions for performing the steps in the method of any of claims 1-3.
- An electronic device comprising a processor, a memory, a communication interface, and one or more programs stored in the memory and configured to be executed by the processor, the programs comprising instructions for performing the steps in the method of claim 4.
- A server, comprising a processor, memory, a communication interface, and one or more programs stored in the memory and configured to be executed by the processor, the programs including instructions for performing the steps in the method of any of claims 5-7.
- A computer-readable storage medium, characterized in that a computer program for electronic data exchange is stored, wherein the computer program causes a computer to perform the method according to any one of claims 1-3.
- A computer-readable storage medium, characterized in that a computer program for electronic data exchange is stored, wherein the computer program causes a computer to perform the method according to any of the claims 5-7.
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| PCT/CN2019/124413 WO2021114113A1 (en) | 2019-12-10 | 2019-12-10 | Flash processing method and relevant apparatus |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114391134A true CN114391134A (en) | 2022-04-22 |
Family
ID=76329191
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201980100206.2A Pending CN114391134A (en) | 2019-12-10 | 2019-12-10 | Flashing processing method and related device |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN114391134A (en) |
| WO (1) | WO2021114113A1 (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114662082B (en) * | 2022-02-25 | 2023-06-06 | 荣耀终端有限公司 | Access control method of electronic device, readable medium and electronic device |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105183499A (en) * | 2015-08-04 | 2015-12-23 | 上海青橙实业有限公司 | ROM flashing method, mobile terminal and terminal system |
| WO2016183721A1 (en) * | 2015-05-15 | 2016-11-24 | 华为技术有限公司 | Upgrade method, apparatus and device for terminal device |
| CN106775834A (en) * | 2016-11-29 | 2017-05-31 | 北京小米移动软件有限公司 | Brush machine verification method and device |
| CN106897606A (en) * | 2015-12-18 | 2017-06-27 | 东莞酷派软件技术有限公司 | A kind of brush machine means of defence and device |
| CN109787774A (en) * | 2019-01-15 | 2019-05-21 | 浙江吉利汽车研究院有限公司 | Upgrading method for down loading, device, server and terminal based on digital signature verification |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103530534B (en) * | 2013-09-23 | 2016-06-29 | 北京理工大学 | A kind of Android program ROOT authorization method based on signature verification |
| CN105072616B (en) * | 2015-08-31 | 2019-10-11 | 宇龙计算机通信科技(深圳)有限公司 | The verification method of brush machine ROM and the verifying device of brush machine ROM |
| US10871955B2 (en) * | 2018-02-08 | 2020-12-22 | Insyde Software Corp. | System and method for providing firmware data updates |
-
2019
- 2019-12-10 WO PCT/CN2019/124413 patent/WO2021114113A1/en active Application Filing
- 2019-12-10 CN CN201980100206.2A patent/CN114391134A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2016183721A1 (en) * | 2015-05-15 | 2016-11-24 | 华为技术有限公司 | Upgrade method, apparatus and device for terminal device |
| CN105183499A (en) * | 2015-08-04 | 2015-12-23 | 上海青橙实业有限公司 | ROM flashing method, mobile terminal and terminal system |
| CN106897606A (en) * | 2015-12-18 | 2017-06-27 | 东莞酷派软件技术有限公司 | A kind of brush machine means of defence and device |
| CN106775834A (en) * | 2016-11-29 | 2017-05-31 | 北京小米移动软件有限公司 | Brush machine verification method and device |
| CN109787774A (en) * | 2019-01-15 | 2019-05-21 | 浙江吉利汽车研究院有限公司 | Upgrading method for down loading, device, server and terminal based on digital signature verification |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2021114113A1 (en) | 2021-06-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109472166B (en) | Electronic signature method, device, equipment and medium | |
| CN109600223B (en) | Verification method, activation method, device, equipment and storage medium | |
| EP3416082A1 (en) | Method and apparatus for signing and verifying application installation package, and storage medium | |
| CN107483213B (en) | Security authentication method, related device and system | |
| US12041169B2 (en) | Electronic device and method, performed by electronic device, of transmitting control command to target device | |
| EP1712992A1 (en) | Updating of data instructions | |
| CN108200078B (en) | Downloading and installing method of signature authentication tool and terminal equipment | |
| CN107451813B (en) | Payment method, payment device and payment server | |
| JP2004538584A (en) | Information processing method and system in electronic device, electronic device, and processing block | |
| CN104462965A (en) | Method for verifying integrity of application program and network device | |
| CN107566413B (en) | Smart card security authentication method and system based on data short message technology | |
| CN107733652B (en) | Unlocking method and system for shared vehicle and vehicle lock | |
| US11297176B2 (en) | Remotely controlling devices using short message service | |
| CN102016866A (en) | System and method of authorizing execution of software code in a device based on entitlements granted to a carrier | |
| US20210152359A1 (en) | Authentication device based on biometric information, control server and application server, and operation method thereof | |
| CN110795737A (en) | Method and terminal equipment for upgrading service application range of electronic identity card | |
| WO2018166163A1 (en) | Pos terminal control method, pos terminal, server and storage medium | |
| US20130073840A1 (en) | Apparatus and method for generating and managing an encryption key | |
| CN111177709A (en) | Execution method and device of terminal trusted component and computer equipment | |
| CN115129332A (en) | Firmware burning method, computer equipment and readable storage medium | |
| CN111444496A (en) | Application control method, device, equipment and storage medium | |
| CN104796262A (en) | Data encryption method and terminal system | |
| KR20160058375A (en) | A Protected Communication with an Embedded Secure Element | |
| KR101566141B1 (en) | User Terminal to Detect the Tampering of the Applications Using Signature Information and Method for Tamper Detection Using the Same | |
| KR20210158813A (en) | Remote resetting to factory default settings, a method and a device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |