CN201044180Y - Smart card type safety USB flash drive - Google Patents
Smart card type safety USB flash drive Download PDFInfo
- Publication number
- CN201044180Y CN201044180Y CNU2007201493711U CN200720149371U CN201044180Y CN 201044180 Y CN201044180 Y CN 201044180Y CN U2007201493711 U CNU2007201493711 U CN U2007201493711U CN 200720149371 U CN200720149371 U CN 200720149371U CN 201044180 Y CN201044180 Y CN 201044180Y
- Authority
- CN
- China
- Prior art keywords
- main control
- control chip
- smart card
- module
- disc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Abstract
The utility model discloses a smart card type USB flash drive, comprising a main control chip, a storage module and an interface module, wherein, the main control chip is to finish data storage and is connected with the main control chip which controls data read-write operation; the interface module is to be in charge of the physical connection of the USB flash drive and external equipment and provides power source and is connected with the main control chip which controls the operation of the interference module. The utility model further comprises a smart card for the conversion of plaintext and ciphertext and is connected with the main control chip which controls the smart card to provide a key and then encrypt/decrypt the data. The utility model effectively strengthens the safety of the data.
Description
Technical field
The utility model relates to information storing device, relates in particular to a kind of intelligent card type safe U disc.
Background technology
Patent Office of the People's Republic of China discloses an application for a patent for invention on February 21st, 2007, and its application number is: 200610021363.9, and the applying date is: on July 11st, 2006, denomination of invention is: safe U disc storage system and method; Its summary info is as follows:
A kind of safe U disc storage system device adopts the compound USB flash disk structure of pairing formula, is made up of master and bracket panel two parts.Wherein, master comprises USB chip and connected single-chip microcomputer and the encrypted circuit that is connected with single machine output end in the housing, the back plug-in unit composition that is positioned at the anterior plug-in of housing front portion and is positioned at the housing rear portion, wherein the power lead contact on the anterior plug-in, equipment line contact and data line contact are connected with USB chip corresponding port, and back plug-in unit is connected with the output port of encrypted circuit; Bracket panel comprises bracket panel housing interior bracket panel USB chip and connected bracket panel single-chip microcomputer, is positioned at the bracket panel anterior plug-in of bracket panel housing front portion, wherein the bracket panel equipment line contact on the bracket panel anterior plug-in is connected with bracket panel USB chip corresponding port with the bracket panel data line contact, bracket panel power lead contact on the bracket panel anterior plug-in is connected with bracket panel USB chip corresponding port through power circuit, power circuit is connected to supplying cell, and the connecting line that connects the bracket panel housing is arranged at the bracket panel single-chip microcomputer.Master of the present invention can give user's routine to use and preserve, the bracket panel that stores classified information then can separate with master transfers to special administrative authority as the strict keeping of concerning security matters memory device, solve thus present concerning security matters personnel when using existing USB flash disk at needs simultaneously to routine information and classified information operation with preserve the inconvenience and the insecurity of especially carrying when going out; Classified information carries in the process of going on business, and master separates with bracket panel and transfers to different people and carry respectively, only implements pairing when formal the use, carries the probability of crime because of the individual to reduce classified information; When device is in when carrying out official post respectively and using state, bracket panel is with good conditionsi to carry out the classified information self-destruction and handles, and can effectively prevent because of the classified information that bracket panel is lost or the cause stolen back generation of divulging a secret.
This technical scheme provides a kind of mechanism of safe storage on the basis of storage U disk, but fails to solve the problem of the following aspects:
(1) security of cryptographic algorithm itself can't be guaranteed;
(2) can't confirm possessor's legal identity;
(3) can't carry out encryption to the file on USB flash disk itself and the hard disk;
(4) can not limit the usable range of USB flash disk.
The utility model content
Therefore technical problem to be solved in the utility model provides a kind of intelligent card type safe U disc, and the utility model is on the basis of storage U disk, and the combined with intelligent card technique can be strengthened safety of data.
The utility model specifically is achieved in that
A kind of intelligent card type safe U disc comprises: main control chip, memory module and interface module; Wherein, memory module is used to finish the storage of data, is connected with main control chip, controls its data read-write operation by main control chip; Interface module is used for being responsible for the physical connection of USB flash disk and external unit and power supply being provided, and is connected with main control chip, controls its work by main control chip; Also comprise: smart card, be used for the conversion of all plaintexts and ciphertext, be connected with main control chip, under the control of main control chip, provide key that data are carried out the encrypt/decrypt computing.
Press such scheme, main control chip is connected with smart card by the intelligent card interface circuit, finishes the secure access to smart card.
Press such scheme, memory module is connected with main control chip by the memory module interface circuit.
Press such scheme, interface module is a usb interface module.
Press such scheme, also comprise: pilot lamp, be connected with main control chip, under the control of main control chip, finish prompting to power supply status and read-write state.
Press such scheme, the enciphering and deciphering algorithm of described encrypt/decrypt computing adopts the TriDES algorithm.
Press such scheme, described main control chip comprises: grouping module; The data that are stored in data in the memory module or external unit are sent in the grouping module and are divided into groups, smart card provides key, main control chip carries out the encrypt/decrypt computing to every group of data, the data of respectively organizing after the encrypt/decrypt computing reconfigure in grouping module together, send memory module or external unit back to.
Press such scheme, described smart card comprises: the electronic signature module; Main control chip is gathered the external unit hardware information by interface module, send into the electronic signature module carry out cryptographic calculation obtain the electronic signature, the electronic signature of storage is in advance compared in this electronic signature and the smart card, and whether decision allows external unit to use the memory function of USB flash disk according to comparison result.
Press such scheme, described smart card comprises: the password authentication module; After USB flash disk inserted external unit, main control chip prompting user entered password and the password authentication module is sent in this password carry out verification, and main control chip is according to check results, and whether decision allows external unit that USB flash disk is read and write.
Press such scheme, described password authentication module is accumulated the number of times of error-checking, when surpassing pre-determined number, realizes automatically locking USB flash disk.
Owing to adopted such scheme, the utility model compared with prior art has the following advantages:
The utility model combines smart card techniques and mobile storage technology preferably, by realizing functions such as password controls, file encryption/decryption, binding PC, has strengthened safety of data effectively.
1, core cryptographic algorithm of the present utility model adopts smart card techniques to finish, and can effectively deal with the various means that crack, and can also provide diversified cipher mode simultaneously, or adopt different cryptographic algorithm.Improved the security of cryptographic algorithm itself;
2, the utility model adopts self-locking password protection function, allows to limit the password retry in the number of times, and when the input error password exceeded pre-determined number continuously, USB flash disk automatically locked; After having only password authentication to pass through, could carry out correct read-write to USB flash disk.Also guaranteed safety of data in the USB flash disk;
3, the utility model adopts the file encryption-decryption function, can carry out the encryption and decryption operation to file on the USB flash disk and the file on the client hard disk.Encrypted file can only could be deciphered with former USB flash disk (or the on all four USB flash disk of sequence number).Simultaneously, enciphering and deciphering algorithm adopts the TriDES algorithm of the People's Bank's approval based on smart card product.Thereby strengthened safety of files on USB flash disk itself and the hard disk;
4, the utility model adopts binding PC function, and under keeper's USB flash disk cooperated, safe U disc can realize binding PC.Promptly regulation specifies USB flash disk to use on certain or a few PC, and can not use on unauthorized PC.Further improved the security of data interaction.
Description of drawings
Fig. 1 is a structural representation of the present utility model.
Embodiment
Below in conjunction with accompanying drawing concrete enforcement of the present utility model is further described:
For solving the safety issue of encryption core algorithm; and provide the file protection problem on the non-USB flash disk (shared file on local hard drive, the network); we have introduced smart card, and carry out the design and the manufacturing of hardware configuration again at the integration of smart card and storage U disk.
The utility model relates to smart card, below it is carried out brief description:
Smart card is meant integrated circuit (IC) chip is enclosed in card in the plastic substrate admittedly, is a kind of diverse in function, broad-spectrum electronic card.General thickness is the 0.76-1.2 millimeter, and is small and exquisite, easy to carry, uses simple and direct.The substrate of smart card is made by rigid plastic of polyvinyl chloride, the built-in ic chip.Because of the english abbreviation of integrated circuit is IC (IntegratedCircuit), so be called IC-card.It can be connected use with multiple terminal device, has multiple function.Smart card has the following advantages:
(1) volume is little in light weight, is easy to carry very much;
(2) memory capacity is big: the CPU card contains microprocessor, and storer can be divided into some application area, is convenient to one card for multiple uses, convenient keeping;
(3) reliability height: smart card is antimagnetic, electrostatic prevention, antijamming capability are strong, and reliability is than magnetic card height;
(4) long service life: read-write 100,000 times of the information in the smart card, long service life;
(5) strong security, safe.
Smart card is made up of one or more integrated circuit (IC) chip, and be packaged into and be convenient to the card that people carry, in integrated circuit, have micro computer CPU and storer, smart card has temporary transient or permanent data storage capacities, its content can read or supply the usefulness of inter-process and judgement for the outside, also have the logical process function simultaneously, be used to discern the information and the chip itself that provide with response external and judge the logic function that route and instruction are carried out.
The utility model is a kind of safe U disc by smart card techniques control access logic.As shown in Figure 1, the utility model mainly is made up of main control chip, smart card, memory module and interface module.
Main control chip is the core control section, and the work of other various piece is controlled by it all; Smart card is responsible for all and security-related calculating, all expressly and the conversion of ciphertext all finish herein; Memory module is finished the memory function of data; Interface module is responsible for the physical connection of USB flash disk and external unit and power supply is provided.
Wherein, main control chip is connected with smart card by the intelligent card interface circuit, finishes the secure access to smart card; Memory module is connected with main control chip by the memory module interface circuit, controls its data read-write operation by main control chip; Interface module can be usb interface module in concrete the application, be connected with main control chip, works under the control of main control chip; The utility model can also comprise pilot lamp, and this pilot lamp is connected with main control chip, finishes the prompting to power supply status and read-write state under the control of main control chip.
The protection of cryptographic algorithm: in the utility model, the core of cryptographic algorithm (being key) gives hardware by smart card and realizes that the external world can't crack.Implementation is as follows:
1. main control chip divides into groups for one group according to 8 bytes after obtaining to be encrypted/decrypted data.Last less than 8 bytes
Part, adopt the data polishing of prescribed form;
2. respectively to every group of data, carry out the encrypt/decrypt computing, key is provided by smart card;
3. again each group data is combined in order, last group is removed the data that are used for polishing.
The self-locking password: after USB flash disk inserted, main control chip required the user to enter password automatically, under the control of main control chip, by smart card checking password, after checking is passed through, allowed the normal memory module that connects.Implementation is as follows:
1. after main control chip powers on, think the current password authentification of not carrying out automatically at every turn, and close the read-write capability of memory module;
2. the prompting user inputs password;
3. the password of user's input is sent into smart card and carry out verification;
4. the result who returns according to smart card determines whether to enable memory module;
5. smart card itself can be accumulated error-checking, and when surpassing pre-determined number, smart card is realized the self-locking to USB flash disk.
The realization of file encryption/decryption: data under the control of main control chip, provide key to carry out encrypt/decrypt computing by smart card by usb interface module.And can be according to functional requirement, directly storage or give operating system on memory module by the usb interface module loopback.Encrypted data can only could be deciphered with former USB flash disk (or the on all four USB flash disk of sequence number); Simultaneously, enciphering and deciphering algorithm adopts the TriDES algorithm of the People's Bank's approval.Implementation is as follows:
1. by usb interface module, read in the file that needs encrypt/decrypt;
2. from smart card, obtain core data, as the key in the encrypt/decrypt computing;
3. adopt this key, data are carried out the encryption and decryption computing according to aforementioned encrypt/decrypt account form;
4. the data after will handling write back original.
Binding PC function: after the utility model insertion system, main control chip is gathered the PC hardware information by usb interface module, send into smart card carry out cryptographic calculation obtain the electronic signature, the electronic signature of having stored in this electronic signature and the smart card is compared, open storage module just after comparing successfully, corresponding PC can use the memory function of USB flash disk.The electronic signature of storing in the smart card is in advance by the management software collection and write.Reach the purpose of checking PC legitimacy with this.Implementation is as follows;
1. at first use special software, gather the PC hardware information, behind cryptographic calculation, produce the uniqueness of this PC by the keeper
Electronic signature;
2. use special software by the keeper, the signature of licensed PC is write in the smart card of safe U disc;
3. after safe U disc inserts PC, in initialization procedure, gather the PC hardware information again at every turn, recomputate electronics and sign
Name, the electronic signature of storing up with smart card memory in the safe U disc compares;
4. relatively the USB flash disk function is then opened in success, otherwise closes the USB flash disk function and provide prompting.
Claims (10)
1. an intelligent card type safe U disc comprises: main control chip, memory module and interface module; Wherein, memory module is used to finish the storage of data, is connected with main control chip, controls its data read-write operation by main control chip; Interface module is used for being responsible for the physical connection of USB flash disk and external unit and power supply being provided, and is connected with main control chip, controls its work by main control chip;
It is characterized in that, also comprise: smart card, be used for the conversion of all plaintexts and ciphertext, be connected with main control chip, under the control of main control chip, provide key that data are carried out the encrypt/decrypt computing.
2. safe U disc as claimed in claim 1 is characterized in that main control chip is connected with smart card by the intelligent card interface circuit, finishes the secure access to smart card.
3. safe U disc as claimed in claim 1 is characterized in that memory module is connected with main control chip by the memory module interface circuit.
4. safe U disc as claimed in claim 1 is characterized in that, interface module is a usb interface module.
5. safe U disc as claimed in claim 1 is characterized in that, also comprises: pilot lamp, be connected with main control chip, and under the control of main control chip, finish prompting to power supply status and read-write state.
6. safe U disc as claimed in claim 1 is characterized in that, the enciphering and deciphering algorithm of described encrypt/decrypt computing adopts the TriDES algorithm.
7. as any described safe U disc in the claim 1 to 6, it is characterized in that described main control chip comprises: grouping module;
The data that are stored in data in the memory module or external unit are sent in the grouping module and are divided into groups, smart card provides key, main control chip carries out the encrypt/decrypt computing to every group of data, the data of respectively organizing after the encrypt/decrypt computing reconfigure in grouping module together, send memory module or external unit back to.
8. as any described safe U disc in the claim 1 to 6, it is characterized in that described smart card comprises: the electronic signature module;
Main control chip is gathered the external unit hardware information by interface module, send into the electronic signature module carry out cryptographic calculation obtain the electronic signature, the electronic signature of storage is in advance compared in this electronic signature and the smart card, and whether decision allows external unit to use the memory function of USB flash disk according to comparison result.
9. as any described safe U disc in the claim 1 to 6, it is characterized in that described smart card comprises: the password authentication module;
After USB flash disk inserted external unit, main control chip prompting user entered password and the password authentication module is sent in this password carry out verification, and main control chip is according to check results, and whether decision allows external unit that USB flash disk is read and write.
10. safe U disc as claimed in claim 9 is characterized in that, described password authentication module is accumulated the number of times of error-checking, when surpassing pre-determined number, realizes automatically locking USB flash disk.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2007201493711U CN201044180Y (en) | 2007-05-30 | 2007-05-30 | Smart card type safety USB flash drive |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2007201493711U CN201044180Y (en) | 2007-05-30 | 2007-05-30 | Smart card type safety USB flash drive |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN201044180Y true CN201044180Y (en) | 2008-04-02 |
Family
ID=39259068
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNU2007201493711U Expired - Lifetime CN201044180Y (en) | 2007-05-30 | 2007-05-30 | Smart card type safety USB flash drive |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN201044180Y (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102571823A (en) * | 2012-02-27 | 2012-07-11 | 深圳趋势数码科技有限公司 | Remote security protection method for data of flash disk |
| GB2487993A (en) * | 2011-02-01 | 2012-08-15 | Kingston Technology Corp | Smart card device and issuance system |
| CN105989392A (en) * | 2015-02-13 | 2016-10-05 | 中国科学院信息工程研究所 | Mobile storage system, access control method thereof and manufacturing method thereof |
| CN108733590A (en) * | 2018-05-22 | 2018-11-02 | 北京国领科技有限公司 | A kind of solid-state CD-ROM system and technology |
| CN110059469A (en) * | 2019-04-09 | 2019-07-26 | 广东电网有限责任公司 | A kind of safe U disc system and its application method |
-
2007
- 2007-05-30 CN CNU2007201493711U patent/CN201044180Y/en not_active Expired - Lifetime
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2487993A (en) * | 2011-02-01 | 2012-08-15 | Kingston Technology Corp | Smart card device and issuance system |
| GB2487993B (en) * | 2011-02-01 | 2015-08-26 | Kingston Technology Corp | Blank smart card device issuance system |
| CN102571823A (en) * | 2012-02-27 | 2012-07-11 | 深圳趋势数码科技有限公司 | Remote security protection method for data of flash disk |
| CN105989392A (en) * | 2015-02-13 | 2016-10-05 | 中国科学院信息工程研究所 | Mobile storage system, access control method thereof and manufacturing method thereof |
| CN108733590A (en) * | 2018-05-22 | 2018-11-02 | 北京国领科技有限公司 | A kind of solid-state CD-ROM system and technology |
| CN110059469A (en) * | 2019-04-09 | 2019-07-26 | 广东电网有限责任公司 | A kind of safe U disc system and its application method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101324912B (en) | Credible safety computer | |
| CN101650693B (en) | Security control method for mobile hard disk and security mobile hard disk | |
| CN101196855B (en) | Mobile encrypted memory device and cipher text storage area data encrypting and deciphering processing method | |
| US7861015B2 (en) | USB apparatus and control method therein | |
| CN201054140Y (en) | Information security control chip | |
| EP2218029B1 (en) | Mobile smartcard based authentication | |
| CN203746071U (en) | Security computer based on encrypted hard disc | |
| CN101375259A (en) | Data security system | |
| WO1995016238A1 (en) | Secure computer memory card | |
| US7971788B2 (en) | Electronic payment terminal, smart card adapted to such a terminal and method for loading a secret key in such a terminal | |
| CN201044180Y (en) | Smart card type safety USB flash drive | |
| CN101140605A (en) | Data safety reading method and safety storage apparatus thereof | |
| CN102207999A (en) | Data protection method based on trusted computing cryptography support platform | |
| CN102932140A (en) | Key backup method for enhancing safety of cipher machine | |
| CN101562040A (en) | High-security mobile memory and data processing method thereof | |
| CN102693385A (en) | Embedded terminal based on SD (secure digital) trusted computing module and implementation method thereof | |
| CN209402526U (en) | The key storage device of safety chip | |
| CN100399304C (en) | Method for automatic protecting magnetic disk data utilizing filter driving program combined with intelligent key device | |
| CN101950342A (en) | Device and method for managing access control permission of integrated circuit card | |
| CN104333452A (en) | Multi-account encryption method for file data | |
| CN114884649A (en) | Intelligent gas meter and system | |
| CN100460623C (en) | Method for opening electronic coded lock and electronic coded lock device | |
| CN201150069Y (en) | Information safety equipment supporting multiple identification authentication | |
| CN201716734U (en) | Usb safe storage encryption device | |
| CN102184144A (en) | Hardware-encryption mobile hard disk drive and application method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term | ||
| CX01 | Expiry of patent term |
Granted publication date: 20080402 |