CN117294463A - BIOS information safety protection checking system - Google Patents
BIOS information safety protection checking system Download PDFInfo
- Publication number
- CN117294463A CN117294463A CN202310964773.0A CN202310964773A CN117294463A CN 117294463 A CN117294463 A CN 117294463A CN 202310964773 A CN202310964773 A CN 202310964773A CN 117294463 A CN117294463 A CN 117294463A
- Authority
- CN
- China
- Prior art keywords
- bios
- module
- unit
- information
- analysis
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004458 analytical method Methods 0.000 claims abstract description 43
- 238000007689 inspection Methods 0.000 claims abstract description 30
- 238000005070 sampling Methods 0.000 claims abstract description 26
- 238000000034 method Methods 0.000 claims description 21
- 230000008569 process Effects 0.000 claims description 20
- 230000005055 memory storage Effects 0.000 claims description 9
- 230000006870 function Effects 0.000 claims description 8
- 238000007639 printing Methods 0.000 claims description 8
- 238000004891 communication Methods 0.000 claims description 7
- 241000700605 Viruses Species 0.000 claims description 6
- 238000004364 calculation method Methods 0.000 claims description 3
- 238000001514 detection method Methods 0.000 claims description 2
- 238000012545 processing Methods 0.000 claims description 2
- 230000008439 repair process Effects 0.000 claims description 2
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000000903 blocking effect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000011022 operating instruction Methods 0.000 description 1
- 230000008092 positive effect Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Landscapes
- Stored Programmes (AREA)
Abstract
The invention relates to the technical field of information safety, in particular to a BIOS information safety protection checking system, which comprises a BIOS safety checking module, a network remote control module, a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit, a BIOS module analysis unit and a CMOS battery module; the BIOS safety inspection module is connected with the network remote control module, and is respectively butted with the BIOS setting sampling unit, the BIOS storage unit, the BIOS safety reporting unit and the BIOS module analysis unit.
Description
Technical Field
The invention relates to the technical field of information security, in particular to a BIOS information security protection checking system.
Background
The technology of computer networks is continuously developed, and various fields nowadays begin to adopt corresponding technologies and devices, which have important positive effects on themselves. However, in the development process, the security problem of the devices such as the computer is remarkable, especially the information in the input-output system is lost or destroyed, and the corresponding personnel or enterprises are negatively affected. The BIOS is a program that resides in read-only memory and does not disappear due to the power being turned off. The BIOS may define a set of routine operating instructions that cooperate with the hardware to support data transfer between individual components of the system (e.g., memory, floppy/hard drive, and display, etc.). The new generation of motherboard uses flash to eliminate the programmable ROM to facilitate the later revising and debugging.
The hidden danger can not be timely solved in the existing BIOS information security inspection process, BIOS information leakage is easy to cause, trojan and viruses can not enter the hidden danger easily, stored information can not be timely backed up, loss of data is easy to cause, the whole system also has no remote connection function, problems can not be timely fed back the problems at the first time, the traditional information security risk based on software exists in a hardware chip, the hidden danger is hidden, difficult to detect and difficult to clear, the practicability is low, and the BIOS information security protection inspection system is needed to solve the problem.
Disclosure of Invention
The present invention is directed to a BIOS information security protection inspection system, so as to solve the above-mentioned problems in the background art.
In order to achieve the above purpose, the present invention provides the following technical solutions: a BIOS information safety protection checking system comprises a BIOS safety checking module, a network remote control module, a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit, a BIOS module analysis unit and a CMOS battery module;
the BIOS safety inspection module is connected with the network remote control module, the BIOS safety inspection module is respectively butted with a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit and a BIOS module analysis unit, the BIOS setting sampling unit is connected with the BIOS storage unit, the BIOS storage unit is connected with the BIOS safety reporting unit, the BIOS safety reporting unit is connected with the BIOS module analysis unit, the BIOS module analysis unit is electrically connected with the CMOS battery module, and the BIOS safety inspection module is electrically connected with the CMOS battery module.
As a preferable technical scheme of the invention, the BIOS setting and sampling unit is connected by a BIOS setting module and a BIOS sampling module, and various settings such as hard disk priority, startup password and the like are carried out on hardware equipment in the startup process of a computer in the BIOS setting module; if the computer cannot be started normally, the BIOS interface is accessed to check whether each setting is correct, the BIOS sampling module is responsible for collecting the corresponding file information of the BIOS of the sampled host, and meanwhile, a security check report is generated, and the time, place and related personnel in the collecting process are recorded.
As a preferable technical scheme of the invention, the BIOS storage unit is connected by a memory storage module and a communication storage module, and the memory storage module and the communication storage module can simultaneously store information acquired by sampling and BIOS setting related information to a local host or transmit the information to a remote special storage server for storage through the Internet.
As a preferred technical scheme of the invention, the BIOS safety reporting unit consists of a result analysis module and a BIOS safety management module, wherein the result analysis module analyzes and processes information acquired by sampling and BIOS setting related information, if a patch is timely repaired, an inspection system needs to decompress in a heuristic calculation mode when analyzing, the integrity of the information is ensured, dangerous information such as viruses, trojans and the like is extracted from the decompressed information and then is stored, and firstly, samples of the dangerous information are extracted and are recorded into a memory storage module, and the problems are blocked and solved in time next time.
As a preferable technical scheme of the invention, the BIOS module analysis unit consists of a result display module and a BIOS sample module in the BIOS analysis management module, wherein the result display module mainly has the functions of realizing interface display of the security check analysis result, printing and storing the analysis result, the module is mainly realized through interface design and printing, and the BIOS sample module carries out security analysis and generation analysis on the appointed host BIOS sample and presents the security analysis and the generation analysis in a printing mode and a data mode.
As the preferable technical scheme of the invention, the BIOS safety inspection module is connected with the hardware equipment inspection module, the equipment inspection module scans two parts of components by BIOS codes and BIOS safety hazards, and the hardware equipment inspection module can inspect hardware equipment in BIOS to see whether equipment damage or poor connection occurs and process correspondingly.
As a preferable technical scheme of the invention, the BIOS coding scanning and the BIOS potential safety hazard scanning are connected with a cloud backup module, and the cloud backup module is electrically connected with the CMOS battery module.
As a preferred technical scheme of the invention, whether the potential safety hazard exists or not is determined in the BIOS potential safety hazard scanning process, if the potential safety hazard does not exist, the corresponding potential safety hazard is analyzed through the BIOS potential safety hazard repairing scheme, if the potential safety hazard does not exist, the BIOS is updated to achieve the repairing function, the BIOS solution repairing scheme is downloaded again according to the description steps, if the potential safety hazard does not exist, the corresponding patch code module is executed after the BIOS is automatically detected, and the safety information is correctly configured.
Compared with the prior art, the invention has the following beneficial effects:
(1) The invention relates to a BIOS information safety protection checking system, which is used for determining whether the safety hidden danger exists or not through the BIOS safety hidden danger scanning process, further executing a corresponding patch code module, and correctly configuring safety information can effectively reduce the safety hidden danger of the BIOS of a computer, prevent the BIOS of the computer from being implanted with viruses and Trojan programs, and further influence the safety of the information system of the computer.
(2) The invention relates to a BIOS information safety protection checking system, which is characterized in that the checking system is connected through a network remote control module, so that the whole BIOS checking system can acquire the BIOS information of a checked host through the network remote control module, remote control is realized, corresponding measures can be conveniently and effectively made, the whole safety protection checking system is backed up through a cloud backup module in the checking process, the loss of data is effectively prevented, and the practicability of the BIOS checking system is ensured.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a schematic diagram of a system for protecting and checking BIOS information security according to an embodiment of the invention;
FIG. 2 is a flowchart of a scanning process for a security risk of a BIOS information security protection inspection system according to an embodiment of the invention.
Detailed Description
The invention is further described below with reference to the accompanying drawings and detailed description:
referring to fig. 1-2, a BIOS information security protection inspection system according to an embodiment of the present invention includes a BIOS security inspection module, a network remote control module, a BIOS setting sampling unit, a BIOS storage unit, a BIOS security reporting unit, a BIOS module analysis unit, and a CMOS battery module;
the BIOS safety inspection module is connected with the network remote control module, the BIOS safety inspection module is respectively butted with a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit and a BIOS module analysis unit, the BIOS setting sampling unit is connected with the BIOS storage unit, the BIOS storage unit is connected with the BIOS safety reporting unit, the BIOS safety reporting unit is connected with the BIOS module analysis unit, the BIOS module analysis unit is electrically connected with the CMOS battery module, and the BIOS safety inspection module is electrically connected with the CMOS battery module.
In this embodiment, the BIOS setting and sampling unit is connected by two parts of a BIOS setting module and a BIOS sampling module, where in the BIOS setting module, various settings are performed on hardware devices, such as a hard disk priority, a boot password, and the like, in a computer boot process; if the computer cannot be started normally, the BIOS interface is accessed to check whether each setting is correct, the BIOS sampling module is responsible for collecting the corresponding file information of the BIOS of the sampled host, and meanwhile, a security check report is generated, and the time, place and related personnel in the collecting process are recorded.
In this embodiment, the BIOS storage unit is connected by two parts of a memory storage module and a communication storage module, where the memory storage module and the communication storage module can store the information collected by sampling and the information related to BIOS setting to a local host or transmit the information to a remote dedicated storage server for storage through Internet.
In this embodiment, the BIOS security reporting unit is composed of a result analysis module and a BIOS security management module, where the result analysis module analyzes and processes the information collected by sampling and the related information of BIOS setting, if a patch is timely repaired, the inspection system needs to decompress in a heuristic calculation mode when resolving, ensuring the integrity of the information, extracting dangerous information such as viruses and trojans from the decompressed information, and then storing again, and firstly, extracting samples of the dangerous information, and inputting the samples into the memory storage module, and then blocking and solving the problems in time when next occurs.
In this embodiment, the BIOS module analysis unit is composed of a result display module and a BIOS sample module in the BIOS analysis management module, where the main function of the result display module is to implement interface display of the security check analysis result, and print and store the analysis result, the module is implemented mainly by designing and printing an interface, and the BIOS sample module performs security analysis and generation analysis on the specified host BIOS sample, and presents the security analysis and the generation analysis in a printing manner and a data manner.
In this embodiment, the BIOS security inspection module is connected to the hardware device inspection module, where the device inspection module includes two components, i.e. BIOS code scanning and BIOS security hidden danger scanning, and the hardware device inspection module may inspect a hardware device in the BIOS to see whether a device is damaged or connected poorly, and perform corresponding processing.
In this embodiment, the BIOS code scan and the BIOS security risk scan are connected to a cloud backup module, and the cloud backup module is electrically connected to the CMOS battery module.
In this embodiment, whether a potential safety hazard exists is determined in the scanning process of the potential safety hazard of the BIOS, if no potential safety hazard exists, no repair is needed, if the potential safety hazard exists, the corresponding potential hazard is analyzed through the repairing scheme of the potential safety hazard of the BIOS, if the repairing is not performed, the repairing function is achieved through updating the BIOS, the repairing scheme of the BIOS is updated again according to the description steps, if the repairing is performed, the corresponding patch code module is executed after the automatic detection of the BIOS is performed, and the security information is configured correctly.
When the method is specifically applied, the checking system provided by the invention determines whether potential safety hazards exist in the BIOS potential safety hazard scanning process, if no potential safety hazards exist, the repairing is not needed, if the potential safety hazards exist, the corresponding potential hazards are analyzed through the BIOS potential safety hazard repairing scheme, if the repairing is not performed, the repairing function is achieved through updating the BIOS, the BIOS repairing scheme is downloaded again according to the description steps, if the repairing is performed, after the BIOS is automatically detected, the corresponding patch code module is further executed, the safety information is correctly configured, the potential safety hazards existing in the BIOS of the computer can be effectively reduced, the computer BIOS is prevented from being implanted with virus and Trojan programs, the safety of the computer information system is further influenced, the whole BIOS checking system is enabled to acquire the BIOS information of the checked host computer through the network remote control module, remote control is realized, the corresponding measures are conveniently and effectively made, the cloud backup module is used for backing up in the whole safety protection checking system checking process, and the practicability of the BIOS checking system is effectively prevented.
In the description of the present invention, it should be noted that, directions or positional relationships indicated by terms of "top", "bottom", "one side", "the other side", "front", "rear", "middle portion", "inner", "top", "bottom", etc., are directions or positional relationships based on the drawings, are merely for convenience of describing the present invention and simplifying the description, and do not indicate or imply that the apparatus or elements referred to must have a specific direction, be configured and operated in the specific direction, and thus should not be construed as limiting the present invention; the terms "first," "second," and "third" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance; furthermore, unless explicitly specified and limited otherwise, the terms "mounted," "connected," and "connected" are to be construed broadly, and may be either fixedly connected, detachably connected, or integrally connected, for example; can be mechanically or electrically connected; can be directly connected or indirectly connected through an intermediate medium, and can be communication between two elements. The specific meaning of the above terms in the present invention will be understood in specific cases by those of ordinary skill in the art.
Finally, it should be noted that: the foregoing description is only a preferred embodiment of the present invention, and the present invention is not limited to the above-described embodiment, but may be modified or substituted for some of the technical features described in the above-described embodiments by those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (8)
1. The BIOS information safety protection checking system is characterized by comprising a BIOS safety checking module, a network remote control module, a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit, a BIOS module analysis unit and a CMOS battery module;
the BIOS safety inspection module is connected with the network remote control module, the BIOS safety inspection module is respectively butted with a BIOS setting sampling unit, a BIOS storage unit, a BIOS safety reporting unit and a BIOS module analysis unit, the BIOS setting sampling unit is connected with the BIOS storage unit, the BIOS storage unit is connected with the BIOS safety reporting unit, the BIOS safety reporting unit is connected with the BIOS module analysis unit, the BIOS module analysis unit is electrically connected with the CMOS battery module, and the BIOS safety inspection module is electrically connected with the CMOS battery module.
2. The system of claim 1, wherein the BIOS setting and sampling unit is connected by two parts of a BIOS setting module and a BIOS sampling module, and the BIOS setting module performs various settings on hardware devices, such as hard disk priority, boot password, etc., during the boot process of the computer; if the computer cannot be started normally, the BIOS interface is accessed to check whether each setting is correct, the BIOS sampling module is responsible for collecting the corresponding file information of the BIOS of the sampled host, and meanwhile, a security check report is generated, and the time, place and related personnel in the collecting process are recorded.
3. The system of claim 1, wherein the BIOS storage unit is connected to the memory storage module and the communication storage module, and the memory storage module and the communication storage module can store the information collected by sampling and the information related to BIOS setting to a local host or transmit the information to a remote dedicated storage server for storage through Internet.
4. The system of claim 1, wherein the BIOS security report unit comprises a result analysis module and a BIOS security management module, the result analysis module analyzes and processes the information collected by sampling and the information related to BIOS setting, if a patch is repaired in time, the system needs to decompress by using a heuristic calculation mode when resolving, so as to ensure the integrity of the information, and after decompressing, dangerous information such as viruses, trojans and the like is extracted, and then stored again, firstly, samples of the dangerous information are extracted and are input into the memory storage module, and when the problems happen next time, the samples are blocked and solved in time.
5. The system of claim 1, wherein the BIOS module analysis unit is composed of a result display module and a BIOS sample module in the BIOS analysis management module, the result display module mainly has the function of realizing interface display of the security check analysis result and printing, storing the analysis result, the module is mainly realized by designing and printing an interface, the BIOS sample module performs security analysis and generation analysis on a specified host BIOS sample, and the analysis is presented by a printing mode and a data mode.
6. The system of claim 1, wherein the BIOS security inspection module is connected to a hardware device inspection module, the device inspection module is configured to scan two components by BIOS code and BIOS security hidden trouble, and the hardware device inspection module can inspect the hardware device in the BIOS to see if a device is damaged or has poor connection, and perform corresponding processing.
7. The system of claim 6, wherein the BIOS code scan and the BIOS security scan are connected to a cloud backup module, the cloud backup module being electrically connected to the CMOS battery module.
8. The system of claim 6, wherein the system determines whether there is a potential safety hazard in the process of scanning the potential safety hazard of the BIOS, if there is no potential safety hazard and no repair is needed, if there is a potential safety hazard, the system analyzes the corresponding potential hazard through the repairing scheme of the potential safety hazard, if the repairing is not performed, the system updates the BIOS to achieve the repairing function by updating the BIOS, downloads the updated BIOS solution repairing scheme again according to the description steps, and if the repairing is performed, after the automatic detection by the BIOS, further executes the corresponding patch code module to correctly configure the security information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310964773.0A CN117294463A (en) | 2023-08-02 | 2023-08-02 | BIOS information safety protection checking system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310964773.0A CN117294463A (en) | 2023-08-02 | 2023-08-02 | BIOS information safety protection checking system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117294463A true CN117294463A (en) | 2023-12-26 |
Family
ID=89246973
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310964773.0A Pending CN117294463A (en) | 2023-08-02 | 2023-08-02 | BIOS information safety protection checking system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117294463A (en) |
-
2023
- 2023-08-02 CN CN202310964773.0A patent/CN117294463A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9417995B2 (en) | Extraction of problem diagnostic knowledge from test cases | |
| US20170102985A1 (en) | Fault processing method, related apparatus, and computer | |
| CN112906008B (en) | Kernel vulnerability restoration method, device, server and system | |
| JP5363242B2 (en) | Method, computer program, and system for recovering an incorrectly programmed embedded device | |
| CN107437029A (en) | Leak restorative procedure, leak prosthetic device and server | |
| CN102099811A (en) | A method and system for improvements in or relating to off-line virtual environments | |
| US8489941B2 (en) | Automatic documentation of ticket execution | |
| CN105302716A (en) | Method and apparatus for test in joint development mode | |
| WO2013091091A1 (en) | Fix delivery system | |
| CN113688398B (en) | Vulnerability scanning result evaluation method, device and system | |
| KR101649909B1 (en) | Method and apparatus for virtual machine vulnerability analysis and recovery | |
| CN113504932B (en) | Firmware data updating method and device | |
| CN110851352A (en) | Fuzzy test system and terminal equipment | |
| CN112816933B (en) | Maintenance diagnosis method and system for electric energy meter terminal | |
| CN107463493B (en) | Test system and test method for host computer anti-virus product | |
| US9459976B1 (en) | Repair of computers that have software-related problems | |
| CN117294463A (en) | BIOS information safety protection checking system | |
| CN116662050A (en) | Error injection support function verification method, device, terminal and medium | |
| CN112395137B (en) | Linux kernel exception processing method, equipment and device | |
| CN112579330A (en) | Method, device and equipment for processing abnormal data of operating system | |
| CN114116330B (en) | Server performance testing method, system, terminal and storage medium | |
| CN109857583A (en) | A kind of processing method and processing device | |
| CN109783288A (en) | It is a kind of to automate the method and system for restarting reset test server stability | |
| CN110197071B (en) | Boot sector data processing method and device, computer storage medium and electronic equipment | |
| CN113722170B (en) | PFR function test method, device, equipment and readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication |