CN203982391U - A kind of PCI-E encrypted card with network interface - Google Patents
A kind of PCI-E encrypted card with network interface Download PDFInfo
- Publication number
- CN203982391U CN203982391U CN201320682881.0U CN201320682881U CN203982391U CN 203982391 U CN203982391 U CN 203982391U CN 201320682881 U CN201320682881 U CN 201320682881U CN 203982391 U CN203982391 U CN 203982391U
- Authority
- CN
- China
- Prior art keywords
- interface
- module
- control module
- pci
- sata
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
- 238000012545 processing Methods 0.000 abstract description 13
- 238000005516 engineering process Methods 0.000 abstract description 6
- 230000007306 turnover Effects 0.000 abstract description 5
- 238000004891 communication Methods 0.000 description 5
- 238000000034 method Methods 0.000 description 5
- 230000008569 process Effects 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- XUIMIQQOPSSXEZ-UHFFFAOYSA-N Silicon Chemical compound [Si] XUIMIQQOPSSXEZ-UHFFFAOYSA-N 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000009545 invasion Effects 0.000 description 1
- 230000007774 longterm Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 229910052710 silicon Inorganic materials 0.000 description 1
- 239000010703 silicon Substances 0.000 description 1
Abstract
The utility model discloses a kind of PCI-E encrypted card with network interface, comprise the densifying plate with PCI-E interface, on described densifying plate, be provided with main control module, the FLASH module being connected with main control module respectively, encrypting module, SATA control module, described SATA control module is connected with the SATA interface that is connected with SATA hard disk and converting interface with SATA interface is connected on computer motherboard, the DSP control chip being connected with PCI-E interface with main control module respectively, the digital physical noise source chip being connected with DSP control chip, on described densifying plate, be provided with network interface, described network interface is connected with main control module by cable network module.The utility model utilizes the data encryption that PCI-E bus interface technology is encrypted card that high speed processing passage is provided, greatly improved the operating rate of encrypted card, by cable network module and the wireless network module being set directly on encrypted card, directly the data of turnover computing machine are carried out to encryption and decryption, improved security and the processing speed of data.
Description
Technical field
The utility model relates to data security field, is specifically related to a kind of encrypted card that carries out HD encryption for STAT interface.
Background technology
Development along with modern communication technology; enterprise and individual depend on more and more internet and carry out information interaction; internet is an open system; once data have gone up internet and have been easy to be subject to various intentional or unintentional invasions; no matter this is for the individual who more and more payes attention to individual privacy protection; or for the incorporated business that more and more payes attention to intellectual property protection, all can not put up with, this is with regard to need to be keep secret communication.The data that are kept in addition in computing machine are also easily illegally stolen, and this just need to be encrypted the vital document data of long-term preservation.Therefore encryption technology has received increasing concern.Conventional protection is by software or hardware, corresponding data communication to be encrypted, to prevent that important information from divulging a secret in transmitting procedure.Wherein software cryptography is easy to use and cost is lower, but be easier to crack, adopt hardware encipher can improve the processing speed of encryption and decryption and more complicated cipher mode, but mostly existing hardware encipher khaki is the standard for IDE, the hard disk processing standard of the STAT standard relatively adopting is now greatly backward, in addition existing encryption khaki is to be only encrypted for certain data, as hard disc data or network data, can not process all use-patterns of user, range of application is narrower.
Utility model content
For solving function singleness and the slow problem of processing speed of encrypted card in prior art, the utility model provides a kind of SATA of being applied to standard and the hardware encryption card of encryption can be provided for several data application.
Concrete scheme is as follows: a kind of PCI-E encrypted card with network interface, comprise the densifying plate with PCI-E interface, it is characterized in that, on described densifying plate, be provided with main control module, the FLASH module being connected with main control module respectively, encrypting module and SATA control module, described SATA control module is connected with the SATA interface that is connected with SATA hard disk and converting interface with SATA interface is connected on computer motherboard, the DSP control chip being connected with PCI-E interface with main control module respectively, the digital physical noise source chip being connected with DSP control chip, on described densifying plate, be provided with network interface, described network interface is connected with main control module by cable network module, described main control module adopts FPGA, described encrypting module adopts the TF32A09 chip of Tongfang.
Described SATA interface has 2-4.
On described densifying plate, be provided with the wireless network module being connected with main control module.
On described encrypted card, be connected with external USB interface, described USB interface is connected with main control module.
Described DSP control chip adopts the TM320 series of TI, and described digital physical noise source chip adopts the chip of WNG series, the DM9102HEP chip that described cable network module is Davicom.
The utility model utilizes the data encryption that PCI-E bus interface technology is encrypted card that high speed processing passage is provided, greatly improved the operating rate of encrypted card, by the control module of SATA, realize the encryption of new criteria hard disk, compatible multiple SATA standard simultaneously, has expanded the encryption scope of hard disk.Utilize USB interface to provide cryptographic services for multiple external equipment, expanded user's protection domain.Adopt the managing encrypted card various functions of FPFA conveniently for different user arranges different management functions.And digital physical noise source chip can provide good random number, improve the safe class of encrypting.Of the present utility modelly can be applied in different places, both can, for group internal provides safeguard protection, also can provide security protection for personal user's privacy.Encrypted card of the present utility model can improve security for internal data, external data and the network data of computing machine, realizes the processing of all data by a block encryption card.
Accompanying drawing explanation
Fig. 1 structural representation of the present utility model;
The encryption flow process of encrypting module in Fig. 2 the utility model;
Attached number in the figure explanation: 1-main control module, 2-DSP control chip, 3-numeral physical noise source chip, 4-PCI-E interface, 5-encrypting module, 6-SATA interface, 7-converting interface, 8-USB interface, 9-SATA control module, 10-FLASH module, 11-power module, 12-network interface, 13-cable network module, 14-wireless network module.
Embodiment
As shown in Figure 1, PCI-E encrypted card with network interface of the present utility model, comprise the densifying plate with PCI-E interface 4, it is characterized in that, on described densifying plate, be provided with the main control module 1 of analyzing turnover data and processing, the FLASH module 10 being connected with main control module 1 respectively, the encrypting module 5 with cryptographic algorithm function, SATA control module 9 for the treatment of SATA agreement, described SATA control module 9 is connected with the SATA interface 6 that is connected with SATA hard disk and converting interface 7 with SATA interface is connected on computer motherboard, the DSP control chip 2 being connected with PCI-E interface 4 with main control module 1 respectively, the digital physical noise source chip 3 being connected with DSP control chip 2, on described densifying plate, be provided with network interface 12, described network interface 12 is connected with main control module 1 by cable network module 13.
In the utility model, main control module 1 is for accepting user's encryption and decryption instruction, by SATA control module 9, control the reading and writing data of SATA hard disk, and the random cipher producing according to user instruction utilization numeral physical noise source chip 3, DSP control chip 2 is encrypted to relevant data simultaneously.By the USB interface being connected with densifying plate, can be encrypted for the data in USB flash disk, portable hard drive or other digital device in addition, greatly facilitate user's demand, make a block encryption card can complete the encryption of conventional communication data.Utilize DSP control chip to realize the processing of PCI-E interface data, improve the enciphered data processing speed of whole encrypted card, DSP (Digital Signal Processor) is digital signal processing special chip, the parallel organization with height, dedicated hardware logic and many special instructions, can realize fast encryption scheme, on the sheet of DSP, two access RAM (DARAM) and host parallel interface (HPI) can realize that data PCI transmits and DSP processing is carried out simultaneously.This programme utilizes SATA interface and converting interface to set up and change the mechanism between mainboard and hard disk, neither affects the normal running of computing machine to hard disk, can guarantee again the safety of hard disk turnover data.Numeral physical noise source chip 3 can produce random number and offer DSP control chip 2, DSP control chip 2 leaves random number in FLASH module 10 in and calls for main control module 1, the random number that encrypting module 5 transmits DSP control chip 2 according to inner enciphering and deciphering algorithm generates corresponding secret key, and offer main control module 1 for the encryption of corresponding data, main control module 1 not only needs to control encryption and decryption process but also need to control the corresponding interface on encrypted card, to guarantee the normal transmission of data.SATA control module 9 adopts the Sil3114CT176 chip of Silicon Image company, and it can support four USB interface.When work, computing machine is sent to DSP control chip 2 by PCI-E interface 4 by related data, main control module 1 is realized hard disc data by SATA control module 9 and to mainboard or mainboard data, is arrived the transmission of hard disk, main control module 1 is when needs encryption and decryption, read the random digit that is placed on digital physical noise source chip 3 generations of being read by DSP control chip 2 in FLASH module 10, by generating corresponding key in encrypting module 5, then corresponding data are carried out to encryption and decryption again.And the data of the network cable transmission being connected by network interface enter main control module by mixed-media network modules mixed-media, main control module adds the key of encrypting module generation in data or to corresponding data to and is decrypted, and then by PCI-E interface, data are flowed to computing machine, utilize encrypted card to carry out encryption and decryption to the turnover data of being controlled by cable network module 13, guaranteed the security of computer network communication data.Network interface 12 is arranged on encrypted card and does not need data are passed on by computer-internal more simultaneously, improved the processing speed of data, the possibility of divulging a secret of also having avoided in addition network data to exist in the process of passing on.
Whole encrypted card is divided into four modules: PCI-E interface, DSP control chip, encrypting module and FPGA, encrypting module is born hardware encipher work, cryptographic algorithm program code is placed in the longer FLASH module of access time delay, during startup, by bootloader, move the upper operation of the very short RAM of access time delay to realize software cryptography, by pour into different cryptographic algorithm programs to FLASH module, just can realize different cryptographic algorithm.Physical noise source chip provides key required noise, and FPGA realizes combinational logic circuit and sequential logical circuit function, the role who takes on controller.
In order to improve using the support of different specification hard disk, described SATA interface 6 of the present utility model has 2-4 and respectively for different operating specifications.As working standard interfaces such as SATA2.0, SATA3.0, eSATA, can expand in this way the hard disk type of encryption, the utility model is because the reason of chip is supported at most four SATA interfaces.
For improving the range of application of encrypted card, on described encrypted card of the present utility model, be connected with external USB interface 8, described USB interface 8 is connected with main control module 1.Encrypted card can drive and identify USB interface 8, while having inserted corresponding external equipment in USB interface 8, main control module 1 is identified and is sent corresponding external equipment information to computing machine, the main control module 1 encryption and decryption request of receiving computer to external equipment simultaneously, and by aforementioned encryption and decryption mode, the data on external equipment are carried out to encryption and decryption.
For improving the encryption performance of encrypted card, described main control module 1 of the present utility model adopts fpga chip, described encrypting module 5 adopts the TF32A09 chip of Tongfang, described DSP control chip 2 adopts the TM320 series of TI, described digital physical noise source chip 3 adopts the chip of WNG series, the DM9102HEP chip that described cable network module 13 is Davicom.PCI-E interface adopts the PCI2040 of TI company, frequency of operation 33MHz.Adopt FPGA field programmable gate array chip to fire different programs for different user, facilitate specific user's encryption requirements, can increase corresponding control program for different interface types and quantity simultaneously.The TF32A09 chip of Tongfang company, it adopts 32 bit CPU kernels, supports the multiple GB algorithms such as SM1, SM2, SM3, SM4, RSA, supports circumscribed USB interface, can to the data on USB flash disk, be encrypted by USB interface.Numeral physical noise source adopts the WNG-4 type of WNG series, and mainly for generation of random number sequence, WNG-4 can form application system together with FPGA, E2PROM, to produce key, storage key and new key more.In system, the sequence of WNG-4 output has good randomness.FPGA sends control signal to WNG-4 and E2PROM chip, and E2PROM is under the control of FPFA, for storing the random series of WNG-4 chip output.The 5V voltage that encrypted card of the present utility model adopts mainboard to provide, power module adopts the DSP power source special chip TPS73HD318 of TI company, input 5V, output 1.8V and 3.3V, because the present PCI of PC inserts, take 5V as main, the encrypted card of this programme adopts 5V signal environment, and PCI-E slot provides 3.3V and 5V power supply, in circuit, need the power supply of using to have three: 1.8V makes the core voltage CVDD of DSP control chip, and 3.3V and 5V are as the operating voltage of each chip in circuit.For reasonable distribution power supply, the 5V that PCI-E slot provides and 3.3V power supply directly offer each chip on encrypted card and use, and in addition 5V power supply are delivered to power module TPS73HD318 upper, and the 1.8V power supply of its output is supplied with DSP control chip and made core voltage.The input end of all not use of PCI-E interface and DSP control chip all must be received in effective logic level with pull-up resistor, can be because of the unsettled level-shift that occurs to guarantee these input ends in stable high level.Network interface 12 is RJ45 interface, for convenience of different internetwork connection modes, the wireless network module 14 being connected with main control module 1 is installed on densifying plate, cable network module 13 adopts the DM9102HEP chip of Davicom company, DM9102HEP is pci interface 10/100Mbps ethernet controller, be applicable to the Embedded Application of master chip band pci bus, and wireless network module 14 adopts 3070 series of RaLink, it can support the maximal rate of 300Mb/s, maximal rate 150Mb/s, the signal intensity of Ralink is good, connection request is low, on cipher mode, wiredly be connected with main control module 1 after all passing through corresponding module with the data of wireless turnover, after being processed by main control module 1, be sent to again corresponding place.
The above is only preferred embodiment of the present utility model, not the utility model is done to any pro forma restriction, although the utility model with preferred embodiment openly as above, yet not in order to limit the utility model, any technician who is familiar with this patent is not departing within the scope of technical solutions of the utility model, when can utilizing the technology contents of above-mentioned prompting to make a little change or being modified to the equivalent embodiment of equivalent variations, in every case be the content that does not depart from technical solutions of the utility model, any simple modification of above embodiment being done according to technical spirit of the present utility model, equivalent variations and modification, all still belong in the scope of the utility model scheme.
Claims (5)
1. the PCI-E encrypted card with network interface, comprise the densifying plate with PCI-E interface (4), it is characterized in that, on described densifying plate, be provided with main control module (1), the FLASH module (10) being connected with main control module (1) respectively, encrypting module (5) and SATA control module (9), described SATA control module (9) is connected with the SATA interface (6) that is connected with SATA hard disk and converting interface (7) with SATA interface is connected on computer motherboard, the DSP control chip (2) being connected with PCI-E interface (4) with main control module (1) respectively, the digital physical noise source chip (3) being connected with DSP control chip (2), on described densifying plate, be provided with network interface (12), described network interface (12) is connected with main control module (1) by cable network module (13), described main control module (1) adopts FPGA, described encrypting module (5) adopts the TF32A09 chip of Tongfang.
2. the PCI-E encrypted card with network interface as claimed in claim 1, is characterized in that, described SATA interface (6) has 2-4.
3. the PCI-E encrypted card with network interface as claimed in claim 1, is characterized in that, is provided with the wireless network module (14) being connected with main control module (1) on described densifying plate.
4. the PCI-E encrypted card with network interface as claimed in claim 1, is characterized in that, is connected with external USB interface (8) on described encrypted card, and described USB interface (8) is connected with main control module (1).
5. the PCI-E encrypted card with network interface as claimed in claim 1, it is characterized in that, described DSP control chip (2) adopts the TM320 series of TI, described digital physical noise source chip (3) adopts the chip of WNG series, the DM9102HEP chip that described cable network module is Davicom.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201320682881.0U CN203982391U (en) | 2013-10-31 | 2013-10-31 | A kind of PCI-E encrypted card with network interface |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201320682881.0U CN203982391U (en) | 2013-10-31 | 2013-10-31 | A kind of PCI-E encrypted card with network interface |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN203982391U true CN203982391U (en) | 2014-12-03 |
Family
ID=51979819
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201320682881.0U Expired - Lifetime CN203982391U (en) | 2013-10-31 | 2013-10-31 | A kind of PCI-E encrypted card with network interface |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN203982391U (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104735322A (en) * | 2015-03-25 | 2015-06-24 | 江苏物联网研究发展中心 | Safety web camera with hardware encryption function |
| CN110012014A (en) * | 2019-04-08 | 2019-07-12 | 山东渔翁信息技术股份有限公司 | A kind of encipher-decipher method, system, device and medium |
| CN110955442A (en) * | 2019-11-11 | 2020-04-03 | 郑州信大先进技术研究院 | Bootloader suitable for PCI-E password card |
-
2013
- 2013-10-31 CN CN201320682881.0U patent/CN203982391U/en not_active Expired - Lifetime
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104735322A (en) * | 2015-03-25 | 2015-06-24 | 江苏物联网研究发展中心 | Safety web camera with hardware encryption function |
| CN110012014A (en) * | 2019-04-08 | 2019-07-12 | 山东渔翁信息技术股份有限公司 | A kind of encipher-decipher method, system, device and medium |
| CN110955442A (en) * | 2019-11-11 | 2020-04-03 | 郑州信大先进技术研究院 | Bootloader suitable for PCI-E password card |
| CN110955442B (en) * | 2019-11-11 | 2023-03-07 | 郑州信大先进技术研究院 | Bootloader suitable for PCI-E password card |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN204066121U (en) | A kind of PCI-E encrypted card | |
| CN104160407B (en) | Using storage control EBI guaranteeing the data transmission security between storage device and main frame | |
| CN101551784B (en) | Method and device for encrypting data in ATA memory device with USB interface | |
| CN100437618C (en) | Portable information safety device | |
| CN102932155A (en) | High-speed storage control SOC chip supporting adoption of hardware encryption algorithm | |
| CN108090366B (en) | Data protection method and device, computer device and readable storage medium | |
| JP2020529758A (en) | Equipment and methods for encrypting and decrypting stored data | |
| CN103955654A (en) | USB (Universal Serial Bus) flash disk secure storage method based on virtual file system | |
| TW201346637A (en) | A low-overhead cryptographic method and apparatus for providing memory confidentiality, integrity and replay protection | |
| CN103186479A (en) | Double hard disc isolation encryption device, method and computer based on single operating system | |
| CN1776563A (en) | File encrypting device based on USB interface | |
| CN109101829B (en) | Safety solid-state disk data transmission system based on reconfigurable cipher processor | |
| CN106991061A (en) | A kind of SATA hard disc crypto module and its method of work | |
| CN203982391U (en) | A kind of PCI-E encrypted card with network interface | |
| CN105809068A (en) | High-speed storage control SOC chip supporting adoption of hardware encryption algorithm | |
| US20110107109A1 (en) | Storage system and method for managing data security thereof | |
| CN203930840U (en) | A kind of hardware encryption card | |
| TWI503692B (en) | Secure storage method, terminal and system based on virtualization | |
| CN203720848U (en) | Hard disk encryption device based on AES (advanced encryption standard) algorithm | |
| CN203444482U (en) | Safe memorizer of portable computer | |
| CN201549223U (en) | Trusted secure portable storage device | |
| CN102761559B (en) | Network security based on private data shares method and communication terminal | |
| CN103729324A (en) | Security protection device of cloud storage file based on USB3.0 interface | |
| CN113449349A (en) | Platform security mechanism | |
| CN202218256U (en) | Security control gateway system for centralized storage |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term |
Granted publication date: 20141203 |
|
| CX01 | Expiry of patent term |