CN1333348C - Method for protecting portable cryptographic storage device of containing biological identification and stored data - Google Patents
Method for protecting portable cryptographic storage device of containing biological identification and stored data Download PDFInfo
- Publication number
- CN1333348C CN1333348C CNB2004100382040A CN200410038204A CN1333348C CN 1333348 C CN1333348 C CN 1333348C CN B2004100382040 A CNB2004100382040 A CN B2004100382040A CN 200410038204 A CN200410038204 A CN 200410038204A CN 1333348 C CN1333348 C CN 1333348C
- Authority
- CN
- China
- Prior art keywords
- fingerprint
- data
- portable
- end host
- controller
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Image Input (AREA)
- Collating Specific Patterns (AREA)
- Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)
Abstract
The present invention relates to a portable encipher storage device with the function of biological identification, which basically comprises a host interface connected to a terminal host, a controller connected to the host interface, a memory module connected to the controller, a fingerprint sensor, an encryption /decryption chip and a portable high-capacity storage unit, wherein the controller is communicated with the terminal host, and fingerprint identifying and applying programs suitable for the terminal host are loaded into the terminal host from the memory module by the terminal host; the terminal host receives a command from a user through the two programs for notifying the controller to control the fingerprint sensor to read a piece of user's fingerprint data to be identified. The terminal host treats the fingerprint data to be identified and a fingerprint template stored in the memory module and judges whether the fingerprint data to be identified and the fingerprint template stored in the memory module are coincident with each other essentially. According to the coincident result, the original hidden portable large-capacity storage unit appears on the terminal host, and the portable large-capacity storage unit is accessed through the encryption /decryption chip.
Description
Technical field
The present invention encrypts storage device relevant for a kind of Portable that contains biological identification, particularly contains the Portable high capacity storage device of fingerprint sensor and the guard method that stores data thereof relevant for a kind of.
Background technology
Traditionally, the practice of maintaining secrecy about personal information, the most normal use is to adopt the mode of cryptoguard to reach.Yet, access to your password and protect personal information, not only have the trouble that the user forgets Password easily, the danger that more has password cracked by the people.Therefore, about the distinctive fossil data of individual, such as biological identification methods such as fingerprint, vocal print, person's handwriting, iris, provided comparatively complete and the active data protected mode by development gradually.Its advantage is that biological characteristic can be carried and must not remember, and more can't be stolen, and is particularly not only tight in conjunction with the biological characteristic guard method of fingerprint, and use quite convenient.
In recent years more because the invention of chip type fingerprint sensor, make that integrating fingeprint distinguisher on compact electronic product no longer is infeasible technology, the correlation technique content can be referring to following patent of one of them inventor of this case straight three: 1. the Chinese invention patent application case number 02105960.8, the applying date is on April 10th, 2002, denomination of invention is " capacitance type fingerprint access chip ", and publication number is 1450489; 2. the Chinese invention patent application case number 02123058.7, and the applying date is on 06 13rd, 2002, and denomination of invention is " pressure type fingerprint reads chip and manufacture method thereof ", and publication number is 1464471; 3. the Chinese invention patent application case number 02124906.7, and the applying date is on 07 12nd, 2002, and denomination of invention is " temperature difference sensing unit and be applied to the fingerprint thermal imagery read ", and publication number is 1463674; 4. the Chinese invention patent application case number 02132054.3, and the applying date is on 09 10th, 2002, and denomination of invention is " capacitive pressure little sensing unit and the fingerprint access chip structure of using thereof ", and publication number is 1482440; And 5. Chinese invention patent application cases number 01119057.4, the applying date is May 25 calendar year 2001, and denomination of invention is " capacitive pressure micro sensing assembly and manufacture method and a signal reading method ", and publication number is 1388360; And found a state in the mound, Chen Mingshun, Gu Maoyuan, Chen Yingcang, straight three Chinese invention patent application case 200310116995.X; the applying date is on Dec 5th, 2003; denomination of invention is " containing the memorizer memory devices of fingerprint sensor and the guard method that stores data thereof "; the patented technology of above-mentioned application has been opened up a kind of brand-new individualized application, that is the function of the subsidiary identification of fingerprint of individual carry-on electronic product.
Particularly aspect the protection of Storage Media; especially in conjunction with the important development project of biological identification method; for example: United States Patent (USP) the 4th before 20 years; 582; No. 985 communique has just disclosed a kind of method of utilizing finger print identifying to protect data in the internal memory, and wherein fingerprint acquisition and identification all are to carry out in same autonomous device.Even it uses target is prevent personal credit card for example etc. counterfeit, yet, costing an arm and a leg of this device, for example except fingerprint sensor, image processing and recognition module need the microprocessor of high-order, for example the Reduced Instruction Set Computer of 32 (bits) (Reduced Instruction SetComputer, RISC) processor or Digital System Processor (Digital Signal Processor, DSP) chip makes that this a kind of independent device for identifying is difficult for promoting.
United States Patent (USP) the 6th, 213, No. 403; World patent WO02/42887A2; United States Patent (USP) the 6th, 213, No. 403; European patent EP 124079A1; No. the 2003/005337th, U.S. Patent Publication; BrP GB2387933 communique equally all discloses a kind of data that is stored in internal memory inside in this device of being protected by identification of fingerprint; it is to be similar to United States Patent (USP) the 4th; 582; No. 985 disclosed storage devices of communique with fingerprint sensor, and disclosed identification of fingerprint framework mainly all is a fingeprint distinguisher (that is fingerprint acquisition and identification all be to carry out in same device) independently.
So far, aforesaid prior art has a common characteristic, and a fingeprint distinguisher independently just is provided, and inside comprises fingerprint sensor and fingerprint image is handled and identification IC.Such design advantage is not for perhaps needing to install the fingerprint application program provides hot plug in the end host end ease of use, but derive another major issue, that costs an arm and a leg exactly, this is that a fingerprint image is handled and the cost of identification IC and supporting design thereof because must increase, usually this IC is 32 RISC or DSP, could carry out identification of fingerprint fast.The cost of processor increases along with the increase of its arithmetic speed and processing power usually, and above-mentioned RISC and/or the minimum cost of DSP also will be at U.S. dollar more than 6 yuan.
For solving expensive problem, best mode is to utilize the microprocessor of end host to carry out fingerprint image processing and identification, just can effectively reduce cost.As No. 2003/005337 communique revealer of U.S. Patent Publication, fingerprint processing and recognition software can be installed on the end host in advance, handle and identification just can utilize the microprocessor of end host to carry out fingerprint image.Yet the shortcoming person of being to use of such design maximum can't use the convenience of hot plug use at the different terminals main frame, perhaps needs the install software that wastes time and energy.
For this reason; part inventor of the present invention is in Republic of China's application for a patent for invention case number 092133887; the applying date is on Dec 2nd, 2003; denomination of invention is in " containing the memorizer memory devices of fingerprint sensor and the guard method that stores data thereof "; disclosed solution to the problems described above; automatic download fingerprint application program is provided, and (comprising fingerprint image handles; identification etc.) in the function of end host; do not need to be installed on fingerprint processing and recognition software on the end host in advance; and the microprocessor that utilizes end host is carried out fingerprint image and is handled and identification, reaches the convenient function of using and effectively reducing cost.
So far, above-mentioned existing invention all is to utilize the fingerprint of human body with the data in the protection internal memory, particularly nonvolatile flash memory.Yet based on the consideration of cost and high power capacity, the portable large capacity storage element of other type just becomes another important developing direction, particularly magnetic hard-disk and CD.
Disclose a kind of device of finger print hard disc in the U.S. Patent Publication the 2001/0023375th, utilize identification of fingerprint to use the authority of data in the magnetic hard-disk with decision.In this invention, mainly utilize one independently after identification of fingerprint module (that is fingerprint acquisition, storage and identification comparison all be in same device, to carry out) the decision user status, provide a controlling signal in an electric-controlled switch (electric controlled switch), whether the operation of control hard disk body.Such design advantage provides the ease of use of hot plug for not needing to install the fingerprint application program in the end host end, but identical derives expensive problem, as described in preceding.Moreover; utilize hardware switch control hard disk operation whether, easy crack, the stranger only needs to provide the false signal of this hardware switch to replace the authentication of fingerprint; therefore such design is safety inadequately, also unclear and effective description of the protection that stores data for hard disk in this contrive equipment simultaneously.
Summary of the invention
Therefore; an object of the present invention is to provide the guard method that a kind of Portable that contains biological identification is encrypted storage device and stored data, it utilizes identification of fingerprint to be protected to prevent that other people from cracking as the next capsule information that institute's desire is stored of unlatching deciphering chip action and steals.
Another object of the present invention provides the guard method that a kind of Portable that contains biological identification is encrypted storage device and stored data, and it utilizes the microprocessor processes fingerprint data of end host, in order to the cost that reduces this device.
Another purpose of the present invention provides the guard method that a kind of Portable that contains biological identification is encrypted storage device and stored data; have automatic download identification of fingerprint and application program in the function of end host; make this device be used in the different terminals system; do not need prior install driver, possess the convenient hot plug function of using.
For reaching above-mentioned purpose, the invention provides a kind of Portable that contains biological identification and encrypt storage device, it comprises substantially and is connected to one of end host host interface, is connected to one of host interface controller, is connected to a memory modules, a fingerprint sensor, a deciphering chip and a Portable high capacity storage element of this controller, controller and end host interconnect, and make end host will be suitable for the identification of fingerprint of end host and application program loading from memory modules and be mounted in the end host; End host sees through this two program and receives the instruction from one of user, reads one of user fingerprint data to be identified with notification controller control fingerprint sensor; End host is handled fingerprint data to be identified and is stored in fingerprint template in this memory modules, and judge whether both are identical in fact, more according to the result that coincide, former hiding Portable high capacity storage element is occurred on end host, and come this Portable high capacity storage element of access through deciphering chip.
In addition, the guard method that stores data that the present invention also provides a kind of Portable that contains biological identification to encrypt storage device comprises following steps after this Portable encryption storage device is connected to an end host:
Communicate with each other with this end host, and an identification of fingerprint and automatic loading of application program are mounted in this end host;
Read one of user fingerprint data to be identified, and should be sent in this end host by fingerprint data to be identified;
Compare with this fingerprint data to be identified transferring to after the fingerprint template deciphering in this end host, and when coincideing in fact, both make this end host recognize the existence of a high capacity storage element, and a controller will take out from a hidden blocks and decipher for one of deciphering chip use golden key, and deliver in this deciphering chip, can make this end host and do deciphering via this deciphering chip to the data in this high capacity storage element and to read or encrypt the action that writes through this controller.
So, the data of Portable high capacity storage element is all passed through encryption, even therefore it is removed, also is difficult for making confidential data wherein to leak.
Technical scheme of the present invention can produce following technique effect:
One utilizes the microprocessor of end host to carry out fingerprint image for apparatus of the present invention handles and identification, includes independently identification of fingerprint microprocessor to replace one type of prior art syringe, significantly to reduce cost.
Though two is that apparatus of the present invention do not have independently identification of fingerprint microprocessor, but can download identification of fingerprint automatically and application program is used in end host, do not need artificial being installed in the end host, make apparatus of the present invention be carried, conveniently be used in different end hosts.
Three provide a deciphering chip for apparatus of the present invention, quick and the safe data to writing Portable high capacity storage element is encrypted, perhaps to reading the data deciphering of Portable high capacity storage element, even this Portable high capacity storage element is removed, also can't captures correct form and content.And the golden key that activates this deciphering chip is deposited in different local, must more improve the degree of safety of this device data access through obtaining after the identification of fingerprint success.
Description of drawings
Fig. 1 is for encrypting the functional block diagram of storage device 10 according to the Portable that contains biological identification of first embodiment of the invention.
Fig. 2 is for encrypting the process flow diagram of the guard method that stores data of storage device 10 according to the Portable that contains biological identification of the present invention.
Fig. 3 is for encrypting the functional block diagram of storage device 10 according to the Portable that contains biological identification of second embodiment of the invention.
The figure number explanation
10 Portables are encrypted storage device 100 end hosts
101 controllers, 102 deciphering chips
103 storage interface expansion slot 103A high capacity storage elements
The public block of 104 memory modules 104A
104B hidden blocks 105 memory expansion slots
106 fingerprint sensors, 108 host interface
110 storage interface, 111 memory interfaces
The 210-290 method step
Embodiment
Technical scheme of the present invention adopts the following example explanation that makes an explanation:
As shown in Figure 1, it is for encrypting the functional block diagram of storage device 10 according to the Portable that contains biological identification of first embodiment of the invention.This device 10 comprises a controller 101 basically, this controller 101 provides a storage interface 110 to see through a deciphering chip 102 and is connected to a storage interface expansion slot 103 again, this expansion slot 103 is in order to be provided with at least one high capacity storage element 103A, the embodiment of this high capacity storage element 103A is a magnetic hard-disk, particularly the hard disk of 2.5 cun and reduced size; Another embodiment of this high capacity storage element 103A is the optical disc apparatus of CD-R/RW and DVD-R/RW and any specification.
In addition, this controller 101 provides another memory interface 111 to connect a memory modules 104 and a biological feature sensor 106, in one embodiment of the invention, the chip type fingerprint sensor that this biometric sensor 106 is fingerprint sensor, particularly area-type and sliding-type is beneficial to reduced volume and reduces cost.In addition, this biometric sensor 106 also can be the sensor of detecting people face, eyes and other biological characteristic.This controller 101 provides a main frame to connect 108 to be connected with outside end host 100 simultaneously, main frame connects 108 for universal serial bus (USB) interface in the present embodiment, yet also can be a pcmcia interface, the PCI interface of (PCI EXPRESS) interface or an IEEE 1394 interfaces or other standard at a high speed; Connect 110 and be ide interface in the present embodiment and store, yet also can be the interface of scsi interface, Serial ata interface, Compact Flash (CF) interface, a pcmcia interface or IEEE 1284 interfaces or other standard.
In one embodiment of this invention, employed controller 101, deciphering chip, memory modules and the chip type fingerprint sensor of comprising of the invention described above device, more can see through under systematization chip (SOC) design architecture, it is integrated into one chip, to reduce cost.
Behind the fingerprint data of having confirmed the user, this controller 101 can transfer in the deciphering chip 102 for the golden key that this deciphering chip 102 uses, and comes this Portable high capacity storage element of access with real-time encrypted and decryption engine.The deciphering chip of this device is to use symmetry algorithm---DES (data encryption standard) or Triple DES (triple encrypted data encryption standard).This deciphering chip can be handled the data of 1.6Gbits/sec in real time, so the delay on can not producing any time for high capacity storage element data access, and is more efficient than the method for utilizing the software encryption and decryption, and also is cracked than software is more difficult.
In addition, the advantage of encipher-decipher method of the present invention is that the golden key of encryption and decryption engine is not to be stored in the deciphering chip, but after must finishing the identification of fingerprint comparison, send in the hidden blocks by this memory modules, and the data in this hidden blocks utilizes individual's fingerprint characteristic to be encrypted especially, obtains and can't be cracked.In order further to improve degree of safety, this gold key more can change any generation in time by software.
In addition, apparatus of the present invention are in order to high capacity storage elements such as access hard disk and CDs, see through the encryption and decryption engine chip of hardwareization, more can efficient access data, be not subjected to the influence consuming time of software encryption and decryption process, and encryption and decryption process independent processing outside terminal system is safer.
Therefore, the Portable that contains biological identification of present embodiment is encrypted storage device 10 in order to being connected with an end host 100, and comprises a host interface 108 that is connected to end host 100, one is connected to the controller 101 of host interface 108, one is connected to controller 101 and in order to the fingerprint sensor 106 of one of sensing one user fingerprint data to be identified, one is connected to the memory modules 104 of controller 101, one is connected to controller 101 and contains the deciphering chip 102 of encryption and decryption engine, the one storage interface expansion slot 103 and that is connected to deciphering chip 102 is connected to storage interface expansion slot 103 high capacity storage element 103A.Memory modules 104 is split into one in order to storing the public block 104A of at least one identification of fingerprint and application program, and one in order to store the hidden blocks 104B of a fingerprint template and a gold medal key.The encrypted mistake of data among the hidden blocks 104B.
After Portable is encrypted storage device 10 and end host 100 is connected, controller 101 sees through host interface 108 and interconnects with end host 100, and the identification of fingerprint and the application program loading that make end host 100 will be suitable for end host 100 are mounted to end host 100.Then, controller 101 control fingerprint sensors 106 read user's fingerprint data to be identified, and fingerprint data to be identified is sent in the end host 100.Then, transfer in the end host 100 after controller 101 is deciphered fingerprint template and compare with this fingerprint data to be identified, and when coincideing in fact, both make end host 100 recognize the existence of this high capacity storage element 103A, and this controller 101 just will take out from hidden blocks 104B for the golden key that this deciphering chip is used and decipher, and deliver in this deciphering chip 102, so far, this end host 100 just can see through this controller 101 and do deciphering via the data among 102 pairs of high capacity storage elements of this deciphering chip 103A and read or encrypt the action that writes.
As Fig. 1 and shown in Figure 2, it is as follows that Portable of the present invention is encrypted the guard method that store data of storage device 10 after being connected to end host 100.At first, controller 101 sees through host interface 108 and is connected with end host 100, and makes end host 100 that identification of fingerprint and application program loading are mounted in this end host 100, shown in step 210.Then, in step 220, demonstrate a window on the end host 100 and supply user's selection or judge that automatically entering a fingerprint logins a pattern (step 225) or a finger print identifying pattern (step 230).
If will enter fingerprint logins pattern, then end host 100 notification controllers 101 control fingerprint sensors 106 read authorized user's fingerprint template, and fingerprint template is sent to (step 235,245) in the end host 100.At this moment, end host 100 utilizes fingerprint application routine processes fingerprint template, and the fingerprint template that will handle transfers among the hidden blocks 104B and stores.Perhaps, the fingerprint application program can utilize golden key to encrypt fingerprint template data (step 255), and the fingerprint template that will encrypt transfers to and stores (step 265) among the hidden blocks 104B then.
If will enter the finger print identifying pattern, then controller 101 reads fingerprint template (step 230) from hidden blocks 104B, and fingerprint template is transferred in the end host 100, then with golden key deciphering fingerprint template data (step 240).Then, end host 100 notification controllers 101 control fingerprint sensors 106 read user's fingerprint data to be identified, and fingerprint data to be identified and golden key are sent in the end host 100 (step 250).Then, end host 100 utilizes application program to handle fingerprint data to be identified and fingerprint template, and judge whether both are identical in fact, and when coincideing in fact, golden key is transferred in the deciphering chip 102 (step 280), and former hiding high capacity storage element 103A is occurred, and come this high capacity storage element 103A (step 290) of access via deciphering chip on end host 100; Otherwise, high capacity storage element 103A is hidden, to prevent end host 100 accesses, inquire perhaps whether the user continues comparison again and authenticate (step 270).
In another embodiment of the present invention, as shown in Figure 3, Portable is encrypted storage device 10 except comprising the controller 101 that is similar to Fig. 1, memory modules 104, high capacity storage element 103A, beyond fingerprint sensor 106 and the host interface 108, can more comprise a memory expansion slot 105 that is electrically connected with controller 101, this device can be considered as being electrically connected to the reader (memory reader) of an external internal memory 107, the external internal memory of this external internal memory such as intelligent media (smart media) or memory card (memory stick) or other standard interface by this memory expansion slot 105.Expansion slot 105 sees through memory interface 111 and is electrically connected with controller 101; and in order to be connected with an external internal memory 107; then with external internal memory 107 with cipher mode; copy to high capacity Portable high capacity storage element 103A; store the data of external internal memory 107 with this mode, and store this data to be protected with extra cipher mode.Originally external internal memory 107 data can be deleted thus, to store other data again.Therefore, under the situation that the fingerprint template after the deciphering and fingerprint data to be identified coincide in fact, make external internal memory 107 and high capacity storage element 103A see through deciphering chip 102 and golden key according to user's control and link to each other as data.
By above-mentioned structure of the present invention, the on-line unit of being seen on the computer system, no longer comprise a non-voltile memory, a high capacity storage element and a fingerprint sensor, so do not need the driver that is applicable to this non-voltile memory, this high capacity storage element and this fingerprint sensor is installed simultaneously, so running that computer system does not need control tasks to install more than three or three.The substitute is, the on-line unit of being seen on the computer system only has a Portable high capacity storage element, so computer system only need be controlled the running of a device.As for the running of the non-voltile memory in the Portable high capacity storage element, high capacity storage element, memory expansion slot and fingerprint sensor, can control by controller.It should be noted that the controller of indication of the present invention, can comprise other assembly of the running of controlling non-voltile memory, high capacity storage element and fingerprint sensor largo, such as ROM (read-only memory) (ROM), random access memory (RAM) etc.
Therefore, the present invention will provide a kind of Portable that contains biological identification to encrypt storage device, and characteristic has four.One does fingerprint for the processor that utilizes end host handles and identification, can significantly reduce the hardware cost of device, reaches universal purpose.Two for providing an automatic fully function of downloading the fingerprint application program, by firmware (firmware), identification of fingerprint and the process software of integrating the USB controller and relevant application program (Applicat ion Program, AP) together, device of the present invention is not except need manually installing any driver or recognition software at end host by the user fully, just the end host that is used in various operating systems of hot plug fully, computer installation particularly, and support the operating system of various language.Three for former shielded Portable high capacity storage element is hidden, and after confirming that status is coincide, this Portable high capacity storage element just occurs on end host.Four is before the shielded Portable high capacity storage element real-time encryption and decryption chip to be arranged; after confirming that status is coincide; controller just writes encryption and decryption gold key in the deciphering chip; data is write Portable high capacity storage element do encryption acts with control, or data read from Portable high capacity storage element do decryption acts.
Simultaneously, the data of the Portable high capacity storage element in this device, deposit record in the deciphering chip mode, even so this Portable high capacity storage element is removed, also can't capture correct form and content, and the golden key separate storage of this deciphering chip to be improving degree of safety, and to need to see through fingerprint comparison and can obtain, such design definitely is safe, also is that present any prior art is beyond one's reach.
Claims (12)
1. a Portable that contains biological identification is encrypted storage device, it is characterized in that, in order to be connected with an end host, this Portable is encrypted storage device and comprised:
One host interface is connected to this end host;
One controller is connected to this host interface;
One fingerprint sensor is connected to this controller, in order to one of sensing one user fingerprint data to be identified;
One memory modules is connected to this controller, and this memory modules is split into a public block, in order to store at least one identification of fingerprint and application program; And a hidden blocks, in order to store an at least one fingerprint template through encrypting and a gold medal key through encrypting;
One deciphering chip is connected to this controller;
One storage interface expansion slot is connected to this deciphering chip; And
One high capacity storage element is connected to this storage interface expansion slot, wherein:
This controller sees through this host interface and interconnects with this end host, and makes this end host that identification of fingerprint and application program loading are mounted in this end host;
This controller is controlled this fingerprint data to be identified that this fingerprint sensor reads this user, and should be sent in this end host by fingerprint data to be identified;
Transfer in this end host after this controller is deciphered this fingerprint template and compare with this fingerprint data to be identified, and when coincideing in fact, both make this end host recognize the existence of this high capacity storage element, and this controller will take out from this hidden blocks and decipher for this gold key that this deciphering chip uses, and deliver in this deciphering chip, can make this end host and do deciphering via this deciphering chip to the data in this high capacity storage element and to read or encrypt the action that writes through this controller.
2. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that this fingerprint template is a data of utilizing this gold key to encrypt.
3. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that, this host interface is a universal sequential bus interface, a pcmcia interface, a PCI high-speed interface or an IEEE 1394 interfaces, and this storage interface is an ide interface, a scsi interface, a Seria1 ata interface, a Compact F1ash interface, a pcmcia interface or an IEEE 1284 interfaces.
4. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that this fingerprint sensor is area-type fingerprint sensor or sweep fingerprint sensor.
5. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that, more comprises:
One expansion slot, be electrically connected with this controller, in order to be electrically connected with an external internal memory, under the situation of coincideing in fact, make this external internal memory and this high capacity storage element see through this deciphering chip according to this user's control and link to each other as data at this fingerprint template and this fingerprint data to be identified.
6. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that this gold key changes generation in time by software.
7. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that this high capacity storage element is a magnetic hard-disk machine or a CD-ROM drive.
8. the Portable that contains biological identification as claimed in claim 1 is encrypted storage device, it is characterized in that this deciphering chip uses the symmetry algorithm of a kind of data encryption standard or triple encrypted data encryption standards.
9. a guard method that stores data that contains the Portable encryption storage device of biological identification is characterized in that, encrypts at this Portable to comprise following steps after storage device is connected to an end host:
Interconnect with this end host, and an identification of fingerprint and automatic loading of application program are mounted in this end host;
Read one of user fingerprint data to be identified, and should be sent in this end host by fingerprint data to be identified;
To transfer in this end host and this fingerprint data comparison to be identified after the fingerprint template deciphering through encrypting, and when coincideing in fact, both make this end host recognize the existence of a high capacity storage element, and a controller will take out from a hidden blocks and decipher for the gold medal key through encrypting of a deciphering chip use, and deliver in this deciphering chip, can make this end host and do deciphering via this deciphering chip to the data in this high capacity storage element and to read or encrypt the action that writes through this controller.
10. the guard method that stores data that the Portable that contains biological identification as claimed in claim 9 is encrypted storage device is characterized in that this fingerprint template is a data of utilizing this gold key to encrypt.
11. the guard method that stores data that the Portable that contains biological identification as claimed in claim 9 is encrypted storage device is characterized in that this gold key changes generation in time by software.
12. the guard method that stores data that the Portable that contains biological identification as claimed in claim 9 is encrypted storage device is characterized in that this deciphering chip uses the symmetry algorithm of a kind of data encryption standard or triple encrypted data encryption standards.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100382040A CN1333348C (en) | 2004-05-13 | 2004-05-13 | Method for protecting portable cryptographic storage device of containing biological identification and stored data |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100382040A CN1333348C (en) | 2004-05-13 | 2004-05-13 | Method for protecting portable cryptographic storage device of containing biological identification and stored data |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1696960A CN1696960A (en) | 2005-11-16 |
| CN1333348C true CN1333348C (en) | 2007-08-22 |
Family
ID=35349677
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004100382040A Expired - Fee Related CN1333348C (en) | 2004-05-13 | 2004-05-13 | Method for protecting portable cryptographic storage device of containing biological identification and stored data |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1333348C (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI265442B (en) | 2005-06-03 | 2006-11-01 | Lightuning Tech Inc | Portable storage device capable of automatically running biometrics application programs and methods of automatically running the application programs |
| CN100451999C (en) * | 2005-12-16 | 2009-01-14 | 祥群科技股份有限公司 | Memory and method for protecting storage data |
| CN100452000C (en) * | 2006-03-09 | 2009-01-14 | 祥群科技股份有限公司 | Portable memory devices and method for automatically performing biology identification application program |
| CN101030852B (en) * | 2007-01-30 | 2013-08-28 | 天津市阿波罗信息技术有限公司 | Method for enciphering and deciphering human-body safety |
| CN101908024A (en) * | 2010-08-17 | 2010-12-08 | 湖南源科高新技术有限公司 | Encrypting method, device and hard disk |
| WO2017117762A1 (en) | 2016-01-06 | 2017-07-13 | 华为技术有限公司 | Fingerprint recognition method and electronic device |
| CN108122021A (en) * | 2016-11-28 | 2018-06-05 | 英业达科技有限公司 | Storage device encryption system and its application method |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020073340A1 (en) * | 2000-12-12 | 2002-06-13 | Sreenath Mambakkam | Secure mass storage device with embedded biometri record that blocks access by disabling plug-and-play configuration |
| US20020078367A1 (en) * | 2000-10-27 | 2002-06-20 | Alex Lang | Automatic configuration for portable devices |
| WO2003003282A1 (en) * | 2001-06-28 | 2003-01-09 | Trek 2000 International Ltd. | A portable device having biometrics-based authentication capabilities |
| WO2003091885A1 (en) * | 2002-04-25 | 2003-11-06 | Ritronics Components Singapore Pte Ltd | A biometrics parameters proctected computer serial bus interface portable data storage device and method of proprietary biometris enrollment |
| CN1456976A (en) * | 2003-06-04 | 2003-11-19 | 无敌科技(西安)有限公司 | Driving programm installing method of USB interface facilities |
-
2004
- 2004-05-13 CN CNB2004100382040A patent/CN1333348C/en not_active Expired - Fee Related
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020078367A1 (en) * | 2000-10-27 | 2002-06-20 | Alex Lang | Automatic configuration for portable devices |
| US20020073340A1 (en) * | 2000-12-12 | 2002-06-13 | Sreenath Mambakkam | Secure mass storage device with embedded biometri record that blocks access by disabling plug-and-play configuration |
| WO2003003282A1 (en) * | 2001-06-28 | 2003-01-09 | Trek 2000 International Ltd. | A portable device having biometrics-based authentication capabilities |
| CN1462410A (en) * | 2001-06-28 | 2003-12-17 | 特科2000国际有限公司 | Portable device having biometrics-based authentication capabilities |
| WO2003091885A1 (en) * | 2002-04-25 | 2003-11-06 | Ritronics Components Singapore Pte Ltd | A biometrics parameters proctected computer serial bus interface portable data storage device and method of proprietary biometris enrollment |
| CN1456976A (en) * | 2003-06-04 | 2003-11-19 | 无敌科技(西安)有限公司 | Driving programm installing method of USB interface facilities |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1696960A (en) | 2005-11-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI307046B (en) | Portable encrypted storage device with biometric identification and method for protecting the data therein | |
| US8255697B2 (en) | Portable or embedded access and input devices and methods for giving access to access limited devices, apparatuses, appliances, systems or networks | |
| TWI282940B (en) | Memory storage device with a fingerprint sensor and method for protecting the data therein | |
| EP0379333B1 (en) | Secure data interchange system | |
| TWI326846B (en) | ||
| CN104200363B (en) | A kind of method of payment of the electronic purse system based on encrypting fingerprint | |
| WO2009095263A1 (en) | Method of secure pin entry and operation mode setting in a personal portable device | |
| CN105809070A (en) | USB flash disk fingerprint authentication encryption method | |
| CN101017462A (en) | Portable memory devices having biological date protection mechanism and protection method thereof | |
| CN1333348C (en) | Method for protecting portable cryptographic storage device of containing biological identification and stored data | |
| CN102184144A (en) | Hardware-encryption mobile hard disk drive and application method thereof | |
| TWI296780B (en) | Hard disk apparatus with a biometrics sensor and method of protecting data therein | |
| US7519829B2 (en) | Storage device and method for protecting data stored therein | |
| KR20050088081A (en) | Secure transaction card with a large storage volume | |
| CN100452000C (en) | Portable memory devices and method for automatically performing biology identification application program | |
| CN100476764C (en) | Storage device and method for protecting stored data | |
| WO2009038446A1 (en) | A portable secure identity and mass storage unit | |
| US20070150746A1 (en) | Portable storage with bio-data protection mechanism & methodology | |
| CN105893821A (en) | Method for encrypting USB flash disk with fingerprint authentication | |
| CN103456340A (en) | Safe movable hard disk and application method thereof | |
| CN100451999C (en) | Memory and method for protecting storage data | |
| CN1996269A (en) | Memory device with fingerprint sensing function and data protection method therefor | |
| KR20060104268A (en) | Private verification and storage device using usb | |
| CN101089896A (en) | Protection method for file of optical store medium/device | |
| CN101968773A (en) | Data storage system with biometric protection and method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20070822 Termination date: 20190513 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |