CN1776563A - File encrypting device based on USB interface - Google Patents

File encrypting device based on USB interface Download PDF

Info

Publication number
CN1776563A
CN1776563A CN 200510130655 CN200510130655A CN1776563A CN 1776563 A CN1776563 A CN 1776563A CN 200510130655 CN200510130655 CN 200510130655 CN 200510130655 A CN200510130655 A CN 200510130655A CN 1776563 A CN1776563 A CN 1776563A
Authority
CN
Grant status
Application
Patent type
Prior art keywords
computer
encryption
data
drive
chip
Prior art date
Application number
CN 200510130655
Other languages
Chinese (zh)
Inventor
菅晓翔
高宏
Original Assignee
清华紫光股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Abstract

The encryption unit includes following parts: USB interface chip connected to computer host; digital signal processor (DSP) connected to USB interface chip; chip of smart card connected to DSP; drive of encryption unit is located between drive of file system in computer and hardware drive. In the invention, encryption unit for file folder, complete computer and its shortened cryptographic key are separated from computer system so as to prevent risk of information leakage caused by lost or stolen computer. Authentication is carried out for users before procedure of use in order to prevent information leakage from hardware. The invention satisfies requirement of data protection indifferent security level. Moreover, the unique sequence number of product inside chip of smart card ensures uniqueness of encryption key and encryption unit.

Description

一种基于通用串行总线接口的文件夹加密装置 Based on the universal serial bus interface folder encryption means

技术领域 FIELD

本发明涉及一种基于通用串行总线接口的文件夹加密装置,属于计算机信息安全技术领域。 The present invention relates to a Universal Serial Bus interface folder encryption device, a computer belonging to the technical field of information security.

背景技术 Background technique

计算机软、硬件系统的开放性、易用性和标准化等特点,使计算机存在先天性的致命安全隐患,导致计算机硬盘数据很容易被非法获取、盗用、篡改或破坏。 Computer software and open hardware system, ease of use and features such as standardization, the fatal security risks exist congenital computer, causing the computer hard disk data can easily be acquired illegally, unauthorized access, modification or destruction.

保证计算机数据安全的最有效办法是采用加密技术对数据进行加密,将原来的明文数据按某种算法进行处理,使其成为不可读的密文,保护关键数据不被非法用户窃取、阅读、篡改或破坏。 Computer data security to ensure the most effective approach is to use encryption technology to encrypt the data, the original plaintext data is processed by an algorithm, making it unreadable cipher text, protect critical data from being stolen unauthorized users, reading, tampering or destroyed.

西北工业大学在申请号为200410025825.5的发明专利申请中,公开了一种“计算机硬盘数据加密方法及其装置”。 Patent Application invention Northwestern University in the Application No. 200410025825.5, discloses a "method of data encryption and computer hard disk apparatus." 该技术将数据加密装置放置在硬盘与主机之间,对计算机的硬盘和主机之间传输的数据进行加密。 The data encryption technique means disposed between the hard disk and the host, the data transmission between the host computer and the hard disk is encrypted. 数据加密装置采用PCI总线,可直接插入计算机主板上的PCI插槽中。 The data encryption device uses the PCI bus, can be directly inserted into PCI slot on the computer's motherboard. 加密装置上有一IC卡读写口,可将合法用户持有的IC卡中的密钥,读取并存储到加密装置内的密钥管理模块中。 IC card reader has a mouth, the IC card can be held by the authorized user key is read and stored in the encryption key management module in the device encryption device.

IBM公司在申请号为CN00131477.7的发明专利申请中,公开了一种“用不可访问的唯一密钥对储存的数据进行加密/解密”的方法及装置。 IBM Corporation in the invention patent application No. CN00131477.7 of application, discloses a "non-unique key used to access the stored data encryption / decryption" method and apparatus. 该专利申请采用了对于该计算机系统而言是唯一的一个不可访问密钥。 This patent application uses for which the computer system is not the only one access key. 这个唯一密钥可以嵌入这一计算机系统的不可拆卸硬件中,或者可以从例如该计算机系统不可拆卸硬件的标识号产生。 The unique key may be embedded in the hardware of the non-removable computer system, or may be produced from, for example, the identification number of the computer system is not removable hardware. 其中的处理过程包括构造这一唯一密钥,用这个密钥加密数据,并将加密数据存入存储媒介,而不需要将唯一密钥存入存储媒介。 Wherein the process includes the configuration unique key, data encrypted using this key, and the encrypted data stored in the storage medium, without the unique key stored in the storage medium. 这一存储媒介可以包括任何不可拆卸或者可拆卸存储媒介,包括例如一个计算机硬盘、软盘或者可记录光盘。 The storage medium may include any removable or non-removable storage medium, comprising for example a computer hard disk, a floppy disk or a recordable optical disc.

上述两种方法均可防止硬盘丢失或被盗时,数据可被其它计算机读取的危险,但上述已有技术存在以下缺点:1、西北工业大学的数据加密方法将加密/解密时使用的密钥存储在加密装置内的密钥管理模块中,IBM的数据加密方法中的密钥由计算机系统中不可拆卸硬件的标识号产生,如果整机丢失或被盗,这两种方法都不能保证硬盘内的数据安全。 Both methods can prevent dangerous lost or stolen hard disk, data can be read by other computers, but the above-described prior art has the following disadvantages: 1, Northwestern University data encryption method of encryption / decryption using the secret key stored in the encryption key management module in the device, the data encryption key in the IBM non-removable identification number is generated by a computer hardware system, if the machine is lost or stolen, both methods can not guarantee a hard disk data in safety.

2、对计算机硬盘中的全部数据进行加密,不能满足用户对不同安全等级数据的保护要求。 2, all the data is encrypted computer hard drive, the user can not meet the requirements for protection of different security level data.

发明内容 SUMMARY

本发明的目的是提出一种基于通用串行总线接口的计算机文件夹加密装置,以防止计算机整机丢失或被盗时出现的信息泄露危险,将存有密钥的加密装置与计算机系统分离,实现对计算机中信息的保护。 Object of the present invention is to provide a computer file based on the universal serial bus interface folder encryption device to prevent the whole message is lost or stolen computer leakage risk, the apparatus has the encrypted key is separated from the computer system, achieve the protection of computer information.

本发明提出的基于通用串行总线接口的计算机文件夹加密装置,包括:(1)通用串行总线接口芯片,用于计算机主机与数字信号处理器之间的高速数据传输和通讯,与计算机主机相连接;(2)数字信号处理器,用于对由计算机主机读取的数据流进行加密和解密,与通用串行总线接口芯片相连接;(3)智能卡芯片,用于存储密钥和个人信息,与数字信号处理器相连接;(4)加密装置驱动器,用于获取计算机主机中文件系统对计算机硬盘的读写操作,将多组16位的硬盘数据转换为一组128位的加密解密数据,控制加密装置对128位的数据进行加密解密,置于计算机内的文件系统驱动器与硬盘驱动器之间。 The present invention is proposed based on the computer file folder universal serial bus interface encryption apparatus comprising: (1) a universal serial bus interface chip for high speed communication and data transfer between the host computer and a digital signal processor, and the host computer connected; (2) a digital signal processor for a data stream read by the host computer for encryption and decryption, is connected to a universal serial bus interface chip; (3) a smart card chip, for storing the key and personal information connected with the digital signal processor; (4) the encryption device driver, the host computer for obtaining a file system read and write operations on the computer's hard drive, converting a plurality of sets of data in hard disk 16 a group of 128-bit encryption and decryption data, control means for encrypting 128-bit encryption and decryption of data between the file system drive and the hard disk drive is placed within a computer.

本发明提出的基于通用串行总线接口的计算机文件夹加密装置,具有以下优点:1、本发明的加密装置及其中的密钥与计算机系统分离,可防止计算机整机丢失或被盗时产生的信息泄露危险。 The present invention proposes a general purpose computer serial bus interface file folder encryption device has the advantage that based on: 1, and wherein the key encryption device and a computer system according to the present invention is isolated to prevent lost or stolen computer machine produced the risk of information leakage. 本加密装置对用户进行身份验证,因此即使加密装置和计算机一起丢失或被盗,也可防止计算机硬盘中的信息泄露。 This encryption device to authenticate the user, even if the encryption device and a computer with lost or stolen, the information leakage can be prevented in the computer's hard drive.

2、本发明的加密装置设置在计算机内的文件系统与硬盘驱动器之间,可对指定的文件或文件夹进行加密,而不是对硬盘上的所有数据加密,满足用户对不同安全等级的数据保护要求。 2, between the encryption device of the present invention, the file system from the hard drive in the computer, may be of the specified file or folder is encrypted, but not all of the data encryption on the hard disk, to meet the protection of user data of different security levels Claim.

3、本发明的加密装置中包括智能卡芯片,利用智能卡芯片内的产品唯一序列号作为种子产生加密密钥,即保证了加密密钥的唯一性,也保证了加密装置的唯一性。 3, the encryption device of the present invention comprises a smart card chip, using the product unique serial number as the seed of the smart card chip generates an encryption key, i.e., to ensure that the unique encryption key is also encrypted to ensure the uniqueness of the device.

4、双因素身份认证。 4, two-factor authentication. 只有在计算机通用串行总线接口插入本发明的加密装置,并输入正确的用户口令后,用户才能通过身份验证,对加密文件夹进行操作,因此身份认证的安全强度较高。 Only after the computer universal serial bus interface of the present invention is inserted into the encryption device, and enter the correct password, the user will be authenticated, the encrypted folder operations, a higher authentication security strength.

5、使用安全、方便。 5, safe and convenient. 加密装置的形状和大小与闪存盘相当,用户可象使用钥匙一样,随身携带加密装置,可防止加密装置丢失或被盗。 Shape and size of the encryption device and the flash drive rather, the user may be the same as using a key, encrypting portable device to prevent the encryption device is lost or stolen.

附图说明 BRIEF DESCRIPTION

图1是本发明装置的结构框图,虚线框内为本发明装置,其它部分为计算机主机部分。 FIG. 1 is a block diagram of the apparatus of the present invention, within the dashed box apparatus of the present invention, other portions of the host computer section.

具体实施方式 detailed description

本发明提出的基于通用串行总线接口的计算机文件夹加密装置,其结构框图如图1所示,包括:通用串行总线接口芯片,用于计算机主机与数字信号处理器之间的高速数据传输和通讯,与计算机主机相连接;数字信号处理器,用于对由计算机主机读取的数据流进行加密和解密,与通用串行总线接口芯片相连接;智能卡芯片,用于存储密钥和个人信息,与数字信号处理器相连接;加密装置驱动器,用于获取计算机主机中文件系统对计算机硬盘的读写操作,将多组16位的硬盘数据转换为一组128位的加密解密数据,控制加密装置对128位的数据进行加密解密,置于计算机内的文件系统驱动器与硬盘驱动器之间。 The present invention is proposed based on the computer file folder universal serial bus interface encryption device block diagram shown in Figure 1, comprising: a universal serial bus interface chip for high speed data transfer between a host computer and a digital signal processor and communication, connected to a host computer; a digital signal processor for a data stream read by the host computer for encryption and decryption, is connected to a universal serial bus interface chip; smart card chip, for storing the key and personal information connected with the digital signal processor; encryption device driver, the host computer for obtaining a file system read and write operations on the computer's hard disk, the hard disk 16 a plurality of sets of data into a set of 128-bit encryption and decryption of data, control means for encrypting 128-bit encryption and decryption of data between the file system drive and the hard disk drive is placed within a computer.

当用户需要对计算机主机加密文件夹内的关键数据进行读写操作时,可将加密装置插到计算机主机的通用串行总线接口上。 When the user needs to clamp the encrypted file key to the host computer to read and write data, the encryption device may be plugged into a host computer universal serial bus interface. 本发明的加密装置自动在设备层对保存到“加密文件夹”内的所有文件进行加密。 Encrypting device of the invention in an automatic device layer to save all files "encrypted folder" in the encryption. 数据的加密运算、密钥的使用和保存全部在与通用串行总线接口相连接的加密装置内的芯片内部进行,不进入计算机环境,因此可以完全杜绝黑客程序的跟踪和攻击。 Data encryption operation, use and storage of all keys in the encryption device chip and universal serial bus interface is connected, the computer does not enter the environment, it is possible to completely eliminate tracking programs and hacker attacks. 即使计算机整机丢失或被盗,也能有效防止信息泄露。 Even if the whole computer is lost or stolen, it can effectively prevent information leakage.

本发明的基于通用串行总线接口的计算机文件夹加密装置中,所用的通用串行总线接口芯片,使用飞利浦公司的ISP1581高速USB2.0接口器件,完全符合USB2.0规范,用于计算机主机与数字信号处理器之间的高速数据传输和通讯。 Computer File Universal Serial Bus interface according to the invention is interposed in the encryption device, used in a universal serial bus interface chip, using Philips ISP1581 speed USB2.0 interface device, in full compliance with USB2.0 specification, a host computer and High-speed data transmission and communication between the digital signal processor.

所用的数字信号处理器,使用德州仪器公司的TMS320数字信号处理器,内部封装了标准的DES、3DES对称密码算法。 A digital signal processor used, using Texas Instruments TMS320 DSP, inside the package standard DES, 3DES symmetric ciphers. 对计算机主机读写数据流进行加密解密操作时,首先从智能卡芯片中读取密钥,然后执行密码算法对数据流进行加密解密。 When the host computer to read and write data stream encryption and decryption operation, the key is first read from the smart card chip and then perform the cryptographic algorithm to decrypt the encrypted data stream. TMS320数字信号处理器运算DES加密算法时可达到每秒100Mbit的数据传输率,完全满足硬盘数据加密速度的要求。 TMS320 digital signal up to 100Mbit per second data transfer rate calculation processor DES encryption algorithm, fully meet the requirements of hard disk data encryption speed.

所用的智能卡芯片,使用Atmel公司的8位AT05SC智能卡微控制器,用于存储执行密码算法所需的密钥,以及用户口令(PIN码)等个人信息。 As used smart card chip, using Atmel's 8 AT05SC smart card microcontroller, memory key needed for performing a cryptographic algorithm, and a user password (PIN) and other personal information. 该芯片内含40KB只读储存器、2KB电可擦可编程只读储存器,具有全球唯一的64位产品序列号。 The chip includes 40KB read-only memory, 2KB electrically erasable programmable read-only memory, having a globally unique 64-bit serial number. 初始化时用64位产品序列号作为种子,产生128位的用户加密/解密密钥,使得每把硬件钥匙内的数字密钥具有唯一性,密钥重复出现的可能性为1/1038,保证了使用者进行身份认证时的唯一性。 User encryption initialization with 64-bit serial number as a seed, produced 128 / decryption key, such that each digital key in the hardware unique key, key likelihood of recurring 1/1038 to ensure that the uniqueness when performing user authentication. 智能卡芯片不易伪造,可以抵御物理、电子、化学方法的攻击,使基于通用串行总线接口的加密装置具有很高的安全保密性。 Difficult to forge smart card chip, can resist physical, electronic, chemical attack method that has high security and confidentiality of the encryption apparatus based on a universal serial bus interface.

加密装置驱动器,用于获取计算机主机中文件系统对计算机硬盘的读写操作信息,如盘符(C:D:等)、文件夹名、文件名和数据流等;将多组16位的硬盘数据转换为一组128位的加密解密数据;控制加密装置对128位的数据进行加密解密。 Encryption device driver, the host computer for obtaining a file system operation on the computer's hard disk to read and write information, such as a letter (C: D: and the like), the folder name, file name, and other data streams; a plurality of sets of data in hard disk 16 is converted to a set of encryption and decryption data 128; and a control means for encrypting 128-bit data encryption and decryption. 加密装置驱动器置于计算机文件系统驱动器与硬盘驱动器之间,为一段运行在Windows操作系统Ring0级上的设备驱动程序,使应用程序能够在操作系统底层控制加密装置的操作。 The encryption device driver is interposed between a computer file system drive and the hard disk drive, a period of operation of the device driver on the Windows operating system level Ring0 the application can control the operation of the encryption device in the underlying operating system. 当操作系统对文件发出“写”指令时,由加密装置驱动程序拦截内存中将要进行写操作的数据流,同时调用加密装置对数据进行加密处理后存储到指定的硬盘空间。 When the operating system issues the "write" command to the document, an encryption device driver will intercept the memory to write data stream, while encrypted call device after encrypted data stored in the specified disk space. 由于这种方法是动态实现加密处理,无论系统出现死机或断电,存入硬盘的数据始终是密文,使得加密文件的安全性更加可靠。 Since this method is dynamic encryption processing, regardless of the system crash or power failure occurs, the data is always stored in the hard disk ciphertext, so that the security of the encrypted file is more reliable. 最重要的是,使用者无须对文件加密解密进行任何操作,只需使用Windows操作系统原有的命令,在对文件进行保存、另存为、拷贝粘贴、拖动的过程中,计算机自动完成对文件的加/解密操作,从而可实现Windows操作系统的透明操作。 Most importantly, users do not need to file encryption and decryption do anything, just use the original Windows operating system commands during the file save, save as, copy and paste, drag, the computer automatically files the encryption / decryption operations, enabling transparent operation of the Windows operating system.

以下介绍本发明装置的工作原理和工作过程:本发明提出了一种加密装置和密钥与计算机系统分离的加密方法,可防止计算机整机丢失或被盗时产生的信息泄露危险。 The following describes the working principle and process of the present invention apparatus: The present invention proposes a method of encryption key and an encryption device with separate computer system, the computer may prevent machine generated information is lost or stolen leakage risk. 用户可设置专门用于存储关键数据的加密文件夹,加密装置只对指定文件夹中的数据进行加密解密操作。 The user may set the encrypted file key dedicated to storing data in a folder, only the data encryption device in the specified folder encryption and decryption operations.

1、工作原理:密钥的生成和注入:使用加密装置内智能卡芯片的唯一产品序列号作为种子,经Hash算法产生128位的用户加密解密密钥。 1, the working principle of: generating and injecting keys: encryption apparatus provided with a unique serial number of the smart card chip as a seed to generate a 128-bit cryptographic key via user Hash Algorithm. 密钥以密文的形式存放在加密装置内的智能卡芯片中,智能卡芯片的安全保护功能可防止攻击者读取密钥信息。 In the form of a key stored in cipher text in the smart card chip encryption device, the secure smart card chip protection prevents an attacker to read the key information.

由于使用了智能卡芯片内的产品唯一序列号为种子产生密钥,即使非法用户窃取了合法使用者的加密装置进行复制,每个加密装置内的智能卡芯片序列号不同,用同型号的通用串行总线接口芯片、数字信号处理器和智能卡芯片进行复制,其结果也是截然不同的,保证了加密装置硬件的不可复制性。 The use of a unique serial number of the product in the smart card chip to generate keys for seed, even if unauthorized users to steal the encryption device legitimate users to copy, different smart card chip serial number within each encryption device, a universal serial with the same model bus interface chip, a digital signal processor and a smart card chip copy, the result is also different to ensure that the device can not be copied encryption hardware.

(1)加密装置驱动器实时监控计算机内存对硬盘的读写操作。 (1) The encryption device driver real-time monitoring of a computer memory disk read and write operations. 当计算机对加密文件夹进行读写操作时,加密装置驱动器截获主机和硬盘之间的数据流;(2)加密装置驱动器将多组16位的硬盘数据转换为一组128位的加密解密数据后,送入基于通用串行总线接口的加密装置进行加密解密;(3)加密装置驱动器将加密装置输出的128位加密解密数据转换为可供计算器和硬盘读写的多组16位数据。 (2) the encryption device driver plurality of sets of 16-bit hard disk data into a set of 128-bit encryption and decryption of data; when the computer the encrypted folder read and write operations, the encryption device driver to intercept the data stream between the host and the hard disk , into the encryption and decryption apparatus based encryption universal serial bus interface; and (3) the encryption device driver 128 outputs the data encryption and decryption means converts the encrypted data into multiple sets of 16-bit calculator and a hard disk for reading and writing.

2、身份验证过程:(1)计算机对加密装置进行身份验证:将加密装置插入计算机通用串行总线接口时,加密装置驱动器从加密装置内的智能卡芯片中读取产品序列号,判断是否为合法加密装置。 2, the authentication process: (1) computer encryption device authentication: when the encryption device into the computer universal serial bus interface, the encryption device driver reads the serial number from the smart card chip in the encryption device, it is determined whether a legitimate encryption means.

(2)加密装置对用户进行身份验证:鉴别用户身份的用户口令(PIN码)存放在加密装置内的智能卡芯片中。 (2) means for encrypting the user authentication: user identity authentication password (PIN) stored in the smart card chip in the encryption device. 将加密装置插入计算机通用串行总线接口时,加密装置驱动器提示用户用键盘输入用户口令。 When the encryption device is inserted into the computer universal serial bus interface, the encryption device driver prompt the user for a password using the keypad. 如果输入的口令与智能卡芯片中的相同,则通过身份验证。 If the password is the same smart card chip input, then authenticated. 如果输入的口令连续三次错误,加密装置驱动程序将锁定身份验证过程。 If the password is entered incorrectly three times in a row, the encryption device driver will lock the authentication process.

3、用户在使用本发明的加密装置时,对文件的加密、解密操作方法:创建加密文件夹:在每台计算机中,可创建1-20个加密文件夹。 3, when the user using the encryption apparatus of the present invention, the encrypted document, the decryption operation methods: create an encrypted folder: each computer, to create an encrypted folders 1-20.

文件加密:直接使用Windows的拷贝、粘贴、拖入、另存为等操作,将重要文件写入已设置好的加密文件夹,或直接在加密文件夹中创建文件后保存,文件都将在上述过程中自动被加密。 File encryption: Direct use Windows copy, paste, drag, Save As and other operations, will set a good write important documents encrypted folder, or directly create the file is saved in an encrypted folder, the file will be in the above process automatically encrypted.

文件解密:直接使用Windows的拷贝、粘贴、拖出、从所设置的文件夹中直接打开文件或另存为,文件将在上述操作中被自动解密。 File Decryption: Windows directly copy, paste, drag, open the file from the file folder provided directly or saved as a file will be decrypted in the above-described operations automatically.

Claims (1)

  1. 1.一种基于通用串行总线接口的计算机文件夹加密装置,其特征在于该装置包括:(1)通用串行总线接口芯片,用于计算机主机与数字信号处理器之间的高速数据传输和通讯,与计算机主机相连接;(2)数字信号处理器,用于对由计算机主机读取的数据流进行加密和解密,与通用串行总线接口芯片相连接;(3)智能卡芯片,用于存储密钥和个人信息,与数字信号处理器相连接;(4)加密装置驱动器,用于获取计算机主机中文件系统对计算机硬盘的读写操作,将多组16位的硬盘数据转换为一组128位的加密解密数据,控制加密装置对128位的数据进行加密解密,置于计算机内的文件系统驱动器与硬盘驱动器之间。 A computer-based USB interface file folder encryption device, wherein the apparatus comprises: (1) a universal serial bus interface chip for high speed data transfer between a host computer and a digital signal processor communications, connected to the host computer; (2) a digital signal processor for a data stream read by the host computer for encryption and decryption, is connected to a universal serial bus interface chip; (3) a smart card chip, for storage key and personal information, connected to the digital signal processor; (4) the encryption device driver, the host computer for obtaining a file system read and write operations on the computer's hard drive, converting the multi-bit set 16 is a set of hard disk data 128-bit encryption and decryption of data, encryption means 128 controls the encryption and decryption of data between the file system drive and the hard disk drive is placed within a computer.
CN 200510130655 2005-12-19 2005-12-19 File encrypting device based on USB interface CN1776563A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200510130655 CN1776563A (en) 2005-12-19 2005-12-19 File encrypting device based on USB interface

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200510130655 CN1776563A (en) 2005-12-19 2005-12-19 File encrypting device based on USB interface

Publications (1)

Publication Number Publication Date
CN1776563A true true CN1776563A (en) 2006-05-24

Family

ID=36766128

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200510130655 CN1776563A (en) 2005-12-19 2005-12-19 File encrypting device based on USB interface

Country Status (1)

Country Link
CN (1) CN1776563A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100446024C (en) 2007-01-26 2008-12-24 北京飞天诚信科技有限公司 Protection method and system of electronic document
CN100449560C (en) 2006-09-26 2009-01-07 南京擎天科技有限公司 Computer data security protective method
CN101236535B (en) 2007-07-31 2010-12-22 北京理工大学 Hard disk encryption method based on optical disk under Window environment
CN102236747A (en) * 2010-04-23 2011-11-09 北京同方微电子有限公司 Method for upgrading conventional computer into trusted computer
CN102436568A (en) * 2010-09-29 2012-05-02 孔令军 Computer external encryption device with storage function and encryption and decryption method utilizing same
CN103761067A (en) * 2013-12-13 2014-04-30 昆山五昌新精密电子工业有限公司 Processing system and processing method for encryption/decryption of data files
CN104751072A (en) * 2015-03-17 2015-07-01 山东维固信息科技股份有限公司 Secrete-related control system providing completely transparent user experience based on real-time encryption and decryption technology
CN105468940A (en) * 2015-11-30 2016-04-06 北京深思数盾科技有限公司 Software protection method and apparatus

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100449560C (en) 2006-09-26 2009-01-07 南京擎天科技有限公司 Computer data security protective method
CN100446024C (en) 2007-01-26 2008-12-24 北京飞天诚信科技有限公司 Protection method and system of electronic document
CN101236535B (en) 2007-07-31 2010-12-22 北京理工大学 Hard disk encryption method based on optical disk under Window environment
CN102236747A (en) * 2010-04-23 2011-11-09 北京同方微电子有限公司 Method for upgrading conventional computer into trusted computer
CN102436568A (en) * 2010-09-29 2012-05-02 孔令军 Computer external encryption device with storage function and encryption and decryption method utilizing same
CN103761067A (en) * 2013-12-13 2014-04-30 昆山五昌新精密电子工业有限公司 Processing system and processing method for encryption/decryption of data files
CN104751072A (en) * 2015-03-17 2015-07-01 山东维固信息科技股份有限公司 Secrete-related control system providing completely transparent user experience based on real-time encryption and decryption technology
CN105468940A (en) * 2015-11-30 2016-04-06 北京深思数盾科技有限公司 Software protection method and apparatus

Similar Documents

Publication Publication Date Title
US5513261A (en) Key management scheme for use with electronic cards
US7703676B2 (en) Encrypting the output of a card reader in a card authentication system
US7096370B1 (en) Data security for digital data storage
US6948065B2 (en) Platform and method for securely transmitting an authorization secret
US6857076B1 (en) Data security for digital data storage
Schneier Cryptographic design vulnerabilities
US6367017B1 (en) Apparatus and method for providing and authentication system
US7136995B1 (en) Cryptographic device
US20030070083A1 (en) Method and device for encryption/decryption of data on mass storage device
US20020141588A1 (en) Data security for digital data storage
US20070237366A1 (en) Secure biometric processing system and method of use
US20070083939A1 (en) Secure universal serial bus (USB) storage device and method
US20050229006A1 (en) Digital sealer apparatus
US20100023750A1 (en) System and Method for Controllably Concealing Data from Spying Application
US20070005974A1 (en) Method for transferring encrypted data and information processing system
US20070113097A1 (en) [storage media]
US20080016127A1 (en) Utilizing software for backing up and recovering data
CN101311950A (en) Electronic stamp realization method and device
US7835521B1 (en) Secure keyboard
US7076062B1 (en) Methods and arrangements for using a signature generating device for encryption-based authentication
US20080077807A1 (en) Computer Hard Disk Security
CN1567255A (en) Method for controlling storage and access of security file system
CN1512360A (en) Safety authentication method for movable storage device and read and write identification device
CN2609069Y (en) Fingerprint digital autograph device
CN1294457A (en) Encrypted/deencrypted stored data by utilizing disaccessible only secret key

Legal Events

Date Code Title Description
C06 Publication
C10 Request of examination as to substance
C02 Deemed withdrawal of patent application after publication (patent law 2001)