CN1417689A - Fixed disk data enciphering back-up and restoring method - Google Patents

Fixed disk data enciphering back-up and restoring method Download PDF

Info

Publication number
CN1417689A
CN1417689A CN 01134571 CN01134571A CN1417689A CN 1417689 A CN1417689 A CN 1417689A CN 01134571 CN01134571 CN 01134571 CN 01134571 A CN01134571 A CN 01134571A CN 1417689 A CN1417689 A CN 1417689A
Authority
CN
Grant status
Application
Patent type
Prior art keywords
data
backup
partition
windows
file
Prior art date
Application number
CN 01134571
Other languages
Chinese (zh)
Other versions
CN100389408C (en )
Inventor
王卫
杜宾
杨文兵
李鹏
Original Assignee
联想(北京)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Abstract

The fixed disk data enciphering back-up and restoring method includes the following steps: setting one subsection in fixed disk; hiding the subsection for the operation system and other program basedon file system not to access, storing the user designated back-up data in the subsection, and restoring the data in the hidden subsection to fixed disk subsection capable of being accessed. The said method makes the back-up data safe and reliable, the data will not be destroyed by user's misoperation, computer virusand and hacker program. The user can back up and restore the fixed disk data in Windows operation system conveniently.

Description

硬盘数据加密备份及还原方法 Hard disk backup and restore data encryption method

技术领域 FIELD

本发明涉及一种用于保障数据安全性的硬盘数据加密备份及还原方法。 The present invention relates to a disk data security of data encryption method for backup and restore.

背景技术 Background technique

目前,电脑病毒和网上黑客的危害性越来越大,往往直接威胁到计算机用户的数据安全和正常的使用。 Currently, the online dangers of computer viruses and hackers increases, often a direct threat to the user's computer data safe and proper use. 所以电脑用户对计算机及计算机数据、特别是硬盘数据的安全性要求也越来越高。 So computer users on computers and computer data, in particular the hard disk data security requirements have become more sophisticated. 于是出现了杀毒软件和防火墙等计算机安全软件。 So there have been anti-virus software and firewalls and other computer security software. 但是,到目前为止,尚未有理论模型表明杀毒软件可以对清除所有的未知病毒或黑客程序,因此杀毒软件虽然可以清除大部分病毒,但是它有一定的滞后性,用户还需要经常到网站上升级病毒代码,升级不便,并且上网时还有可能感染新的病毒或成为黑客攻击的对象;而且,不能保证清除所有病毒及黑客程序。 However, there is as yet theoretical model shows that anti-virus software can remove all of the unknown virus or hacker program, so antivirus software, although you can remove most of the virus, but it has a certain lag, users also need to regularly update the site virus code, upgrade the inconvenience, and there may be infected with a new virus or hacker attacks when the subject of the Internet; moreover, can not guarantee remove all viruses and hacking programs.

而防火墙对于网络的安全有一定的作用,但也不是十分可靠(特别是对防范黑客)。 And firewalls for network security have a certain role, but it is not very reliable (especially against hackers). 而且杀毒软件、防火墙软件安装后一般都有实时监控程序在系统中运行,会占用一部分的系统资源,降低计算机的性能。 And anti-virus software, firewall software installation generally have real-time monitoring program running on the system, will occupy part of the system resources and reduce computer performance. 并且因为同是系统监控程序,有时还会有兼容性的问题,会与其它软件发生冲突并造成系统瘫痪等更严重的后果(例如将KV3000、瑞星、KILL和NORTON等杀病毒软件安装在同一台计算机上,就会使计算机经常蓝屏)。 And because the monitoring program is the same, and sometimes there are compatibility issues, it will conflict with other software and cause more serious consequences such as paralysis systems (such as the KV3000, Rising, KILL NORTON, etc. and kill virus software installed on the same on the computer, the computer will often blue screen). 同时这两类软件对用户的误操作造成的损失或系统崩溃造成的文件丢失是没有办法来避免的。 At the same time these two types of system loss or software crash caused by misuse of user files are missing due to there is no way to avoid.

所以,既提高计算机安全性、又不影响计算机性能的办法之一就是把系统和重要数据进行备份。 Therefore, it is necessary to improve computer security, one without affecting the performance of the computer system and the way is to back up important data. 现有的备份技术主要有以下几种:一种方法是,将数据备份到一个普通文件中(如Symentic公司的Ghost),该方法的缺点是普通文件不安全,用户可能因为误操作而将备份文件删除,或者备份文件被一些恶意的程序破坏。 Backup prior art are mainly the following: a method, backing up data to a regular file (e.g., the Ghost Symentic's), general disadvantage of this method is insecure file, the user may be backed up because of misuse file deletion, or backup file is corrupted malicious programs. 所以通常需要把备份文件转移到其他备份介质(CDRW或磁带)以保证安全。 It is usually required to transfer backup files to a different backup media (CDRW or tape) to ensure safety. 另一种方法是,把备份数据写到隐藏分区中(如PowerQuest公司的Drive image)。 Another method is to write the backup data in the hidden partition (e.g. PowerQuest's Drive image). 还有一种方法是,在硬盘上创建一个镜向分区,把要备份的分区的数据在镜向分区中作一个备份。 Another method is to create a data partition to the mirror partition to be backed up as a backup to the mirror partition on the hard disk. 该方法的缺点是一次只能有一个镜向备份,如果用户希望备份多个分区,那么通过这种方法是不能实现的。 A disadvantage of this method is that only one mirror to the backup, if a user wishes to back up a plurality of partitions, this method can not be achieved.

上述几种方法共同的缺点就是必须在Dos环境下实现。 Several common disadvantage of the method is to be implemented in the Dos environment. 用户备份数据首先需要多次重新启动计算机,切换操作系统。 User backup data first needs to restart a computer, switch operating systems. 这样做会给用户操作带来很多不便,而且系统切换浪费大量时间。 To do so would bring a lot of inconvenience to the user operation, and the system is switched to waste a lot of time. 特别是在从Windows系统到DOS系统切换时,需要中止Windows系统中其他正常运行的程序,如果用户正在运行非常重要的应用程序、而该程序不能中止,则无法实现备份。 Especially when switching from a Windows system to a DOS system, the need to stop Windows systems running other programs, if the user is running a very important application, the program does not abort, you can not backup. 同时这些软件主要的功能是分区备份,但对于用户来说最常用的功能是将自己重要的数据备份,而不是整个分区甚至整个硬盘。 At the same time the software main function is to partition backup, but for users most frequently used functions is their important data backed up, rather than the entire partition or even the entire hard drive. 所以以上方法都有一定的局限性。 Therefore, the above method has some limitations.

发明内容 SUMMARY

本发明的目的在于一种安全性能高、使用方便的硬盘数据加密备份及还原方法,使备份在本机硬盘中的数据安全可靠,用户可以非常方便地在Windows操作系统下进行数据备份及还原。 Object of the present invention is a safe and high performance, hard disk backup and restore data encryption method easy to use, so that the backup data in the local hard disk of the safe, the user can easily perform backup and restore of data in the Windows operating system.

本发明的技术方案如下:根据本发明的一种硬盘数据隐藏加密备份及还原方法,包括以下步骤:(1)分区设置步骤,在硬盘内设置一个分区;(2)分区隐藏步骤,隐藏该分区,使得该分区及其数据不能被操作系统或其他基于文件系统的程序访问;(3)数据备份步骤,将用户指定的需备份的硬盘数据存储在该分区;(4)数据还原步骤,将隐藏分区中的数据还原到可被访问的硬盘分区中。 Aspect of the present invention is as follows: A hard disk according to the hidden data backup and restore process of the present invention, comprising the steps of: (1) the step of setting a partition, a partition is provided in the hard disk; (2) the step of hidden partition, the partition is hidden , so that the partition and data can not be based on the operating system or other programs to access the file system; (3) the step of data backup, data stored in the hard disk designated by the user to be backed up in the partition; (4) a data reduction step, the hides partition restore data to the hard disk partition can be accessed.

在本发明中所述的分区设置步骤,可由用户根据需备份的数据量设置该隐藏分区的大小。 In the present invention, the step is provided in the partition, the size set by the user according to the amount of the hidden partition data to be backed up. 这使得用于备份数据的分区之容量得以成分利用。 This allows the components to be used in the capacity of the backup data by a partition.

在本发明中,所述的分区隐藏步骤可以是在硬盘分区表中为该分区定义一个特定的类型值,该类型值不同于其它可被用户访问的分区之类型值。 In the present invention, the partition may be hidden partition step defined for a particular type of value in the hard disk partition table, the value is different from other types of value type of the partition can be accessed by a user.

在本发明中,所述的数据备份步骤可以是将用户指定的需备份数据以扇区的形式写入该隐藏分区。 In the present invention, the step of data backup may be designated by the user to be backed up to the hidden partition data is written in the form of a sector.

在本发明中,所述的数据备份步骤还可进一步包括以下步骤:(1)由用户指定需备份的文件或文件目录;(2)将备份节点信息写入该备份数据区的第一区域,每一个备份节点含有若干个备份数据文件,该备份节点信息表示备份文件的基本信息,包括关于该备份节点的文件类型、名称、偏移位置、长度、创建时间、备份文件的数据和属性在该备份节点中的长度;(3)将备份数据文件以扇区的形式写入该备份数据区的第二区域;(4)将备份文件的属性信息写入该备份文件的第三区域,其中包括备份文件的文件名、长度、创建时间、访问时间及其在备份数据区中的相对位置和长度。 In the present invention, the step of data backup may further include the steps of: (1) the specified file or directory to be backed up by a user; (2) the backup node information written in the first area of ​​the backup data area, each node contains a number of backup data file backup, the backup node information indicating the basic information of backup files, including documents relating to the backup node type, name, offset, length, creation time, and the attribute data in the backup file the length of the backup node; (3) the backup data files written to the second region of the backup data area in the form of a sector; (4) the backup file attribute information is written to the backup file in a third region, which comprises file backup file name, length, creation time, access time and length of their relative position in the backup data area.

在本发明中,在将备份数据文件写入隐藏分区之前,可先将备份数据文件进行压缩。 In the present invention, prior to writing the backup data file hidden partition may be compressed first backup data file.

在本发明所述的数据备份步骤和数据还原步骤中,对隐藏分区的扇区进行读写访问可以是通过一套对硬盘物理扇区操作的接口函数实现的,该接口函数是根据Windows操作系统的硬盘访问接口而建立的。 In the step of data backup and data reduction step according to the present invention, the sector read and write access the hidden partition may be by a physical sector on the hard disk interface functions to achieve the operation, the interface function is a Windows operating system the hard disk access interface established.

在本发明中所述的数据还原步骤可以是将隐藏分区中的备份数据以扇区形式读出,再将所读取的数据还原为所备份的数据文件。 Data reduction step according to the present invention may be a hidden partition of the backup data read out in the form of a sector, then the data is read to restore backed up data files.

在本发明中,所述的数据备份步骤及数据还原步骤可以是利用Windows操作系统下的虚拟设备驱动程序实现的。 In the present invention, the step of data backup and data reduction step may be a virtual device driver using the Windows operating system implementation.

在本发明的一个实施例中,所述的Windows操作系统包括Windows 9x系统(例如Windows 95及Windows 98系统),所述的虚拟设备驱动程序是由Windows 9x系统的虚拟设备驱动程序的开发工具实现的,包括以下步骤:(1)保存当前虚拟机的寄存器状态;(2)转入虚拟86方式;(3)调用INT 13中断;(4)退出虚拟86方式;(5)恢复当前虚拟机的寄存器状态。 In one embodiment of the present invention, including the Windows operating system Windows 9x systems (e.g., Windows 95 and Windows 98 system), the virtual device driver is implemented by the development tools of the virtual device driver in Windows 9x system comprising the steps of: (1) to save the current state of the virtual register machine; (2) into a virtual 86 mode; (3) calls an interrupt INT 13; (4) a virtual 86 mode exit; (5) recovery of the current virtual machine register state.

在本发明中,所述的Windows操作系统可包括Windows 2000操作系统和Windows XP操作系统,所述的虚拟设备驱动程序可以是由Windows 2000操作系统或Windows XP操作系统提供的SYS格式的驱动程序。 In the present invention, the system may include a Windows operating system, Windows 2000 and Windows XP operating system, the virtual device driver may be a driver SYS format provided by the operating system, Windows 2000 or Windows XP operating system.

在本发明中,所述的方法可以是在Windows操作系统下实现的。 In the present invention, the method may be implemented under the Windows operating system. 在本发明的实施例中,本发明是通过Windows操作系统下的一个软件实现的。 In an embodiment of the present invention, the present invention is achieved by a software under Windows operating system.

利用本发明,用户可以在Windows操作系统(如Windows98,Windows 2000,Windows XP等操作系统)下,以尽量短的时间、尽量少的空间占用和尽量简单的操作过程,直接将重要数据备份到很安全的隐藏分区中,同时保证系统中同时运行的其他程序不受该备份过程的影响,用户不需要中止其他正在运行的程序。 With the present invention, the user may (e.g., Windows98, Windows 2000, Windows XP operating systems) in the Windows operating system, in the shortest possible time, to minimize the footprint as simple processes and operations directly back up important data to a very secure hidden partition, while ensuring that other programs running on the system at the same time not affect the backup process, users do not need to suspend other programs that are running.

利用本发明,可以在Windows下实现隐藏分区的创建、删除等管理;在Windows操作系统中可以直接将用户的数据备份存放在隐藏分区,或将隐藏分区中的备份数据还原。 With the present invention can be implemented on Windows create hidden partitions, delete and other management; in the Windows operating system, the user can directly backup data is stored in a hidden partition, or hidden partition backup data reduction. 所有这些功能在Windows下的实现可以大大的方便用户,使用户可以在工作的间隙轻松地完成对重要数据的备份。 All these functions can be achieved under the Windows greatly facilitate the user, allowing users to complete backup of important data easily in the clearance work.

本发明是深入系统内核、可基于Windows系统开发的深层次专业数据安全保护工具,它可在硬盘上利用独有的方式开辟一个非常安全的隐藏分区,用于备份数据。 The present invention is a thorough system kernel, Windows-based systems can be developed in-depth professional data security tool that can be used in a unique way on the hard drive to open up a very secure hidden partition for backup data. 由于通常病毒和黑客程序都是基于文件系统的,因此在文件系统上计算机数据的安全是很难保证的。 Because usually viruses and hacker programs are based on the file system, so the computer data file system security is difficult to ensure. 而本发明所设置的隐藏分区的操作低于文件系统这一层,使得Windows系统不能识别该隐藏分区,一般的程序也不能访问到该隐藏分区,所以,病毒和黑客程序也通常不能访问到该隐藏分区,即使能够访问到,它也不知道隐藏分区中的数据格式,这样就可以保证隐藏分区中数据的安全。 Operates hidden partition provided below the file system of the present invention, this layer, so that the Windows system does not recognize the hidden partition, the program can not generally accessible to the hidden partition, so that viruses and hackers can not normally access to programs that hidden partition, even if they can have access to, it does not know the hidden data format partition, so as to ensure the safety of the data in the hidden partition. 所备份的数据不会受到病毒、系统崩溃、程序冲突的影响,只要硬盘不是物理损坏,隐藏分区中的所有信息就可安全还原。 The data will not be backed up viruses, system crashes, the impact of conflict program, as long as the hard drive is not physically damaged, hide all information security partition can be restored. 用户可任意选择保护硬盘上的操作系统、重要目录或文件,可对硬盘进行任意设置、任意修改、任意格式化或重新分区而不会影响备份分区。 Users can choose the operating system on the hard drive to protect an important file or directory, the hard disk can be arbitrarily set, any modification, any formatting or re-partition without affecting the backup partition.

由于目前计算机的硬盘通常具有很大的容量,用户可以根据自己要备份数据的多少创建一个大小合适的隐藏分区,用隐藏分区来备份重要数据,这样就可以不用购买其他存储设备,从而为用户节省有关的费用。 Due to the current computer's hard disk usually has a large capacity, the number of users can create a hidden partition size appropriate to their own backup data in accordance with a hidden partition to back up important data, so they do not purchase additional storage devices to save users related costs.

利用本发明可以实现高速高效的数据备份软件。 The present invention may be implemented using high-speed efficient data backup software. 例如DMA66双硬盘间备份时可达每分钟200兆字节,数据还原时可以达到接近每分钟400兆的速度。 For example, up to 200 megabytes per minute between DMA66 dual-drive backup, you can achieve close to 400 megabytes of data per minute speed reduction. 本发明之软件运行时间快、操作方便。 The run time software of the present invention is fast, easy to operate. 用户备份时不用重新启动计算机、切换到DOS下;也就节省的启动电脑的时间,从需要几分钟、甚至十几分钟的备份时间变为短短的几十秒种! Without restarting the computer when the user to back up, switch to the DOS; thereby saving time start the computer, from a few minutes, or even ten minutes of backup time becomes just tens of seconds species! 同时这种备份是随时可以进行,随时可以结束的,备份的同时,用户还可以用电脑进行其他工作,备份不会干扰用户运行的其他重要程序,更不会中止这些程序的运行。 At the same time that the backup is ready to be carried out, you can end at any time, while the backup, users can also work with other computers, backups without interfering with other important programs run by the user, not to suspend operation of these programs. 此外,用户也不用在DOS下进行任何操作,省去学习和熟悉DOS操作的的麻烦。 In addition, users do not have to perform any operation under DOS, eliminating the need to learn and become familiar with DOS operating trouble. 因此十分方便。 So very convenient.

以下结合附图进一步本发明的实施例。 Further embodiments of the present invention in conjunction with the following drawings.

图1是本发明之方法的总流程图;图2是本发明之实施例的数据备份方法之流程图;图3是本发明之实施例的数据备份方法之程序界面图;图4是本发明之实施例的数据还原方法之流程图;图5是本发明之实施例的数据还原方法之程序界面图。 FIG 1 is a general flowchart of the method of the present invention; FIG. 2 is a flowchart of a data backup method of the embodiment of the present invention; FIG. 3 is a diagram showing a data backup program interface method of an embodiment of the present invention; FIG. 4 of the present invention is flowchart of a data reduction method of the embodiment of the embodiment; FIG. 5 is a program interface data reduction method of an embodiment of the present invention.

如图1所示,在Windows操作系统下,用户可随时调用实现本发明之方法的程序,进入相应的用户界面。 1, in the Windows operating system, the user can always call the program implements the method of the invention into the corresponding user interface. 用户可以根据需要对隐藏分区进行管理,通过虚拟设备驱动程序访问硬盘的参数和物理扇区,结合分区表操作模块,创建一个隐藏分区,从而在硬盘上构成一个数据安全区域用于备份数据。 The user may be required to manage the hidden partition, the hard disk is accessed by a virtual device driver parameters, and a physical sector, partition table operation in conjunction with modules, to create a hidden partition, thereby forming a secure data area for backing up data on the hard disk. 用户也可以删除该隐藏分区,并可以调整该隐藏分区的大小而无损备份数据。 Users can also delete the hidden partition, and you can adjust the size of the hidden partition without compromising backup data.

在本发明中,对硬盘分区表和隐藏分区的全部访问操作是在硬盘的物理扇区这一层。 In the present invention, the hard disk partition table, and all the hidden partition access operation is one in which the physical sector of the hard disk. 实现方法与操作系统密切相关。 Implementation is closely related to the operating system. 在本发明的实施例中,实现了在Windows系统下对硬盘物理扇区的访问,具体说明如下。 In an embodiment of the present invention, to achieve the access to the hard physical sector in the Windows system, as explained below.

在Dos系统下PC机上存取硬盘的接口有三层,它们分别是操作系统层、基本输入输出系统(BIOS)层和输入输出端口(I/O Port)层。 In Dos system from accessing the hard disk on a PC interface has three layers, which are the operating system layer, a basic input output system (BIOS) layer and input and output ports (I / O Port) layer. 操作系统层提供各种高级的功能调用,其中关于硬盘存取的功能包括生成文件、删除文件、更改文件名、写入和读取文件等。 Operating system layer provides a variety of advanced call features, which include hard disk access functions on generating files, delete files, change file names, write and read files. 在这层中也可以对逻辑磁盘分区的读写。 In this layer can also read and write to the logical disk partitions. 但是在该层中不能读取硬盘分区表。 But you can not read the partition table in the layer. 操作系统层对磁盘的操作非常容易,但是功能有限。 Operating system layer operation of the disk is very easy, but limited functionality. BIOS(Basic Input/Output System)中提供相当完备的磁盘服务,如读写扇区、格式化单一磁道等。 BIOS provides a fairly complete disk service (Basic Input / Output System), as read and write sectors, a single track formatting and the like. 在这一层中没有文件的概念,磁盘的读取是与扇区为单位的,所以速度比操作系统层快很多。 Not in this layer concept paper, the disk is read in units of sectors, so the speed is much faster than the operating system layer. I/O Port层是很低级的接口,它直接给控制卡下命令,所以功能非常强大,并且读取速度最快。 I / O Port is a very low-level layer interface card directly to the control command, it is very powerful, and read the fastest. 但是它与控制卡连接紧密,如果换用另一种类型的控制卡,那么它就没有作用。 But it is closely connected with the control card, if for another type of control card, then it has no effect. Windows9x中,仍有DOS虚拟机环境,支持DOS程序运行,这些程序可以使用BIOS/DOS中断对硬盘访问,但已不能使用ATAPI接口访问硬盘。 Windows9x, there are still DOS virtual machine environment to support DOS programs running, these programs can use the BIOS / DOS interrupt to access the hard drive, but can not use the ATAPI interface to access the hard disk. 据我们分析发现,DOS虚拟机提供了DPMI(DOS保护模式接口),原DOS程序在使用BIOS中断INT 13或DOS中断INT 21时,实际是通过DPMI接口对硬盘进行访问的,但这些访问受Windows保护的限制,不能对所有的硬盘扇区的数据进行读写;同时为了安全,ATAPI访问已被禁止使用了。 According to our analysis found that, DOS virtual machine provides DPMI (DOS Protected Mode Interface), original DOS program using BIOS interrupt INT 13 or DOS interrupt 21 INT, is actually access to the hard drive via DPMI interface, but these visits by Windows limit protection can not read and write data for all of the hard disk sectors; at the same time for safety, ATAPI access has been prohibited for use. 而32位Windows程序只能在Windows 9x及Windows 2000/XP操作系统中运行,更因安全原因,而被禁止使用上述硬盘访问接口对硬盘进行访问。 The 32-bit Windows programs only run on Windows 9x and Windows 2000 / XP operating system, but for security reasons, were banned access to the hard drive using the hard disk access interface. 不能使用上述方式对硬盘进行直接访问,因此,很多备份软件是DOS程序,或者主要程序是DOS程序,在DOS系统下运行。 The hard disk can not be accessed directly using the above manner, therefore, a lot of backup software is DOS program, or the program is the main DOS program, run under DOS system. 在本发明的实施例中,通过采用设备驱动程序可以实现直接对硬盘之物理扇区的访问。 In an embodiment of the present invention can be direct access to a physical sector of a hard disk by using a device driver.

Windows是一个运行在最高级特权,第0层级别的多线程操作系统。 Windows is a run on the highest privilege level 0-level multi-threaded operating system. 所有的应用程序都运行在最低级特权,第3层级别上。 All applications are running at the lowest level privileges, Layer 3 level. 这样就限制了应用程序对系统的操作。 This limits the application operation of the system. 它们不能使用CPU特权指令,不能直接访问I/O端口,硬盘的物理扇区等等。 They can not use privileged CPU instruction, can not access the I / O port, a hard disk and so on direct physical sector. 系统的控制实权掌握在设备驱动程序手中。 Control system real power in the hands of device drivers. Windows9x是一个兼容性非常好的操作系统,它可以运行绝大多数Dos程序,但是因为Dos程序和Windows程序有本质的不同,Dos程序认为它们拥有系统的一切:键盘,CPU,内存,硬盘等等。 Windows9x compatibility is a very good operating system, which runs the vast majority of Dos program, but because of Dos and Windows programs have essentially different, Dos program think they have all the system: keyboard, CPU, memory, hard disk, etc. . Dos程序不知道怎样和其他程序合作,而Windows程序是多任务合作系统。 Dos does not know how to cooperate with other programs while Windows programs are cooperative multitasking system. 也就是每个Windows程序都必须通过GetMessage或PeekMessage来和其他程序进行交流。 That is, each Windows program must be carried out exchanges and other programs via GetMessage or PeekMessage. 为了解决这个问题,Windows9x在一个8086虚拟机上运行所有的Dos程序,而在另一个叫做系统虚拟机的虚拟机上运行其他所有的Windows程序。 To solve this problem, Windows9x Dos run all programs on a virtual 8086 machine while all other Windows programs run on another system, called a virtual machine's virtual machine. Windows9x负责把CPU运算时间轮流的分给每个虚拟机。 Windows9x responsible for the sub-CPU computing time in turn to each virtual machine. 虚拟机是被软件创建的一个假象。 A virtual machine is an illusion created by the software. 一个虚拟机和在它上面运行的程序交互,就像这个程序是在真正的机器上运行一样。 A virtual machine and run programs interact on it, as the program is running on a real machine. 这样,一个程序不知道也不关心自己是否是在虚拟机上运行。 In this way, a program does not know or care whether they are running in a virtual machine. 只要虚拟机准确的像一个真的机器一样响应程序,它就可以被当成是一个真正的机器。 As long as the virtual machine exactly like a real machine as a response program, it can be treated as a real machine.

Windows 9x下设备驱动程序的格式为VxD(Virtual X Driver)。 Format device driver under Windows 9x as VxD (Virtual X Driver). x代表各种设备的名字,如虚拟键盘驱动程序(vkd),虚拟鼠标驱动程序(vmd)等等。 x stands for the name of a variety of devices, such as virtual keyboard driver (vkd), virtual mouse driver (vmd) and so on. VxD程序是硬件成功初始化的途径。 VxD program is the way to success hardware initialization. VxD程序通常虚拟一些硬件设备,所以,例如当一个Dos程序认为它在同键盘通讯时,实际是虚拟键盘驱动程序在和Dos程序通讯。 Some programs are usually VxD virtual hardware devices, so, for example, when a Dos program believe it when communication with the keyboard, is actually a virtual keyboard driver and Dos Program Communication. 一个VxD程序通常控制真正的硬件设备并对该设备在各个虚拟机之间的共享进行管理。 A VxD typically control the real hardware device and manages the sharing of equipment between each virtual machine. 尽管如此,并不是说每个VxD程序必须和一个硬件设备相连。 Nevertheless, not to say that every VxD program must be connected to a hardware device. 虽然VxD程序是用来虚拟硬件设备的,但是也可以把VxD程序看作是在第0级别的dll。 Although the program is used VxD virtual hardware devices, but can also be seen as dll in the VxD 0 level. 例如,如果需要做一些只有在第0级别才能做的工作,就可以设计一个VxD程序来完成这个工作。 For example, if you only need to do some level 0 to do the work, you can design a VxD program to complete this work. 这样,由于此VxD程序并没有虚拟任何设备,可以把它仅仅看作是用户程序的扩展。 Thus, since this program is not virtual any VxD device, it can only be seen as an extension of the user program.

VxD的开发工具可以采用Windows 9x DDK或VToolsD。 VxD development tools can use Windows 9x DDK or VToolsD. 它的实现步骤大致如下:1.保存当前虚拟机的寄存器状态2.使用Begin_Nest_V86_Exec转入虚拟86(V86)方式 Its implementation steps are as follows: a saving register the current state of the virtual machine 2. Using Begin_Nest_V86_Exec into virtual 86 (V86) mode

3.使用Exec_Int(0x13)来调用int 13中断。 3. Use Exec_Int (0x13) to call int 13 interrupts.

4.使用End_Nest_Exec()退出虚拟86方式5.恢复当前虚拟机的寄存器状态VxD程序是Windows 9x特有的驱动程序,它在Windows NT、2000下不能运行。 4. Use End_Nest_Exec () 5. Exit virtual 86 mode to restore the current virtual machine state register Windows 9x VxD program is unique to the driver, which on Windows NT, 2000 can not run under. 它能够获得CPU的0级权限,并能够直接访问计算机硬件。 It is possible to obtain permission to CPU 0, and to be able to directly access the computer hardware. 在WindowsNT/2000/XP平台上的设备驱动程序为SYS格式,它的原理和目的与VxD类似,都是为了获得CPU的最高级权限,并直接访问计算机硬件。 Device drivers on WindowsNT / 2000 / XP platform is SYS format, its principles and objectives and VxD similar, is to obtain the highest authority of the CPU, and direct access to the computer hardware.

运行实施本发明之方法的软件,需要同时运行在Windows9x和Windows2000/XP下,所以VxD和SYS格式的驱动程序都需要。 Running software embodiment of the method of the present invention, it needs to run at the same time and Windows9x Windows2000 / XP, and so VxD drivers are required SYS format. 在windows9x下可以按上述方法开发一个VxD驱动程序,而Windows2000/XP操作系统已经提供一个可以访问硬盘参数和物理扇区的驱动程序。 You can develop a VxD driver as described above in windows9x, and Windows2000 / XP operating system already provides a driver can access the hard disk and physical sector parameters.

本发明以在Windows的设备驱动程序作为基础,建立了一组对隐藏分区操作的接口函数,这些函数用于得到硬盘的参数(硬盘扇区的总大小、物理磁头数、物理柱面数、物理扇区数、逻辑磁头数、逻辑柱面数、逻辑扇区数等)以及提供访问(读写)硬盘物理扇区功能。 In the present invention the device driver in Windows as a basis, the establishment of a set of interface functions for the operation of the hidden partition, the hard disk parameters of these functions (the total size of the hard disk sector, the physical number of heads, cylinders for obtaining the number of physical, physical number of sectors, the number of logical heads, the number of logical cylinders, the number of logical, etc.) sectors, and providing access (read and write) the hard physical sector function. 通过这组函数我们可以实现对隐藏分区中的备份文件存取的功能,从而建立了一套完整的Windows开发环境,直接对隐藏分区及其备份文件进行操作。 Through this set of functions that we can realize the function of backup files hidden partition access in order to establish a complete set of Windows development environment, directly on the hidden partition and file backup operations.

在本发明中,实现备份数据区的隐藏是保证备份数据安全性的关键,这样可以禁止任何基于文件系统的访问和基于操作系统的访问,从而防止因用户误操作或病毒导致数据破坏。 In the present invention, to achieve the hidden backup data area is key to ensure the security of backup data, so you can prohibit access to any operating system based access and file-based systems, in order to prevent user errors or viruses cause data corruption.

隐藏分区实现的原理是:在硬盘的0磁道0柱面1扇区位置是MBR(MAIN BOOT RECORD),即主引导记录区,它包括硬盘引导程序和分区表。 Hidden partition principle is implemented: the hard disk cylinder 0 track 0, sector 1 position MBR (MAIN BOOT RECORD), the master boot record area, which includes a hard disk partition table, and boot program. 引导程序完成的任务就是检查分区表是否正确以及确定哪个分区可以被操作系统引导。 Bootstrap task is to check the partition table is correct and determine which partition the operating system can be booted. 分区表位于本扇区的最末端,在MBR的偏移位置0x1BE,以80H或00H为开始标志,共0x40字节,每0x10字节记录分区的信息,共可记录四个分区的信息。 Partition table sector is located at the end of this, the offset position 0x1BE MBR, or 00H to 80H as the start flag, a total of 0x40 bytes, each byte 0x10 recording partition information, a total of four partitions of the record information. 后续的2个字节的内容为55AAH,表示MBR的数据是合法可用的。 SUMMARY subsequent 2 bytes of 55AAH, showing the MBR data is valid available. 值得一提的是,MBR是由分区程序(例如DOS的FDISK.EXE)产生的,它不依赖于任何操作系统,而且硬盘引导程序也不是一成不变的,可以由用户进行改变,只要它能完成前述的任务。 It is worth mentioning that, the MBR is a partitioning program (e.g., the DOS of FDISK.EXE) generated, it does not depend on any operating system and the hard disk boot program is not static, may be changed by the user, as long as it can accomplish the foregoing task. 这也是为什么能实现多系统启动的原因。 This is also the reason why can achieve multi-system startup. 在MBR中最多可以记录4个分区,为了突破这个限制,扩展分区的概念被引入。 Can record up to four partitions in the MBR, in order to break this limit, the concept of extended partition is introduced. 用户可以在MBR中创建一个扩展分区(被称为主扩展分区),在该主扩展分区中又可以创建再扩展分区和逻辑分区,(它们的存储格式于MBR中分区项相同),而再扩展分区又可以继续划分下去。 Users can create an extended partition in the MBR (referred to as primary extended partitions), the extended primary partition can create and re-extended and logical partitions, (in the same format as they are stored in the MBR partition entries), and then expanded Zoning can continue to divide it. 这样就可以构造多于4个分区的分区表。 This allows more than four partitions configured partition table. 操作系统是通过分区表访问硬盘的。 The operating system is accessing the hard disk's partition table by. 通过分析分区表结构,可以实现分区表的创建、删除、修改、提取、还原等操作。 By analyzing the structure of the partition table, partition table can be implemented to create, delete, modify, extraction, restore and other operations. 在分区表的每一项中的0x10个字节中有一个字节表示分区的类型,如FAT32的类型值是0xb,NTFS类型值是0x7。 In each table there is a partition in a byte 0x10 byte indicates the type of the partition, such as the type of the value is FAT32 0xb, NTFS type value is 0x7.

在本发明中定义一个与当前所有分区类型值不同的数值为一个分区的类型值,因此,操作系统就不能识别该分区,这样就可以定义出一个特殊的分区,作为一个对操作系统隐藏的分区,并且可以对该隐藏分区进行操作。 Define a different current all partition types Values ​​in the present invention is a type value of a partition, and therefore, the operating system does not recognize the partitions, thus defining a special partition, as an operating system hidden partition and can operate on the hidden partition.

在实现隐藏分区创建、删除等操作的同时,本发明定义隐藏分区中数据的储存方式,即它的文件系统结构,并且实现操作隐藏分区中数据的全部方法,这样,本发明就实现了对隐藏分区进行管理的技术。 In the realization of the hidden partition to create, delete, etc., and storage methods hidden partition data defining the present invention, i.e., its file system structure, and implement all of the method operations hidden data partition, so that the present invention is realized hidden partition management technology.

隐藏分区中的数据的基本结构如下:1、在隐藏分区的第一区域内记录备份文件的基本信息。 Hidden data partition basic structure is as follows: 1, the basic information of the backup file recorded in the first area of ​​the hidden partition. 如备份文件的类型、名称、偏移位置、长度、创建时间、备份文件的数据和属性在该备份中的长度等等信息。 The backup file type, name, offset, length, creation time, and attribute data length, etc. backup file in the backup information. 这个区域称为备份节点区。 This area is called a backup node area. 在一个实施例中,该区域为隐藏分区的第一个扇区。 In one embodiment, the area is a hidden partition of the first sector.

2、在隐藏分区的第二区域存储备份文件的数据。 2, the data in the second region hidden partition backup file is stored. 这些数据压缩(用户选择压缩)或不压缩(用户选择不压缩)顺序存放到该区域。 The data compression (compression user selection), or no compression (no compression user) is stored sequentially to the region. 该区域被称为备份数据区。 This region is referred to as the backup data area.

3、隐藏分区的第三区域保存的是备份文件的属性信息。 3, save the hidden partition The third area is the attribute information of the backup file. 如文件名、长度、创建和访问时间以及它的数据在第二部分中的相对位置和长度等等文件的属性。 The property file name, length, and time of its creation and access of data in the second portion of the relative position and length of the file and the like. 该区域被称为备份目录区。 This area is called a backup directory area.

在本发明的一个实施例中,如图2和图3所示,硬盘数据备份的过程如下:1、用户选择要备份的目录(文件)和备份方法(是否压缩、压缩方法)后,本程序通过Windows提供的文件访问函数(MFC的CFile、CFileFinder类以及一些Windows API函数)依次打开这些文件。 In one embodiment of the present invention, shown in FIGS. 2 and 3, the hard disk data backup process is as follows: 1, the user selects a directory for backup (files) and a backup method (whether compression compression method), the present routine Windows provides file access functions (MFC of CFile, CFileFinder class as well as some of the Windows API function) in order to open these files.

2、把所有打开的文件的内容读入内存,并把它们压缩(如果用户选择压缩)到另一个内存块中,并且构造一个文件属性列表,把所有文件的所有属性加入该列表中。 2, the contents of all open files read into memory, and compressing them (if the user selects compressed) to another memory block, and a configuration file attribute list of all properties of all files added to the list. 然后以扇区的形式写入隐藏分区中备份数据区。 Then writes the backup data area hidden partition in the form of a sector.

3、把上面所有的文件的属性(文件名、长度等)(通过文件属性列表)以及它们的数据在隐藏分区中的偏移位置、大小等写入隐藏分区备份目录区。 3, the attributes of all the files in the above (a file name, length, etc.) (by the file attribute list) and their data in the hidden partition offset position and size of the hidden partition to write the backup directory area.

4、上面所以步骤完成之后,在隐藏分区的备份节点记录备份节点信息。 4, so that after the completion of the above steps, the information recording backup node in the hidden partition backup node. 这样就完成备份操作。 This completes the backup operation.

如图3所示,在“备份”属性页的左边的树形窗口中选择要备份的文件,图中为C:\My Documents目录,单击“开始备份”按钮就就开始把C:\MyDocuments目录的文件备份到隐藏分区。 3, select the tree left of the window "backup" property page files to be backed up, the figure is C: \ My Documents directory, click the "Start Backup" button to start the C: \ MyDocuments file directory backup to a hidden partition.

在本发明的一个实施例中,如图4和图5所示,硬盘数据还原的过程如下:1、在用户选择要还原的备份后,本程序定位到备份节点区,根据该区的信息初始化备份节点的基本信息,如备份数据区和目录区的位置和大小。 In one embodiment of the present invention, FIGS. 4 and 5, the hard disk data recovery process is as follows: 1. After the user selects to restore a backup, the backup node to locate the Program area, the area in accordance with the initialization information basic information of backup node, such as the location and size of the backup data area and a directory area.

2、定位到备份目录区,读出目录区的数据,根据存储的格式得到所有备份文件的所有属性和它们在数据区中的位置,然后用Windows的文件访问函数创建这些文件,设置它们的属性,并把它们在数据区中的数据解压(如果压缩)或直接写入相对应的文件。 2, the positioning to the backup directory area, reads out the data of contents area, get all the attributes of all the backup files and their locations in the data area according to the storage format, and then create these files using Windows file access functions, set their properties and put them in the data area data decompression (if compressed) or direct writing corresponding file. 这样就完成还原操作。 This completes the restore operation.

如图5所示,在“还原”属性页的左边的树形窗口中选择要还原的备份,图中为“隐藏分区1\1\基本备份”,单击“还原备份”或“还原到...”按钮就开始还原隐藏分区中的选中的备份。 5, select the ones to restore the window to the left of the tree "restore" property page in the figure as "hidden partition 1 \ 1 \ base backup" click "Restore backup 'or' restored to. .. "button to start the selected restore hidden partition backups.

Claims (12)

  1. 1.一种硬盘数据隐藏加密备份及还原方法,包括以下步骤:(1)分区设置步骤,在硬盘内设置一个分区;(2)分区隐藏步骤,隐藏该分区,使得该分区及其数据不能被操作系统或其他基于文件系统的程序访问;(3)数据备份步骤,将用户指定的需备份的硬盘数据存储在该分区;(4)数据还原步骤,将隐藏分区中的数据还原到可被访问的硬盘分区中。 1. A hard disk backup and restore encrypted data hiding method comprises the steps of: (1) the step of setting a partition, a partition is provided in the hard disk; (2) the step of partitioning hidden, the hidden partition, the partition so that their data can not be the operating system or other file system based program access; (3) data backup procedure, the hard disk data storage specified by the user to be backed up in the partition; (4) a data reduction step, the hidden restore data partition to be accessed hard disk partition.
  2. 2.根据权利要求1所述的方法,其中,在所述的分区设置步骤,由用户根据需备份的数据量设置该隐藏分区的大小。 The method according to claim 1, wherein, in the step of setting a partition, the size of the hidden partition is provided by the user according to the amount of data to be backed up.
  3. 3.根据权利要求1所述的方法,其中,所述的分区隐藏步骤是在硬盘分区表中为该分区定义一个特定的类型值,该类型值不同于其它可被用户访问的分区之类型值。 3. The method according to claim 1, wherein said partitioning step is hidden in the partition define a specific type value in the hard disk partition table, the type of the value is different from other types of partitions that can be accessed by a user value .
  4. 4.根据权利要求1所述的方法,其中,所述的数据备份步骤是将用户指定的需备份数据以扇区的形式写入该隐藏分区。 4. The method according to claim 1, wherein said step of backup data designated by the user is written to the data to be backed up in the form of a sector of the hidden partition.
  5. 5.根据权利要求1所述的方法,其中,所述的数据备份步骤进一步包括以下步骤:(1)由用户指定需备份的文件或文件目录;(2)将备份节点信息写入该备份数据区的第一区域,每一个备份节点含有若干个备份数据文件,该备份节点信息表示备份文件的基本信息,包括关于该备份节点的文件类型、名称、偏移位置、长度、创建时间、备份文件的数据和属性在该备份节点中的长度;(3)将备份数据文件以扇区的形式写入该备份数据区的第二区域;(4)将备份文件的属性信息写入该备份文件的第三区域,其中包括备份文件的文件名、长度、创建时间、访问时间及其在备份数据区中的相对位置和长度。 5. The method according to claim 1, wherein the data backup further comprises the steps of: (1) the specified file or directory to be backed up by a user; (2) to write the backup data backup node information a first region of the region, each node comprising a plurality of backup data file backup, the backup node information indicating the basic information of backup files, including documents relating to the backup node type, name, offset, length, creation time, file backup attribute length, and data in the backup node; (3) the backup data files written to the second region of the backup data area in the form of a sector; (4) the backup file attribute information is written to the backup file a third region, wherein the backup file including the file name, length, creation time, access time and the relative position and length of the data in the backup area.
  6. 6.根据权利要求1所述的方法,其中,在将备份数据文件写入隐藏分区之前,先将备份数据文件进行压缩。 6. The method according to claim 1, wherein, prior to writing the backup data file hidden partition, the first backup data file is compressed.
  7. 7.根据权利要求1所述的方法,其中,在所述的数据备份步骤和数据还原步骤中,对隐藏分区的扇区进行读写访问是通过一套对硬盘物理扇区操作的接口函数实现的,该接口函数是根据Windows操作系统的硬盘访问接口而建立的。 7. The method according to claim 1, wherein, in the step of data backup and data reduction step, the sector read and write access the hidden partition is achieved by a physical sector on the hard disk interface function operation this interface hard disk access interface function is based on the Windows operating system established.
  8. 8.根据权利要求1所述的方法,其中,所述的数据还原步骤是将隐藏分区中的备份数据以扇区形式读出,再将所读取的数据还原为所备份的数据文件。 8. The method according to claim 1, wherein said data reduction step is a hidden partition of the backup data read out in the form of a sector, then the data is read to restore backed up data files.
  9. 9.根据权利要求1所述的方法,其中,所述的数据备份步骤及数据还原步骤是基于Windows操作系统下的虚拟设备驱动程序实现的。 9. The method according to claim 1, wherein said step of data backup and data reduction step is carried out based on the virtual device driver under the Windows operating system.
  10. 10.根据权利要求9所述的方法,其中,所述的Windows操作系统包括Windows 9x系统,所述的虚拟设备驱动程序是由Windows 9x系统的虚拟设备驱动程序的开发工具实现的,包括以下步骤:(1)保存当前虚拟机的寄存器状态;(2)转入虚拟86方式;(3)调用INT 13中断;(4)退出虚拟86方式;(5)恢复当前虚拟机的寄存器状态。 10. The method according to claim 9, wherein the Windows operating system including Windows 9x system, the virtual device driver is implemented by the development tools of the virtual device driver in Windows 9x system, comprising the steps of : (1) register to save the current state of the virtual machine; (2) into a virtual 86 mode; (3) call INT 13 interrupt; (4) to exit the virtual 86 mode; (5) restore registers the current state of the virtual machine.
  11. 11.根据权利要求9所述的方法,其中,所述的Windows操作系统包括Windows 2000操作系统和Windows XP操作系统,所述的虚拟设备驱动程序是由Windows 2000操作系统或Windows XP操作系统提供的SYS格式的驱动程序。 11. The method according to claim 9, wherein the Windows operating systems including Windows 2000 operating system and the Windows XP operating system, the virtual device drivers are provided by the operating system, Windows 2000 or Windows XP operating system, driver SYS format.
  12. 12.根据权利要求1至11中任一项所述的方法,其中,所述的方法是在Windows操作系统下实现的。 12. The method according to claim 11, wherein said method is implemented under the Windows operating system.
CN 01134571 2001-11-08 2001-11-08 Fixed disk data enciphering back-up and restoring method CN100389408C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 01134571 CN100389408C (en) 2001-11-08 2001-11-08 Fixed disk data enciphering back-up and restoring method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 01134571 CN100389408C (en) 2001-11-08 2001-11-08 Fixed disk data enciphering back-up and restoring method

Publications (2)

Publication Number Publication Date
CN1417689A true true CN1417689A (en) 2003-05-14
CN100389408C CN100389408C (en) 2008-05-21

Family

ID=4672593

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 01134571 CN100389408C (en) 2001-11-08 2001-11-08 Fixed disk data enciphering back-up and restoring method

Country Status (1)

Country Link
CN (1) CN100389408C (en)

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1296835C (en) * 2003-08-08 2007-01-24 Lg电子株式会社 Apparatus and method for controlling booting operation of computer system
JP2007200314A (en) * 2006-01-11 2007-08-09 Samsung Electronics Co Ltd Apparatus and method of managing hidden area
CN100440178C (en) 2004-02-24 2008-12-03 深圳市朗科科技股份有限公司 Method for managing notations of disks of mobile storage device
CN100447765C (en) 2005-05-20 2008-12-31 联想(北京)有限公司 Mapping method for mobile memory device
CN100520740C (en) 2006-04-13 2009-07-29 宇瞻科技股份有限公司 Mobile storage device having a anti-copy function and method thereof
CN101349980B (en) 2007-07-18 2010-10-06 深圳市顶星数码网络技术有限公司 Hard disk data backup and protection method
CN101546295B (en) 2008-03-24 2010-12-22 上海梅山钢铁股份有限公司 Method for backing up and restoring data based on computer hard disc partitions
WO2010145269A1 (en) * 2009-10-13 2010-12-23 中兴通讯股份有限公司 Method and device for restoring terminal operation and data
CN102375782A (en) * 2010-08-17 2012-03-14 深圳市虹安信息技术有限公司 Method for preventing data leakage by using file disk, system restore and transfer control
CN101901171B (en) 2009-05-27 2012-03-14 同方股份有限公司 Using method of computer data backup and restore software
CN101782955B (en) 2009-01-16 2012-06-20 鸿富锦精密工业(深圳)有限公司 File protecting system
CN101615161B (en) 2009-07-28 2012-07-18 成都市华为赛门铁克科技有限公司 Method for encrypting and decrypting hard disk, hard disk driving device and hard disk
CN102799798A (en) * 2011-05-23 2012-11-28 金宏中天(北京)科技有限公司 Method for not restoring write-ins in overall restoring condition of computer system
CN101785239B (en) 2007-07-13 2013-01-02 英特尔公司 Key based hidden partition system
CN103019892A (en) * 2012-12-29 2013-04-03 盛耀无线通讯科技(北京)有限公司 NV data backup and recovery method based on high-pass platform
CN101828170B (en) 2007-10-16 2013-04-03 国际商业机器公司 Creating a virtual machine containing third party code
CN103258170A (en) * 2013-04-24 2013-08-21 厦门市美亚柏科信息股份有限公司 Mobile storage medium data safety protective method
CN103324643A (en) * 2012-03-23 2013-09-25 联想(北京)有限公司 Terminal device and method for establishing or modifying files
CN103399875A (en) * 2013-07-12 2013-11-20 深圳市金立通信设备有限公司 File managing method and device

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB9812836D0 (en) 1998-06-16 1998-08-12 Ncr Int Inc Data security arrangement
US6192488B1 (en) 1998-07-13 2001-02-20 Chung-Ping Li Restoring method for hard disk

Cited By (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1296835C (en) * 2003-08-08 2007-01-24 Lg电子株式会社 Apparatus and method for controlling booting operation of computer system
CN100440178C (en) 2004-02-24 2008-12-03 深圳市朗科科技股份有限公司 Method for managing notations of disks of mobile storage device
CN100447765C (en) 2005-05-20 2008-12-31 联想(北京)有限公司 Mapping method for mobile memory device
JP4685038B2 (en) * 2006-01-11 2011-05-18 三星電子株式会社Samsung Electronics Co.,Ltd. Hidden area management apparatus and method
CN100470548C (en) 2006-01-11 2009-03-18 三星电子株式会社 Apparatus and method of managing hidden area
JP2007200314A (en) * 2006-01-11 2007-08-09 Samsung Electronics Co Ltd Apparatus and method of managing hidden area
US7861311B2 (en) * 2006-01-11 2010-12-28 Samsung Electronics Co., Ltd. Apparatus and method of managing hidden area
CN100520740C (en) 2006-04-13 2009-07-29 宇瞻科技股份有限公司 Mobile storage device having a anti-copy function and method thereof
CN101785239B (en) 2007-07-13 2013-01-02 英特尔公司 Key based hidden partition system
CN101349980B (en) 2007-07-18 2010-10-06 深圳市顶星数码网络技术有限公司 Hard disk data backup and protection method
CN101828170B (en) 2007-10-16 2013-04-03 国际商业机器公司 Creating a virtual machine containing third party code
CN101546295B (en) 2008-03-24 2010-12-22 上海梅山钢铁股份有限公司 Method for backing up and restoring data based on computer hard disc partitions
CN101782955B (en) 2009-01-16 2012-06-20 鸿富锦精密工业(深圳)有限公司 File protecting system
CN101901171B (en) 2009-05-27 2012-03-14 同方股份有限公司 Using method of computer data backup and restore software
CN101615161B (en) 2009-07-28 2012-07-18 成都市华为赛门铁克科技有限公司 Method for encrypting and decrypting hard disk, hard disk driving device and hard disk
WO2010145269A1 (en) * 2009-10-13 2010-12-23 中兴通讯股份有限公司 Method and device for restoring terminal operation and data
CN102375782A (en) * 2010-08-17 2012-03-14 深圳市虹安信息技术有限公司 Method for preventing data leakage by using file disk, system restore and transfer control
CN102799798A (en) * 2011-05-23 2012-11-28 金宏中天(北京)科技有限公司 Method for not restoring write-ins in overall restoring condition of computer system
CN103324643A (en) * 2012-03-23 2013-09-25 联想(北京)有限公司 Terminal device and method for establishing or modifying files
CN103324643B (en) * 2012-03-23 2017-02-08 联想(北京)有限公司 Terminal equipment and files created or modified method
CN103019892A (en) * 2012-12-29 2013-04-03 盛耀无线通讯科技(北京)有限公司 NV data backup and recovery method based on high-pass platform
CN103258170A (en) * 2013-04-24 2013-08-21 厦门市美亚柏科信息股份有限公司 Mobile storage medium data safety protective method
CN103399875A (en) * 2013-07-12 2013-11-20 深圳市金立通信设备有限公司 File managing method and device

Also Published As

Publication number Publication date Type
CN100389408C (en) 2008-05-21 grant

Similar Documents

Publication Publication Date Title
US6862681B2 (en) Method and system for master boot record recovery
US6167494A (en) Method and system for recovering from operating system failure
US5809230A (en) System and method for controlling access to personal computer system resources
US7024403B2 (en) Filter driver for identifying disk files by analysis of content
US20050235166A1 (en) Method and system for allowing code to be securely initialized in a computer
US20090037649A1 (en) Methods and Systems for Running Multiple Operating Systems in a Single Mobile Device
US20060021032A1 (en) Secure storage tracking for anti-virus speed-up
US20090249335A1 (en) Delivery of Virtualized Workspaces as Virtual Machine Images with Virtualized Hardware, Operating System, Applications and User Data
US7428636B1 (en) Selective encryption system and method for I/O operations
US7032107B2 (en) Virtual partition for recording and restoring computer data files
US20070180206A1 (en) Method of updating a duplicate copy of an operating system on the same disk
US20050091214A1 (en) Internal object protection from application programs
US20070240155A1 (en) Portable platform for executing software applications in a virtual environment
US20080127348A1 (en) Network computer system and method using thin user client and virtual machine to provide immunity to hacking, viruses and spy ware
US20130247186A1 (en) System to Bypass a Compromised Mass Storage Device Driver Stack and Method Thereof
US20070106993A1 (en) Computer security method having operating system virtualization allowing multiple operating system instances to securely share single machine resources
US20030200405A1 (en) Page granular curtained memory via mapping control
US5944821A (en) Secure software registration and integrity assessment in a computer system
US20080104348A1 (en) Security System And Method For Computer Operating Systems
US20050240918A1 (en) Method for executing software applications using a portable memory device
US20080184218A1 (en) Computer system architecture and method having isolated file system management for secure and reliable data processing
US20030204700A1 (en) Virtual physical drives
US20130198474A1 (en) Method and system for providing restricted access to a storage medium
US20080046997A1 (en) Data safe box enforced by a storage device controller on a per-region basis for improved computer security
US20080092145A1 (en) Secure operating system switching

Legal Events

Date Code Title Description
C06 Publication
C10 Request of examination as to substance
C14 Granted